TechQA.

AES with PKCS#5 padding

1.6k views Asked by At

In quite a few places, I see Java code that uses AES with PKCS#5 padding. I do not understand how this could possible work.

PKCS#5 padding is meant to be used with ciphers that have a block size of <= 8 bytes. The block size for AES is 16 bytes. Is all the code that is out there that uses AES with PKCS#5 wrong? Or does the framework internally use PKCS#7 instead? The frameworks in question would be Sun provide in Java, JCE and BouncyCastle.

java encryption aes bouncycastle jce
Original Q&A
1

There are 1 answers

0
Maarten Bodewes On BEST ANSWER

The code is indeed using PKCS#7 instead. The reason that "PKCS5Padding" is specified is very likely due to compatibility with the older DES and 3DES ciphers. Note that PKCS#5 padding is exactly 8 bytes, not less. Bouncy Castle usually follows the Sun/Oracle providers for the sake of compatibilty, although you can also use the more correct "PKCS7Padding" for the Bouncy Castle provider.

More information on the crypto site (disclaimer: pointing to my own popular Q/A).

Related Questions in JAVA

Related Questions in ENCRYPTION

Related Questions in AES

Related Questions in BOUNCYCASTLE

Related Questions in JCE

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions