我去年做了一个演讲,标题为JavaScript 和 Web 加密技术开发人员指南 http://www.slideshare.net/kevinhakanson/developers-guide-to-javascript-and-web-cryptography并在线提供演示网站:https://jswebcrypto.azurewebsites.net/ https://jswebcrypto.azurewebsites.net/
这包括 OpenSSL 命令行的简单哈希、HMAC、PBKDF2 和 AES 示例(作为基线)SJCL http://bitwiseshiftleft.github.io/sjcl/, CryptoJS https://code.google.com/p/crypto-js/, Node.js 加密货币 http://nodejs.org/api/crypto.html, 乃至W3C Web 加密 API http://www.w3.org/TR/WebCryptoAPI/
以下是 SJCL 示例:
Hash
var out = sjcl.hash.sha1.hash("The quick brown fox jumps over the lazy dog");
var hash = sjcl.codec.hex.fromBits(out)
// "2fd4e1c67a2d28fced849ee1bb76e7391b93eb12"
HMAC
var key = sjcl.codec.utf8String.toBits("key");
var out = (new sjcl.misc.hmac(key, sjcl.hash.sha256)).mac("The quick brown fox jumps over the lazy dog");
var hmac = sjcl.codec.hex.fromBits(out)
// "f7bc83f430538424b13298e6aa6fb143ef4d59a14946175997479dbc2d1a3cd8"
PBKDF2
var hmacSHA1 = function (key) {
var hasher = new sjcl.misc.hmac( key, sjcl.hash.sha1 );
this.encrypt = function () {
return hasher.encrypt.apply( hasher, arguments );
};
};
var passwordSalt = sjcl.codec.hex.toBits( "cf7488cd1e48e84990f51b3f121e161318ba2098aa6c993ded1012c955d5a3e8" );
var derivedKey = sjcl.misc.pbkdf2( "password", passwordSalt, 100, 256, hmacSHA1 );
var hexKey = sjcl.codec.hex.fromBits( derivedKey );
// c12b2e03a08f3f0d23f3c4429c248c275a728814053a093835e803bc8e695b4e
Note:这需要你包含sha1.js https://github.com/bitwiseshiftleft/sjcl/blob/master/core/sha1.js除了 sjcl.js 之外。
