SubtleCrypto.generateKey()

The SubtleCrypto.generateKey() method returns a Promise of a newly generated CryptoKey, for symmetrical algorithms, or a CryptoKeyPair, containing two newly generated keys, for asymmetrical algorithm, that matches the algorithm, the usages and the extractability given as parameters.

Syntax

var result = crypto.subtle.generateKey(algo, extractable, keyUsages);

Parameters

• algo is a dictionary object defining the key generation function to use. Supported algo are: AES-CBC, AES-CTR, AES-GCM, RSA-OAEP, AES-KW, HMAC, RSASSA-PKCS1-v1_5, ECDSA, ECDH, and DH.
• extractable is a Boolean indicating if the key can be extracted from the CryptoKey object at a later stage.
• keyUsages  is an Array indicating what can be done with the newly generated key. Possible values of the array are:
  • "encrypt", allowing the key to be used for encrypting messages.
  • "decrypt", allowing the key to be used for decrypting messages.
  • "sign", allowing the key to be used for signing messages.
  • "verify", allowing the key to be used for verifying the signature of messages.
  • "deriveKey", allowing the key to be used as a base key when deriving a new key.
  • "deriveBits", allowing the key to be used as a base key when deriving bits of data for use in cryptographic primitives.
  • "wrapKey", allowing the key to wrap a symmetric key for usage (transfer, storage) in unsecure environments.
  • "unwrapKey", allowing the key to unwrap a symmetric key for usage (transfer, storage) in unsecure environments.

Return value

• result is a Promise that returns the generated key as a CryptoKey or a CryptoKeyPair.

Exceptions

The promise is rejected when the following exception is encountered:

• SyntaxError when keyUsages is empty but the generated symmetric key is of type "secret" or "private" or the generated private component of the generated asymmetric pair of key is empty.

Specifications

Browser compatibility

See also

• Crypto and Crypto.subtle.
• SubtleCrypto, the interface it belongs to.