Don't like ads? Go Ad-Free Today 

AES Encryption and Decryption

DeveloperSecurity

ADVERTISEMENT · REMOVE?

INPUT

OUTPUT

Client Side

ADVERTISEMENT · REMOVE?

Guide

AES Encryption and Decryption

Encrypt and decrypt text securely using AES (Advanced Encryption Standard) symmetric encryption directly in your browser. This tool supports both AES-GCM and AES-CBC modes with 128, 192, or 256-bit key sizes. All cryptographic operations happen client-side using the Web Crypto API — your data never leaves your device.

How to Use

Enter the text you want to encrypt in the input field. Provide a secret key or click the generate button to create a random one. Select your preferred AES mode (GCM is recommended for authenticated encryption), key size, and output format. Click Process to encrypt. To decrypt, switch to Decrypt mode, paste the encrypted output, enter the same key, and click Process again.

Features

AES-GCM and AES-CBC modes – Choose between authenticated encryption (GCM) or classic block cipher mode (CBC)
Multiple key sizes – Support for 128-bit, 192-bit, and 256-bit encryption keys
PBKDF2 key derivation – Passwords are strengthened with 100,000 iterations of PBKDF2-SHA256
Random key generator – Generate cryptographically secure random keys with one click
Base64 and Hex output – Choose your preferred encoding format for the encrypted output
Client-side processing – All encryption and decryption runs in your browser using the Web Crypto API

ADVERTISEMENT · REMOVE?

 FAQ

What is AES encryption?

AES (Advanced Encryption Standard) is a symmetric-key encryption algorithm adopted by the U.S. government and widely used worldwide. It encrypts data in fixed-size blocks of 128 bits using keys of 128, 192, or 256 bits. AES is considered highly secure and is used in protocols like TLS, VPNs, and disk encryption.
What is the difference between AES-GCM and AES-CBC?

AES-GCM (Galois/Counter Mode) provides both encryption and authentication in a single operation, ensuring data integrity and confidentiality. AES-CBC (Cipher Block Chaining) only provides confidentiality and requires a separate MAC for integrity checks. GCM is generally recommended for modern applications due to its built-in authentication.
What is PBKDF2 and why is it used for key derivation?

PBKDF2 (Password-Based Key Derivation Function 2) converts a human-readable password into a cryptographic key by applying a pseudorandom function (like HMAC-SHA256) repeatedly. The high iteration count (100,000+) makes brute-force attacks computationally expensive, protecting against dictionary and rainbow table attacks.
Why are different AES key sizes available?

AES supports 128, 192, and 256-bit keys offering different security levels. AES-128 provides strong security for most applications, while AES-256 offers a larger key space suitable for highly sensitive data. Larger keys are slightly slower to process but provide greater resistance against brute-force attacks.