AES密钥是随机的吗？ [英] is AES key random?

问题描述

AES密钥可以通过此代码生成

AES key may be generate by this code

KeyGenerator kgen = KeyGenerator.getInstance("AES");
kgen.init(128); 

但是

如果我有一个我可以通过这种方式使用它。

If I have a "very reliable" method of generating random numbers can I use it in such a way

SecureRandom rnd = new SecureRandom();
byte[] key = new byte[16];
rnd.nextBytes(key);

通过此方法获得的密钥可靠吗？

is key obtained by this method reliable ?

或仅必须通过某些特殊算法生成

or it ONLY must generated by some SPECIAL algorithm

推荐答案

AES密钥可以为任意128位。 实际上几乎是不可能的，无论创建它的方法是什么。

The AES key can be any 128 bits. It should be be practically unguessable, whatever the method of creating it.

例如：

SecureRandom sr = new SecureRandom()

key = new byte[16];
iv = new byte[16];

sr.nextBytes(key);
sr.nextBytes(iv);

Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.ENCRYPT_MODE, new SecretKeySpec(key,"AES"), new IvParameterSpec(IV));

SecretKeySpec 只是围绕byte []的薄包装器---它不会以任何方式转换密钥。没有特殊算法。

SecretKeySpec, by the way, is just a thin wrapper around a byte[] --- it does not transform the key in any way. No "special algorithm".

这篇关于AES密钥是随机的吗？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！