Home/ Questions/Q 448267
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-12T21:39:10+00:00

when you want to encrypt something dont you want the key to decrypt to

  • 0

when you want to encrypt something dont you want the key to decrypt to be decided by you and not generator by some random number generator ?

i see this code in stackoverflow post. but i dont want the key to be generated randomly i want to the user to be asked to enter the key and on that bases the encryption should happen..

any suggestions how should i modify the code ?

SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1");
KeySpec spec = new PBEKeySpec(password, salt, 1024, 256);
SecretKey tmp = factory.generateSecret(spec);
SecretKey secret = new SecretKeySpec(tmp.getEncoded(), "AES");
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    The whole idea of encryption is that noone except the needed parties can ever deduce the key since the key is the only secret.

    If you choose keys yourself you’re likely to follow some habitual pattern, so if you compomise one key you expose that pattern and the attacker can use that information to simplify finding other keys you use. Using a good random number generator eliminates this possibility and makes the encryption much more efficient.

    • 0