Python AESCipher.getKey 예제들

프로그래밍 언어: Python

네임스페이스/패키지 이름: utils

클래스/타입: AESCipher

메소드/함수: getKey

hotexamples.com에서의 예제들: 2

Python AESCipher.getKey - 2개의 예제가 발견되었습니다. 이것들은 오픈소스 프로젝트에서 추출된 Python의 utils.AESCipher.getKey에 대한 실세계 최고 등급의 예제들입니다. 예제들을 평가하여 예제의 품질 향상에 도움을 줄 수 있습니다.

자주 사용되는 메소드들

보기 숨기기

AESCipher(16)

decrypt(8)

encrypt(7)

printKeyInfo(6)

getKey(2)

예제 #1

파일 보기

파일: publisher.py 프로젝트: salrashid123/gcp_pubsub_message_encryption

if args.mode == "encrypt":
    logging.info(
        ">>>>>>>>>>> Start Encryption with locally generated key.  <<<<<<<<<<<"
    )
    ## Send pubsub messages using two different symmetric keys
    ## Note, i'm not using the expiringdict here...i'm just picking a DEK, sending N messages using it
    ## then picking another DEK and sending N messages with that one.
    ## The subscriber will use a cache of DEK values.  If it detects a DEK in the metadata that doesn't
    ## match whats in its cache, it will use KMS to try to decode it and then keep it in its cache.
    for x in range(5):
        logging.info("Rotating symmetric key")

        # create a new TINK AES DEK and encrypt it with KMS.
        #  (i.,e an encrypted tink keyset)
        cc = AESCipher(encoded_key=None)
        dek = cc.getKey()
        logging.info(cc.printKeyInfo())

        logging.debug("Generated dek: " + dek)
        logging.info("Starting KMS encryption API call")
        encrypt_response = kms_client.encrypt(
            request={
                'name': name,
                'plaintext': dek.encode('utf-8'),
                'additional_authenticated_data': tenantID.encode('utf-8')
            })

        dek_encrypted = base64.b64encode(
            encrypt_response.ciphertext).decode('utf-8')

        logging.info("Wrapped dek: " + dek_encrypted)

예제 #2

파일 보기

파일: publisher.py 프로젝트: tjwebb/gcp_pubsub_message_encryption

  logging.debug("End PubSub Publish")
  logging.info(">>>>>>>>>>> END <<<<<<<<<<<")

if args.mode =="encrypt":
    logging.info(">>>>>>>>>>> Start Encryption with locally generated key.  <<<<<<<<<<<")
    ## Send pubsub messages using two different symmetric keys
    ## Note, i'm not using the expiringdict here...i'm just picking a DEK, sending N messages using it
    ## then picking another DEK and sending N messages with that one.
    ## The subscriber will use a cache of DEK values.  If it detects a DEK in the metadata that doesn't 
    ## match whats in its cache, it will use KMS to try to decode it and then keep it in its cache.
    for x in range(30):
        logging.info("Rotating symmetric key")
        
        ac = AESCipher(encoded_key=None)
        dek = ac.getKey().encode()

        logging.debug("Generated dek: " + base64.b64encode(dek).decode() )

        logging.info("Starting KMS encryption API call")

        dek_encrypted = kms_client.encrypt(name=name, plaintext=dek,additional_authenticated_data=tenantID.encode('utf-8'))

        dek_key_wrapped = dek_encrypted.ciphertext
        logging.info("Wrapped dek: " +  base64.b64encode(dek_key_wrapped).decode('utf-8'))
        logging.info("End KMS encryption API call")

        logging.debug("Starting AES encryption")
                
        cleartext_message = {
                "data" : "foo".encode(),