Online SHA384 Hash Generator

What would be the fastest and more robust (in terms of uniqueness) way for implementing a method like

public abstract String hash(String[] values);

The values[] array has 100 to 1,000 members, each of a which with few dozen characters, and the method needs to be run about 10,000 times/sec on a different values[] array each time.

Should a long string be build using a StringBuilder buffer and then a hash method invoked on the buffer contents, or is it better to keep invoking the hash method for each string from values[]?

Obviously a hash of at least 64 bits is needed (e.g., MD5) to avoid collisions, but is there anything simpler and faster that could be done, at the same quality?

For example, what about

public String hash(String[] values){    long result = 0;    for (String v:values)    {        result += v.hashCode();    }    return String.valueOf(result);}

I used the python lib OpenSSL.crypto to load a .p12 file, and then I used the hashlib.sha256 to generate a digest of my data. The question is that I cannot get the "signature" I want. Is it because the python lib, crypto.sign(pkey, data, digest) used the lowercase a-z rather than the uppercase A-Z in the hexdigest? The code is shown here.

The signature is different from the one generated by another method of JAVA-RSASHA256.Java used the digest below: The final String is with upper format A-F.

import java.security.MessageDigest;char hexDigits[] = {'0', '1', '2', '3', '4', '5', '6', '7', '8', '9', 'A', 'B', 'C', 'D', 'E', 'F'};try {    byte[] btInput = content.getBytes("UTF-8");    MessageDigest mdInst = MessageDigest.getInstance("SHA-256");    mdInst.update(btInput);    byte[] md = mdInst.digest();    int j = md.length;    char str[] = new char[j * 2];    int k = 0;    for (int i = 0; i < j; i++) {        byte byte0 = md[i];        str[k++] = hexDigits[byte0 >>> 4 & 0xf];        str[k++] = hexDigits[byte0 & 0xf];    }    return new String(str);} catch(Exception e) {    return null;}

While I used the python code to generate the digest below.

from OpenSSL import cryptofrom Crypto.Hash import SHA256data = 'hello world!'hash_256 = hashlib.sha256()h_sha256 = hash_256.copy()h_sha256.update(data.encode('utf-8'))sha256_str = h_sha256.hexdigest()print('output:', sha256_str)#The "print-result" contains only lower-format 'a-f'.

Will crypto.sign(pkey, data, digest) of Python uses the lowercase digest to generate a signature? So the signature is different from that of java because java takes the uppercase?The following code is how I import my .p12 file to sign a String.

# -*- coding: utf-8 -*-# load OpenSSL.cryptofrom OpenSSL import cryptoimport hashlibpsw = b'123456'p12 = crypto.load_pkcs12(open(r"D:\tasks\private_key.p12", 'rb').read(), psw)pkey = p12.get_privatekey()data = 'hello world!'my_signature = crypto.sign(pkey, str.encode(data), 'sha256')

My function is as follows:

pbkdf2($raw_pw,$salt,1000,128)

1000 is the number of passes, and 128 is the key size. The function returns a binary key which I use base64 to store it in the database.

My question is: what's the recommended keysize and salt size for pbkdf2 using sha512?

will a keysize of 32 be just as secure as a keysize of 128?

I'm developing a WebService client in C++ for "Electronic Invoice" in Argentina. The webservice client and the xml treatment is not a problem but the cryptographic part give some headache (I'm quite new in this topic).

I'm reading the Botan documentation and found an example somewhat similar to what I need but I'm having difficulties adapting it.

I need to encrypt the XML in SHA1+RSA using the certificates and encode the result in Base64.

The official documentation provide examples in many languages unfortunately C++ is not one of them, I use the php example as start point to create my PoC code in C++.

The exact problem is this.

I have this XML example:

<loginTicketRequest version="1.0"><header><uniqueId>1560949868</uniqueId><generationTime>2019-06-19T10:10:08-03:00</generationTime><expirationTime>2019-06-19T10:12:08-03:00</expirationTime></header><service>wsfe</service></loginTicketRequest>

this XML became in this Base64 string

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

using this PHP function

  $STATUS=openssl_pkcs7_sign("TRA.xml", "TRA.tmp", "file://".CERT,    array("file://".PRIVATEKEY, PASSPHRASE),    array(),    !PKCS7_DETACHED    );

Where CERT and PRIVATEKEY are the public and private keys, PASSPHRASE is an empty string and the file TRA.xml contains the XML example provided above.

