AES-CBC Encrypt & Decrypt
AES encryption in CBC mode with a random IV and a password-based key. This tool does both encrypt and decrypt on one page — pick a mode, paste your data, and click. Everything runs on your device, nothing is sent to a server.
The key is derived from this password via PBKDF2 (200k iterations). Must match to decrypt.
Everything runs in your browser. Your data is never sent to our servers.
Example
Example Input
Secret message
Example Output
p8Lm…(Base64 ciphertext)
How to Use
- 1Choose Encrypt or Decrypt mode at the top.
- 2Fill the Input field and, if required, complete the fields in "More settings" (key/password).
- 3Click the button (or press Ctrl+Enter) to process.
- 4Copy the result with the Copy button.
About AES-CBC
AES-CBC (Cipher Block Chaining) is a classic, widely used AES mode. Each block is XORed with the previous ciphertext block, so it needs a random IV (initialization vector) to be secure.
This tool derives the key from a password via PBKDF2, then prepends a random salt and IV to the ciphertext (Base64). Unlike GCM, CBC is not authenticated — it does not detect tampering by itself.
CBC suits compatibility with older systems. For new applications, AES-GCM is preferred because it provides authentication (integrity) alongside confidentiality.
FAQ
Are my data or keys sent to a server?
No. AES-CBC runs entirely in your browser using the Web Crypto API and client-side libraries. Your data, passwords, and keys never leave your device.