In our client/server based application, I am adding encryption/decryption of password using javax.crypto package. I am planning to use DES algorithm. I have two questions here:
1. Usig the key: Can i use SecretKey class for generating the keys on client and server side, Like this : SecretKey key = KeyGenerator.getInstance("DES").generateKey();
2. I want to return a String after I decrypt it. I got a sample implementation which returns a string using Base64 encoder/decoder. However I want to stay away from using these two classes. What r the ways ?
1) As long as you have the same secret key on both side it is fine. 2) the encryption/decryption is designed to handle bytes other than characters. That is why in the sample you see based 64 encoded result. If you want to use string , you should change the byte to string by yourself. Just be careful with different charsets.