You can download the public and private key from this linkExample Certificates

Botan Example in C++

#include <botan/pkcs8.h>#include <botan/hex.h>#include <botan/pk_keys.h>#include <botan/pubkey.h>#include <botan/auto_rng.h>#include <botan/rng.h>#include <iostream>int main (intargc,char*argv[]){    if(argc!=2)        return1;    std::string plaintext("Your great-grandfather gave this watch to your granddad for good luck. Unfortunately, Dane's luck wasn't as good as his old man's.");    std::vector<uint8_t> pt(plaintext.data(),plaintext.data()+plaintext.length());    std::unique_ptr<Botan::RandomNumberGenerator> rng(newBotan::AutoSeeded_RNG);    //load keypair    std::unique_ptr<Botan::Private_Key> kp(Botan::PKCS8::load_key(argv[1],*rng.get()));    //encrypt with pk    Botan::PK_Encryptor_EME enc(*kp,*rng.get(), "EME1(SHA-256)");    std::vector<uint8_t> ct = enc.encrypt(pt,*rng.get());    //decrypt with sk    Botan::PK_Decryptor_EME dec(*kp,*rng.get(), "EME1(SHA-256)");    std::cout << std::endl << "enc: " << Botan::hex_encode(ct) << std::endl << "dec: "<< Botan::hex_encode(dec.decrypt(ct));    return 0; //Edited :D, Thanks jww}

I need to encrypt the XML in SHA1+RSA using the certificates and encode the result in Base64. Any help will be very appreciated.

I have been given a set of steps to obtain a hash of data. I have trying to comprehend the steps for quite long now, but the hash that I am getting doesn't seem to match expected hash.

The steps that was mentioned is as follows:

1. Use the FIN message input as a binary value (unsigned char in C language, byte in Java). The FIN message input must be coded in the ASCII character set.
2. Combine the left LAU key and the right LAU key as one string. The merged LAU key must be used as a binary value (unsigned char in C language, byte in Java). The merged LAU key must be coded in the ASCII character set.
3. Call a HMAC256 routine to compute the hash value. The hash value must also be treated as a binary value (unsigned char in C language, byte in Java). The hmac size is 32 bytes.
4. Convert the hmac binary values to uppercase hexadecimal printable characters (for example, a onebyte binary value of 0000 1010 has a hexadecimal value of 0x0A and will be translated to the twobyte characters “0A”).

This is what I have tried.

import javax.crypto.Mac;import javax.crypto.spec.SecretKeySpec;import javax.xml.bind.DatatypeConverter;import java.security.InvalidKeyException;import java.security.NoSuchAlgorithmException;import org.apache.commons.codec.binary.Hex;import java.io.File;import java.io.FileInputStream;import java.io.UnsupportedEncodingException;import java.math.BigInteger;import java.nio.charset.StandardCharsets;public class ABCHash{        public static void main(String[] args) throws Exception                {                try{                        int character;                        StringBuffer buffer = new StringBuffer("");                        FileInputStream inputStream = new FileInputStream(new File("C:/EncPDF.txt"));                        while( (character = inputStream.read()) != -1)                                buffer.append((char) character);                        inputStream.close();                        System.out.println("Fetching data from the file"+buffer);                        StringBuffer sbuf = new StringBuffer(buffer);                        String str=sbuf.toString();                        System.out.println( "Data = "+ str);                        if(str!=null)                        {                                String key = "0123456789ABCDEF0123456789ABCDEF"; // Assuming the key as 0123456789ABCDEF                                byte[] hexvalue= stringToHexByte(str);                                byte[] hexkey=stringToHexByte(key);                                byte[] byHMAC = encode(hexkey, hexvalue);                                String stEncryptedData = Hex.encodeHexString(byHMAC).toUpperCase();                                System.out.println("Encrypted data =\n "+stEncryptedData);                        }                }                catch(Exception e)                {                        System.out.println("Exception in the file reading"+e);                }        }        private static byte[] encode(byte[] hexkey, byte[] hexvalue) {                try {                        Mac sha256_HMAC = Mac.getInstance("HmacSHA256");                        SecretKeySpec secret_key = new SecretKeySpec(hexkey, "HmacSHA256");                        sha256_HMAC.init(secret_key);                        return sha256_HMAC.doFinal(hexvalue);                } catch (NoSuchAlgorithmException e) {                        e.printStackTrace();                } catch (InvalidKeyException e) {                        e.printStackTrace();                }                return null;        }        public static String stringToHex(String base) throws UnsupportedEncodingException        {                return String.format("%040x", new BigInteger(1, base.getBytes(StandardCharsets.US_ASCII)));        }        public static byte[] stringToHexByte(String base) throws UnsupportedEncodingException        {                System.out.println(stringToHex(base).toUpperCase());                return DatatypeConverter.parseHexBinary(stringToHex(base).toUpperCase());        }}

It will be really helpful if someone can point whats wrong with the implementation.