Full Encryption Pipeline
Complete encryption pipeline: generate keys, encrypt data, create integrity hash, and sign with HMAC.
このレシピの使いどころ
Implement a proper encrypt-then-MAC pipeline for sensitive data like healthcare records, financial data, or PII. Follows NIST and OWASP best practices.
ステップ
RSA Key Generator
このツールを試す →Generate asymmetric keys
Secret Generator
このツールを試す →Create symmetric keys
AES Encryption
このツールを試す →Encrypt the data
Hash Calculator
このツールを試す →Create integrity hash
HMAC Generator
このツールを試す →Sign the ciphertext
よくある質問
Why use both RSA and AES?
RSA encrypts the AES key (key exchange). AES encrypts the data (fast symmetric encryption). This hybrid approach combines RSA's key management with AES's speed.
What is encrypt-then-MAC?
Encrypt data first, then compute MAC over ciphertext. The receiver verifies MAC before decrypting, preventing padding oracle attacks. The recommended order per cryptographic standards.
関連レシピ
Secure Password Workflow
Generate a strong password, verify its strength, and hash it for storage — a complete password security pipeline.
Web Security Header Audit
Audit your website's security headers, generate a CSP policy, evaluate it, and configure CORS.
JWT Authentication Setup
Set up JWT-based authentication: generate tokens, create signing keys, and implement TOTP for 2FA.
API Security Hardening
Harden your API with HMAC request signing, secure secrets, and SRI for client-side integrity.