Created
October 26, 2018 15:39
-
-
Save authmane512/7f0c1d6797ea9ff83015c3ddce704b3a to your computer and use it in GitHub Desktop.
How to securely encrypt data in Python with NaCl library
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import nacl.secret | |
| import nacl.utils | |
| import nacl.pwhash | |
| # Do not do "import nacl", it won't work | |
| import base64 | |
| password = b"I like Python" | |
| secret_msg = b"Actually, I prefer Javascript..." | |
| # Generate the key: | |
| kdf = nacl.pwhash.argon2i.kdf # our key derivation function | |
| salt_size = nacl.pwhash.argon2i.SALTBYTES # The salt musts have a size of 16 bytes | |
| salt = nacl.utils.random(salt_size) # can be sth like: b'3\xba\x8f\r]\x1c\xcbOsU\x12\xb6\x9c(\xcb\x94' | |
| print(salt) # To decrypt the data later, you have to save this salt somewhere. | |
| key = kdf(nacl.secret.SecretBox.KEY_SIZE, password, salt) | |
| # Encrypt the data: | |
| box = nacl.secret.SecretBox(key) | |
| encrypted = box.encrypt(secret_msg) | |
| # Store the data with binary mode: | |
| with open('file.bin', 'wb') as f: | |
| f.write(encrypted) | |
| # Store the data with text mode: | |
| with open('file.txt', 'w') as f: | |
| content = base64.b64encode(encrypted).decode("ascii") | |
| f.write(content) | |
| # You want to decrypt it? Here's the code: | |
| # https://gist.github.com/authmane512/2def44e2cab214815d002d4b0d1fbb1e |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Here's the code for decryption:
https://gist.github.com/authmane512/2def44e2cab214815d002d4b0d1fbb1e