Node.js ecdh.computeSecret() Method

Last Updated : 27 Jul, 2021

The ecdh.computeSecret() method is an inbuilt application programming interface of class ECDH within the crypto module which is used to create the shared secret using the public key of the other party. The encoding of both the input public key and the output secret key can be specified using the respective parameters.

The ERR_CRYPTO_ECDH_INVALID_PUBLIC_KEY error is thrown when the public key lies outside of the elliptic curve.

Syntax:

ecdh.computeSecret( otherPublicKey, inputEncoding, outputEncoding )

Parameters: This method accepts three parameters as mentioned above and described below:

otherPublicKey: It is the other party’s public key based on which the shared secret is generated.
inputEncoding: This is a string value that specifies the encoding of the other party’s public key. When this parameter is not specified, the key is expected as a Buffer TypedArray, or DataView.
outputEncoding: This is a string value that specifies the encoding of the shared secret that will be generated.

Return Value: It returns the Elliptic Curve DiffieHellman shared secret key in the specified encoding. When the encoding is not provided, it is returned as a Buffer, otherwise a string is returned.

The below examples demonstrate the method:

Example 1: In this example, the shared secrets of both users are created using the keys of both parties and then they are compared to see if they are equal.

Javascript

const crypto = require('crypto'); 
  
const geekA = crypto.createECDH('secp521r1'); 
  
// Generate keys for geekA 
const geekAkey = geekA.generateKeys('base64'); 
  
const geekB = crypto.createECDH('secp521r1'); 
  
// Generate keys for geekB 
const geekBkey = geekB.generateKeys('base64'); 
  
// Compute the secrets of both the geeks in base64 
// based on the other party's key 
let secretA = geekA.computeSecret(geekBkey, 'base64', 'base64'); 
let secretB = geekB.computeSecret(geekAkey, 'base64', 'base64'); 
  
console.log("Secret of A is:", secretA); 
console.log("Secret of B is:", secretB); 
  
// Check if the secrets match 
console.log(secretA == secretB ? 
    "The secrets match!" : 
    "The secrets do not match")  

Output:

Secret of A is: Ac7p1CjFXyTrdcVxx0HIs0Jqjr3fGb7sUTxfgdUQ+xgXmpJgWKS9SECkFf3ehly+xyvE2MtWFcAxF2gq9F7k7tT5
Secret of B is: Ac7p1CjFXyTrdcVxx0HIs0Jqjr3fGb7sUTxfgdUQ+xgXmpJgWKS9SECkFf3ehly+xyvE2MtWFcAxF2gq9F7k7tT5
The secrets match!

Example 2: In this example, the inputEncoding parameter is passed as null as the generateKeys() method does not encode the keys when generating them.

Javascript

const crypto = require('crypto'); 
  
const geekOne = crypto.createECDH('secp521r1'); 
  
// Generate keys for geekOne 
const geekOneKey = geekOne.generateKeys(); 
  
const geekTwo = crypto.createECDH('secp521r1'); 
  
// Generate keys for geekTwo 
const geekTwoKey = geekTwo.generateKeys(); 
  
// Compute the secrets of both the geeks 
// The input  
let secretGeekOne =  
  geekOne.computeSecret(geekTwoKey, null, 'base64'); 
let secretGeekTwo =  
  geekTwo.computeSecret(geekOneKey, null, 'base64'); 
  
console.log("Secret of Geek One is:", secretGeekOne); 
console.log("Secret of Geek Two is:", secretGeekTwo);

Output:

Secret of Geek One is: ACc+SKe9XQMw5quzSEKs0Os+OhGKPRqHIwkW13+lxhs2HNwUEvbZdCEOE/PCzdNKk3v5zqdWSHO0kfRy1qBM8Kc6
Secret of Geek Two is: ACc+SKe9XQMw5quzSEKs0Os+OhGKPRqHIwkW13+lxhs2HNwUEvbZdCEOE/PCzdNKk3v5zqdWSHO0kfRy1qBM8Kc6

Reference: https://nodejs.org/api/crypto.html#crypto_ecdh_computesecret_otherpublickey_inputencoding_outputencoding

Suggest improvement

Node.js diffieHellman.getGenerator() Method

Fabric.js Itext stroke Property

Share your thoughts in the comments