php - How to implement a concat KDF for use with JOSE/JWE/JWT -

-

text after "itemprop =" text ">

I try to write the code to decrypt a JWE token in PHP, as I do not support existing libraries algorithm I am doing ( A128CBC + HS256 , this is a excluded algorithm).

My problem is that I can not understand how to generate the content encryption key which uses the "Concatenation Key Derivation Function" (see Section 5.8.1 here).

I am based on my values.

So far, the relevant part of my code looks like this:

P> 

  // Darey CBC encryption and episode; Integrity key $ shaSize = 256; $ Encryption size = $ shaSize / 2; $ IntegrityKisiz = $ shaSize; // Content // encryption key for $ encryptionSegments using Concat KDF = [$ masterkey key to derive the derivation, // z $ encryptionKeySize, // keydatalen $ this- & gt; PackInt32sBe ($ encryptionKeySize). Utf8_encode ('A128CBC + HS256'), // AlgorithmID $ this- & gt; PackInt32sBe (0), // PartyUInfo $ this-> PackInt32sBe (0), // PartyUInfo 'Encryption', // SuppPubInfo $ this- & gt; PackInt32sBe (1), // SuppPrivInfo]; // SHA256 Digest $ cek = hex2bin (calculate the hash ('sha256', implode ('', $ encryptionSegments));

Potentially relevant, to obtain a big endian integer My function: Public function packInt32sBe ($ N) {if (Pack ('L', 1) === Pack ('N', 1)) {Return Pack ('L' , $ N);} Return Strerve (Pack ('L', $ N));}

shown here is not just the variable $ Masterkey The decrypted content is the master key.

I ended up solving it It's not certain whether it will help someone else, but just in case: 

  // Darey CBC encryption & integrity key $ shaSize = 256; $ encryption size = $ ShaSize / 2; $ IntegrityKylej = $ shaSize; // CONSATT for content Calculate the key derivation using KDF // Encryption key $ encryption segments = [$ this-> PACK IN 32 SBE (1), $ Semicolon, // jade $ this-> Pack INS32 SBE ($ Encryption Keys) Utf8_encode ('A128CBC + HS256'), // AlgorithmID $ this- & gt; PackInt32sBe (0), // PartyUInfo $ this-> PackInt32sBe (0), // PartyUInfo 'encryption', // SuppPubInfo]; // SHA256 Digest, and then get it 16 bytes before $ cek = substr (hex 2 bean (hash ('sha256', implode ('', $ encryptionSegments), 0, 16);

Here is the only unknown extreme $ cmk which is my content master key, "Z" value alias. In this specific case, I decrypt it by requesting the Xbox One token, Key found.


Comments

Post a Comment

Popular posts from this blog

java - Can't add JTree to JPanel of a JInternalFrame -

-
Image
There are two panels in my JInternalframe. I want to add TopPanel to Jtree to nominate another. But I can not add Jaitari to the top of the panel. Please help me in this piece of code: DefaultMutableTreeNode root = new DefaultMutableTreeNode ("deck"); DefaultMutableTreeNode Item Clubs = New DefaultMutableTreeNode ("Club"); AddAllCard (itemClubs); Root.add (itemClubs); DefaultMutableTreeNode item = New DefaultMutableTreeNode ("Diamonds"); AddAllCard (itemDiamonds); Root.add (itemDiamonds); DefaultMutableTreeNode Itemspads = New DefaultMutableTreeNode ("Spades"); AddAllCard (itemSpades); Root.add (itemSpades); DefaultMutableTreeNode item increases = new DefaultMutableTreeNode ("heart"); AddAllCard (itemHearts); Root.add (itemHearts); Default Trimodel Tree Model = New DefaultTreeModel (Route); Tree = new jetty (tree modal); ScrollPane = new JScrollPane (tree); // scrollPane.setViewportView (tree); . ScrollPane.getViewport () add (tr
Read more

javascript - data.match(var) not working it seems -

-
OK, I have this small block code, which is to scanned a number on the website, but for some reason There is a hip that it is not scanning at all. var regenges = / \ & lt; Span class = "currency-robux" data-to-"item-private-value-price" & gt; ([\ D,]) \ & LT; \ / Span \ & gt; /; Var ValueCiling = Data. Match (reggae); Value-song = number (value slicing location (",", "")); Is there anything wrong with that? This is related to the if statement if (value sling and lieutenant; = price watching) { < P> A function calls to move from there, but for some reason it does not seem to run at all. So I think the Regex is wrong but I'm not sure how. (There is a variable in PriceWinking , this is a snippet from the code.) On the website, I'm trying to remove it. & lt; Span class = "robux" data-plus = "item-privatesale-price" & gt; 115 & lt; / Span & gt; Keep in mind
Read more

javascript - How can I pause a jQuery .each() loop, while waiting for user input? -

-
Before I continue to get a jQuery .each loop to wait for user input There is a problem in repeatedly repeating This is my code (I have commented on what I would like to do): & lt; Html xmlns = "http://www.w3.org/1999/xhtml" & gt; & Lt; Top & gt; & Lt; Link rel = "stylesheet" type = "text / css" href = "common_components.css" /> & Lt; Meta http-equiv = "content-type" content = "text / html; charset = UTF-8" /> & Lt; Link rel = "stylesheet" href = "slider.css" & gt; & Lt ;? Php include_once 'common_components.php'; $ Query = $ dbh- & gt; Queries ("SELECT movies_dir FROM settings"); $ Line = $ query- & gt; Obtain (PDO :: FETCH_ASSOC); Date_default_timezone_set ('UTC'); Echo "& lt; title & gt; movie scanner & lt; / title & gt;"; ? & Gt; & Lt; Script src = "jquery.min.js" & gt; &am
Read more