Does google's Crypto.JS AES encryption use PBKDF2 as default?

Question

Some references, but I can't figure out the answer myself:

https://code.google.com/p/crypto-js/#The_Cipher_Algorithms

https://code.google.com/p/crypto-js/source/browse/tags/3.1.2/src/aes.js

score 3 · Accepted Answer · edited Oct 22 '14 at 00:15

The documentation says it's OpenSSL, not PBKDF2:

When you use a CipherParams object in a string context, it's automatically converted to a string according to a format strategy. The default is an OpenSSL-compatible format

This can be verified in the source code. The implementation of the OpenSSL KDF is in evpkdf.js.

The key derivation function is usually referenced as EVP_BytesToKey which is the higher level function in the API that implements the KDF.

score 1 · Answer 2 · answered Oct 21 '14 at 16:36

1

I assume you are invoking it like this:

CryptoJS.AES.encrypt("Message", "Secret Passphrase");

As of 3.1.2 the default key derivation function is OpenSSLKdf as configured here and implemented here and here.

answered Oct 21 '14 at 16:36

wonce

446
3
5

Does google's Crypto.JS AES encryption use PBKDF2 as default?

2 Answers2