I recently found this RSA JavaScript library: /. However, it requires that the key be pre-generated. Here are my questions/issues:
I'd like to generate an RSA keypair in the JavaScript (so that I don't have to change the code every time I want a new keypair.)
While I understand how this can be used to send secure data, if I'm not mistaken this library cannot be used for the client to receive secure data from the server (because the public and private exponents, and the modulus, are transmitted plain-text from the server). Am I mistaken?
I'd love some discussion about this. I'm no security expert, but I have a pretty firm grasp on asymmetric encryption.
I recently found this RSA JavaScript library: http://www.ohdave./rsa/. However, it requires that the key be pre-generated. Here are my questions/issues:
I'd like to generate an RSA keypair in the JavaScript (so that I don't have to change the code every time I want a new keypair.)
While I understand how this can be used to send secure data, if I'm not mistaken this library cannot be used for the client to receive secure data from the server (because the public and private exponents, and the modulus, are transmitted plain-text from the server). Am I mistaken?
I'd love some discussion about this. I'm no security expert, but I have a pretty firm grasp on asymmetric encryption.
Share Improve this question edited May 15, 2010 at 22:01 Peter Mortensen 31.6k22 gold badges110 silver badges133 bronze badges asked Jul 15, 2009 at 9:16 B TB T 61.2k36 gold badges198 silver badges210 bronze badges 2- Can't you just send the data using SSL? It's secure and what's more important it's transparent for you so you don't need to do any kind of encryption/decryption on any sides. – RaYell Commented Jul 17, 2009 at 5:32
- 2 Maybe I could do SSL. But what if i'm using a host that doesn't support it? Personally, I don't know how to configure SSL - all the stuff I found online isn't straight forward. Regardless, SSL isn't really relevant to my question. – B T Commented Jul 17, 2009 at 8:36
2 Answers
Reset to default 3The question has been asked almost 10 years ago and since then lot of things has improved. Currently, most of the modern browsers feature Web Crypto API that provides the capability to generate strong random numbers and therefore allows a script to generate cryptographic keys, sign data, verify signatures, encrypt and decrypt data and other cryptographic operations.
Here is a sample code from the MDN mentioned above:
let keyPair = window.crypto.subtle.generateKey(
{
name: "RSA-OAEP",
modulusLength: 4096,
publicExponent: new Uint8Array([1, 0, 1]),
hash: "SHA-256"
},
true,
["encrypt", "decrypt"]
);
Generating the keypair requires a strong random number generator (I don't think you have one in JavaScript), and quite a bit of putation (for primality testing). Then once you have your pair, when you transmit your public key up to the other side, there's an opportunity for man-in-the-middle attack since there is no integrity check on the public key transmission.
You will get secure transmission to whoever has the private key. It's not clear from your question whether that is the client or the server. You can initialize a shared secret by having whoever has only the public key generate a shared secret, encrypt it and send it to whoever has the public key.
You can get a similar feature set (dependence on random number generator, vulnerability to MITM, ability to create shared secret for use as session key) but with much less putation by performing a Diffie-Hellman key exchange instead.
You are probably better off figuring out how to configure SSL on your server.