About This Tool

RSA public/private key encryption in Swift

Primary Use Case

SwiftyRSA is primarily used by iOS developers who need to implement RSA encryption and digital signature functionality within their apps to secure sensitive data such as passwords or personal information. It is especially useful for encrypting data before transmission or verifying data authenticity using public/private key pairs.

Key Features

RSA public and private key encryption and decryption
Support for PEM, DER, Base64, and SecKey key formats
Digital signature generation and verification with SHA digests
Compatibility with Swift 3.2, 4.2, and 5.0+
Integration via CocoaPods and Carthage
Objective-C support via a dedicated pod
PKCS#1 padding support for encryption and decryption

Insights & Recommendations

SwiftyRSA requires Swift 5.0+ and Xcode 10.2 or later. It supports multiple key formats and padding schemes but primarily uses PKCS#1 padding. Users should handle key management securely and ensure keys are stored and loaded safely. The library also supports Objective-C integration via a dedicated pod.

Installation

Use Swift 5.0 and Xcode 10.2 or higher
Install via CocoaPods with `pod 'SwiftyRSA'`
Install Objective-C support via `pod 'SwiftyRSA/ObjC'`
Install via Carthage with `github "TakeScoop/SwiftyRSA"`

Usage

let publicKey = try PublicKey(pemNamed: "public")

Load a public key from a PEM file named 'public'

let clear = try ClearMessage(string: "Clear String", using: .utf8) let encrypted = try clear.encrypted(with: publicKey, padding: .PKCS1)

Encrypt a clear text string using a public RSA key with PKCS#1 padding

let privateKey = try PrivateKey(pemNamed: "private") let encrypted = try EncryptedMessage(base64Encoded: "AAA===") let clear = try encrypted.decrypted(with: privateKey, padding: .PKCS1)

Decrypt an encrypted Base64 string using a private RSA key with PKCS#1 padding

let signature = clear.signed(with: privateKey, digestType: .sha1)

Generate a digital signature for a clear message using a private key and SHA-1 digest

let isSuccessful = try signature.verify(with: publicKey, digestType: .sha1)

Verify a digital signature using a public key and SHA-1 digest

let publicKey = try PublicKey(base64Encoded: base64String)

Create a public key from a Base64 encoded string

let privateKey = try PrivateKey(data: data)

Create a private key from raw data

Smart Usage Notes

Integrate SwiftyRSA into iOS app development pipelines to enforce encryption of sensitive data before transmission, reducing risk of data leakage.Use SwiftyRSA to implement digital signature verification to prevent tampering and ensure data authenticity in mobile applications.Combine with secure key management solutions to enhance protection of private keys and prevent credential theft.Leverage SwiftyRSA in purple team exercises to simulate secure encryption usage and test detection of improper cryptographic implementations.Extend usage by automating encryption of sensitive logs or telemetry data before sending to centralized monitoring systems.

OpenSec Atlas

SwiftyRSA

About This Tool

Primary Use Case

Key Features

Insights & Recommendations

Installation

Usage

Smart Usage Notes

Security Capability Profile

Tags

You Might Also Like