Class BlockCipherSerializer

java.lang.Object

services.moleculer.service.MoleculerComponent

services.moleculer.serializer.Serializer

services.moleculer.serializer.ChainedSerializer

services.moleculer.serializer.BlockCipherSerializer

All Implemented Interfaces:

MoleculerLifecycle

public class BlockCipherSerializer
extends ChainedSerializer

Serializer with Symmetric Key Encryption. This enables message-level encryption. Sample of usage:

BlockCipherSerializer serializer = new BlockCipherSerializer();
serializer.setAlgorithm("AES/CBC/PKCS5Padding");
serializer.setPassword("12345678901234567890123456789012");
serializer.setIv("1234567890123456");
Transporter trans = new NatsTransporter("localhost");
trans.setSerializer(serializer);
ServiceBroker broker = ServiceBroker.builder()
                                    .nodeID("node1")
                                    .transporter(trans)
                                    .build();

Chaining Serializers (serialize then compress then encrypt packets):

Transporter trans = new NatsTransporter("localhost");
MsgPackSerializer msgPack = new MsgPackSerializer();
DeflaterSerializer deflater = new DeflaterSerializer(msgPack);
BlockCipherSerializer cipher = new BlockCipherSerializer(deflater);
trans.setSerializer(cipher);

Field Summary

Fields

Modifier and Type	Field	Description
protected String	algorithm	Type of the block Cipher.
protected ThreadLocal<Cipher>	decriptors
static final String	DEFAULT_ALGORITHM	Same as "aes-256-cbc" in Node.js.
static final byte[]	EMPTY_IV	Empty IV block.
protected ThreadLocal<Cipher>	encriptors
protected byte[]	iv	Algorithm parameters (IV).
protected String	password	Password for Symmetric Key Encryption.
protected SecretKeySpec	secretKey	SecretKeySpec, can be specified externally.

Fields inherited from class ChainedSerializer

parent

Fields inherited from class Serializer

debug, format, reader, writer

Fields inherited from class MoleculerComponent

broker, logger, name

Constructor Summary

Constructors

Constructor	Description
BlockCipherSerializer()	Creates a JSON Serializer that uses AES encryption algorithm with the default password (using the hard-coded, default password is not very secure).
BlockCipherSerializer(String password)	Creates a JSON Serializer that uses AES encryption algorithm to encrypt/decrypt messages.
BlockCipherSerializer(String password, String algorithm, byte[] iv)	Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.
BlockCipherSerializer(String password, String algorithm, String iv)	Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.
BlockCipherSerializer(Serializer parent)	Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.
BlockCipherSerializer(Serializer parent, String password)	Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.
BlockCipherSerializer(Serializer parent, String password, String algorithm)	Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.
BlockCipherSerializer(Serializer parent, String password, String algorithm, byte[] iv)	Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.
BlockCipherSerializer(Serializer parent, String password, String algorithm, String iv)	Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.

Method Summary

Modifier and Type	Method	Description
protected byte[]	decrypt(Cipher cipher, byte[] bytes)
protected byte[]	encrypt(Cipher cipher, byte[] bytes)
String	getAlgorithm()
protected String	getAlgorithmName()
protected Cipher	getDecryptor()
protected Cipher	getEncriptor()
byte[]	getIv()
String	getPassword()
SecretKeySpec	getSecretKey()
io.datatree.Tree	read(byte[] source)
void	setAlgorithm(String algorithm)
void	setIv(byte[] iv)
void	setIv(String iv)
void	setPassword(String password)
void	setSecretKey(SecretKeySpec secretKey)
void	started(ServiceBroker broker)
byte[]	write(io.datatree.Tree value)

Methods inherited from class ChainedSerializer

getFormat, setDebug, stopped

Methods inherited from class Serializer

isDebug

Methods inherited from class MoleculerComponent

getBroker, getLogger, getName

Methods inherited from class Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

DEFAULT_ALGORITHM

public static final String DEFAULT_ALGORITHM

Same as "aes-256-cbc" in Node.js.

