Comments on: as3Crypto and php, what a fun ride!

By: Flash encryption and PHP decryption | Element Lab

Flash encryption and PHP decryption | Element Lab — Wed, 10 Feb 2010 16:07:35 +0000

[...] http://www.zedia.net/2009/as3crypto-and-php-what-a-fun-ride/ [...]

By: Shane

Shane — Mon, 14 Dec 2009 07:32:47 +0000

Would be really interested in a complete working AES version of this system with all the bugs removed. I was quite shocked to find out how much time I’ve had to spend finding a system to crypt data between php and actionscript. Yet still haven’t found a strong secure way.

By: AlexWD

AlexWD — Thu, 12 Nov 2009 04:22:43 +0000

I noticed some problems as well, but it’s not on the PHP end. Rather when decrypting on the PHP end I’m getting random chars appended to the front. I put a temporary solution that makes it work for me, but I’m not sure if it’s the right way to go because I don’t know the full extent of the problem. And it’s just a half-assed fix anyway.

By: Hadi

Hadi — Sat, 07 Nov 2009 20:44:13 +0000

if (strspn($text, chr($pad), strlen($text) – $pad) != $pad) return $text; //<– return $text instead of false when there is nothign to unpad
blockquote>

it seems that I have problem with Pading also… I submit the bug in as3Crypto their issues tab #28 but will you please explain a bit more about what you’re doing above? Thanks.

By: Hong

Hong — Wed, 14 Oct 2009 19:10:02 +0000

I notice the decryption is not working sometimes. I went inside and found the root of the problem.

For function pkcs5_unpad, this modification will ensure that decryption still goes through if there is no need for unpadding.

if (strspn($text, chr($pad), strlen($text) – $pad) != $pad) return $text; //<– return $text instead of false when there is nothign to unpad

It works for me but I am not a crypto artist so I am not exactly sure if this is the way to go.

Comment and keep me with the game ppl. =)

By: MAADMAXX

MAADMAXX — Fri, 03 Jul 2009 04:11:45 +0000

What a great post. I’m a intermediate/novice coder – would it be possible to provide working sample code in each direction? Would be greatly appreciated.

By: Atin

Atin — Mon, 29 Jun 2009 07:08:40 +0000

nice post man, but i am looking for an encryption and decryption in actionscript.. i tried hurlant, DES but its not working.. the encrypted code is not decrypted with its generated encrypted code.. i also tried xor encrypt decrypt but it fails to decrypt if the text has ‘and’ in it.. looking for help if anyone knows about this..

By: BubbleBoy

BubbleBoy — Tue, 23 Jun 2009 12:31:53 +0000

Thanks! Interesting. It looks to me like you are NOT using AES in this script, although you say it in the intro? Did you implement AES as well?

Very helpful anyway! Thanks!

By: Tim

Tim — Sun, 21 Jun 2009 00:36:16 +0000

Never mind, I was able to find the problem. I was not initializing the PHP Crypt key properly because I was passing the key in through the constructor not the init() function.

By: Tim

Tim — Sat, 20 Jun 2009 21:34:56 +0000

I was wondering how to actually use the Crypt class in PHP. My main problem is with the key passed in through the init function. Do I pass in the exact same value as the key used in CryptoCode class, in this case “TESTTEST” or do I need to convert the PHP “TESTTEST” string into another format before passing it to the Crypt->init().

I ask because I’m unable to decrypt data being passed from ActionScript. I get a 0 back from Crypt->encrypt().