Not sure if this is the right spot, but is there a reputable library for Kotlin for public key RSA encryption? I just need to encrypt a string. My iOS team is using https://github.com/TakeScoop/SwiftyRSA but i cant find something like that for kotlin.

thanks! I was pretty excited to use it, but reading through the docs makes it seem pretty darn confusing.

on JVM/Android, you'd just use JCA

JCA... Got it. Will look it up. Thanks!

it's built into Java: https://docs.oracle.com/javase/8/docs/technotes/guides/security/crypto/CryptoSpec.html once upon a time, US didn't permit exports of strong crypto, so you had to install a separate JCE component. but now the basic stuff such as RSA is pre-packaged as part of the JRE (and Android runtime)

cool. so i think something like this should work

raw RSA like that has some known vulnerabilities

Interesting. So people just really pass a string into Cipher.getInstance? Seems like some of this stuff you'd want some type safety, etc.

note that due to https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation#Electronic_codebook_(ECB) it's not recommended to use ECB on anything larger than a block. for larger messages, RSA is typically only used to encrypt a shared secret key

yeah. i just have a name that im trying to encrypt lol. so its short

yes, it's string-based. kind of necessary because of how flexible it is - it was designed so that you could install full-strength JCE afterwards, and there's still providers like Bouncy Castle

The thing with crypto is: If it seems easy to code, it is often easy to hack, due to some subtle oversight (or two, or three). Unfortunately this stuff is outdated, but if you're interested, you might get the idea: https://bettercrypto.org/#theory

Alright. I will try this out. thanks everyone.

https://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#Cipher BC implements those and some others: https://www.bouncycastle.org/specifications.html#:~:text=6.2%20Algorithms

❤️

As JCA is full of insecure combinations, you might still want to consider this:

WARNING: The JCA makes it easy to incorporate security features into your application. However, this document does not cover the theory of security/cryptography beyond an elementary introduction to concepts necessary to discuss the APIs. This document also does not cover the strengths/weaknesses of specific algorithms, not does it cover protocol design. Cryptography is an advanced topic and one should consult a solid, preferably recent, reference in order to make best use of these tools.

You should always understand what you are doing and why: DO NOT simply copy random code and expect it to fully solve your usage scenario. Many applications have been deployed that contain significant security or performance problems because the wrong tool or algorithm was selected.

https://docs.oracle.com/javase/8/docs/technotes/guides/security/crypto/CryptoSpec.html#Introduction

Hi @Colton Idle i have created one for my needs it supports android, ios and jvm and it uses Google Tink hybrid encryption along with RSA, it works well on android, jvm backend and desktop app, but fails to decrypt on ios using encrypted data from the backend server. But individual test cases on the platforms pass! here’s the repo https://github.com/oianmol/capillary-kmp