[Back] Fernet is a symmetric encryption method which makes sure that the message encrypted cannot be manipulated/read without the key. It uses URL safe encoding for the keys. Fernet uses 128-bit AES in CBC mode and PKCS7 padding, with HMAC using SHA256 for authentication. The IV is created from os.random(). This page decodes the token. Generate a token here: [Fernet]
Here are some sample Fernet tokens. Can you determine the messages and when they were created?
Token: gAAAAABWC9P7-9RsxTz_dwxh9-O2VUB7Ih8UCQL1_Zk4suxnkCvb26Ie4i8HSUJ4caHZuiNt jLl3qfmCv_fS3_VpjL7HxCz7_Q== Current time: Wed Sep 30 13:30:32 2015 Token Details ============= Decoded data: 8000000000560bd3fbfbd46cc53cff770c61f7e3b655407b221f140902f5fd993 8b2ec67902bdbdba21ee22f0749427871a1d9ba236d8cb977a9f982bff7d2dff5698cbec7c42cfbf d ======Analysis==== Version: 80 Date created: 00000000560bd3fb IV: fbd46cc53cff770c61f7e3b655407b22 Cipher: 1f140902f5fd9938b2ec67902bdbdba2 HMAC: 1ee22f0749427871a1d9ba236d8cb977a9f982bff7d2dff5698cbec7c42cfbfd ======Converted==== Time stamp: 1443615739 Date created: Wed Sep 30 13:22:19 2015 IV: fbd46cc53cff770c61f7e3b655407b22 Decoded: password