β Back to all tools
AES Encryption / Decryption
Advanced Encryption Standard β symmetric block cipher. All processing runs client-side.
βΉ
AES-GCM is recommended β it provides authenticated encryption (confidentiality + integrity). CBC and CTR are available for compatibility. Leave IV empty to auto-generate a secure random IV.
Settings
AES
Format for key generation
GCM: 12 bytes (24 hex chars) Β· CBC/CTR: 16 bytes (32 hex chars)
βΉ
When encrypting: Leave blank β a secure random IV is auto-generated and prepended to the output.
When decrypting: Leave blank if IV is prepended to ciphertext, or enter the IV used during encryption.
When decrypting: Leave blank if IV is prepended to ciphertext, or enter the IV used during encryption.
Input
0 chars
Output
Encrypted / decrypted result will appear hereβ¦
About AES & IV
The IV (Initialization Vector) is a random value used to ensure that the same plaintext encrypted twice produces different ciphertexts. It does not need to be secret but must be unique per encryption. By default, CryptoWave auto-generates a secure random IV and prepends it to the output β so you only need one string to decrypt.
GCM
12-byte IV (nonce). Provides authenticated encryption β tampering is detected automatically.
CBC
16-byte IV. Each block XORed with the previous ciphertext block before encryption.
CTR
16-byte counter/nonce. Turns AES into a stream cipher β parallelizable and no padding needed.
π Web Crypto API
β NIST FIPS 197
β Zero server transmission