See Also:

• Constant Field Values

EMPTY_IV

public static final byte[] EMPTY_IV

Empty IV block.

algorithm

protected String algorithm

Type of the block Cipher. Possible values include:

• AES/CTR/NoPadding
• AES/CBC/PKCS5Padding
• AES
• DES
• DESede
• RC2
• Blowfish
• ARCFOUR
• etc.

password

protected String password

Password for Symmetric Key Encryption. Using this hard-coded, default password is not secure. Use a custom password instead of this. The required password length is 32, when using "AES/CBC/PKCS5Padding"!

iv

protected byte[] iv

Algorithm parameters (IV). Can be "null".

secretKey

protected SecretKeySpec secretKey

SecretKeySpec, can be specified externally. If not specified, it is calculated from the "password".

encriptors

protected ThreadLocal<Cipher> encriptors

decriptors

protected ThreadLocal<Cipher> decriptors

Constructor Details

BlockCipherSerializer

public BlockCipherSerializer()

Creates a JSON Serializer that uses AES encryption algorithm with the default password (using the hard-coded, default password is not very secure).

BlockCipherSerializer

public BlockCipherSerializer(String password)

Creates a JSON Serializer that uses AES encryption algorithm to encrypt/decrypt messages.

Parameters:

password - password for Symmetric Key Encryption

BlockCipherSerializer

public BlockCipherSerializer(Serializer parent)

Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.

Parameters:

parent - parent Serializer (eg. a JsonSerializer)

BlockCipherSerializer

public BlockCipherSerializer(Serializer parent,
 String password)

Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.

Parameters:

parent - parent Serializer (eg. a JsonSerializer)

password - password for Symmetric Key Encryption

BlockCipherSerializer

public BlockCipherSerializer(Serializer parent,
 String password,
 String algorithm)

Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.

Parameters:

parent - parent Serializer (eg. a JsonSerializer)

password - password for Symmetric Key Encryption

algorithm - block Cipher type (eg. "AES", "DES", "DESede", "Blowfish")

BlockCipherSerializer

public BlockCipherSerializer(String password,
 String algorithm,
 byte[] iv)

Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.

Parameters:

password - password for Symmetric Key Encryption

algorithm - block Cipher type (eg. "AES", "DES", "DESede", "Blowfish")

iv - IV parameter (can be null)

BlockCipherSerializer

public BlockCipherSerializer(String password,
 String algorithm,
 String iv)

Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.

Parameters:

password - password for Symmetric Key Encryption

algorithm - block Cipher type (eg. "AES", "DES", "DESede", "Blowfish")

iv - IV parameter (can be null)

BlockCipherSerializer

public BlockCipherSerializer(Serializer parent,
 String password,
 String algorithm,
 String iv)

Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.

Parameters:

parent - parent Serializer (eg. a JsonSerializer)

password - password for Symmetric Key Encryption

algorithm - block Cipher type (eg. "AES", "DES", "DESede", "Blowfish")

iv - IV parameter (can be null)

BlockCipherSerializer

public BlockCipherSerializer(Serializer parent,
 String password,
 String algorithm,
 byte[] iv)

Creates a Serializer that uses a symmetric encryption algorithm to encrypt/decrypt messages.

Parameters:

parent - parent Serializer (eg. a JsonSerializer)

password - password for Symmetric Key Encryption

algorithm - block Cipher type (eg. "AES", "DES", "DESede", "Blowfish")

iv - IV parameter (can be null)

Method Details

started

public void started(ServiceBroker broker)
             throws Exception

Specified by:

started in interface MoleculerLifecycle

Overrides:

started in class ChainedSerializer

Throws:

Exception

getAlgorithmName

protected String getAlgorithmName()

write

public byte[] write(io.datatree.Tree value)
             throws Exception

Overrides:

write in class Serializer

Throws:

Exception

encrypt

protected byte[] encrypt(Cipher cipher,
 byte[] bytes)
                  throws Exception

Throws:

Exception

read

public io.datatree.Tree read(byte[] source)
                      throws Exception

Overrides:

read in class Serializer

Throws:

Exception

decrypt

protected byte[] decrypt(Cipher cipher,
 byte[] bytes)
                  throws Exception

Throws:

Exception

getEncriptor

protected Cipher getEncriptor()
                       throws Exception

Throws:

Exception

getDecryptor

protected Cipher getDecryptor()
                       throws Exception

Throws:

Exception

getAlgorithm

public String getAlgorithm()

setAlgorithm

public void setAlgorithm(String algorithm)

getPassword

public String getPassword()

setPassword

public void setPassword(String password)

getIv

public byte[] getIv()

setIv

public void setIv(String iv)

setIv

public void setIv(byte[] iv)

getSecretKey

public SecretKeySpec getSecretKey()

setSecretKey

public void setSecretKey(SecretKeySpec secretKey)