AES-256-GCM encryption service. More...
#include <encryption.hpp>
Collaboration diagram for encryption:
Static Public Member Functions | |
| static std::string | encrypt (const std::string &plaintext, const std::string &password) |
| Encrypt plaintext using a password. | |
| static std::string | decrypt (const std::string &encrypted_data, const std::string &password) |
| Decrypt ciphertext using a password. | |
| static bool | verify_password (const std::string &encrypted_data, const std::string &password) |
| Verify if a password can decrypt the given data. | |
Detailed Description
AES-256-GCM encryption service.
Provides secure encryption and decryption using AES-256-GCM with a key derived from a password using PBKDF2.
The encrypted format is: base64(salt || iv || tag || ciphertext)
- salt: 16 bytes for PBKDF2 key derivation
- iv: 12 bytes for AES-GCM
- tag: 16 bytes authentication tag
- ciphertext: variable length encrypted data
Member Function Documentation
◆ encrypt()
|
static |
Encrypt plaintext using a password.
- Parameters
-
plaintext The text to encrypt. password The password used to derive the encryption key.
- Returns
- Base64-encoded encrypted data.
Here is the caller graph for this function:
◆ decrypt()
|
static |
Decrypt ciphertext using a password.
- Parameters
-
encrypted_data Base64-encoded encrypted data. password The password used to derive the decryption key.
- Returns
- Decrypted plaintext.
- Exceptions
-
std::runtime_error if decryption fails.
Here is the caller graph for this function:
◆ verify_password()
|
static |
Verify if a password can decrypt the given data.
- Parameters
-
encrypted_data Base64-encoded encrypted data. password The password to verify.
- Returns
- true if the password is correct.
Here is the caller graph for this function:
