DES算法为密码体制中的对称密码体制,又被称为美国数据加密标准,是1972年美国IBM公司研制的对称密码体制加密算法。 明文按64位进行分组,密钥长64位,密钥事实上是56位参与DES运算(第8、16、24、32、40、48、56、64位是校验位, 使得每个密钥都有奇数个1)分组后的明文组和56位的密钥按位替代或交换的方法形成密文组的加密方法。
其入口参数有三个:key、data、mode。key为加密解密使用的密钥,data为加密解密的数据,mode为其工作模式。当模式为加密模式时,明文按照64位进行分组,形成明文组,key用于对数据加密,当模式为解密模式时,key用于对数据解密。实际运用中,密钥只用到了64位中的56位,这样才具有高的安全性。
package com.chb.abc.util;
import org.apache.commons.codec.binary.Base64;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.SecretKey;
import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.DESKeySpec;
import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;
/**
* chb.
*/
public class DESUtil {
private static final Logger logger = LoggerFactory.getLogger(DESUtil.class);
private final static String DES = "DES";
private final static String CIPHER_ALGORITHM = "DES/ECB/NoPadding";
/**
* 加密String明文输入,String密文输出
*
* @param text String明文
* @return String密文
*/
public static String getEncryptString(String text, byte[] byteKey) {
byte[] entryptedText = null;
byte[] byteText = null;
byte[] buf = text.getBytes();
int len = 8 - buf.length % 8;
byteText = new byte[buf.length + len];
System.arraycopy(buf, 0, byteText, 0, buf.length);
entryptedText = encrypt(byteText, byteKey);
return Base64.encodeBase64String(entryptedText);
}
/**
* 解密 以String密文输入,String明文输出
*
* @param encryptedText String密文
* @return String明文
*/
public static String getDecryptString(String encryptedText, byte[] byteKey) {
byte[] bytebase64 = null;
byte[] byteMi = null;
String text = null;
try {
byteMi = encryptedText.getBytes();
bytebase64 = Base64.decodeBase64(byteMi);
text = new String(decrypt(bytebase64, byteKey));
} catch (Exception e) {
logger.error("解密Des错误", e);
}
return text.trim();
}
/**Ø
* 加密
*
* @param src 数据源
* @param key 密钥,长度必须是8的倍数
* @return 返回加密后的数据
*/
public static byte[] encrypt(byte[] src, byte[] key) {
// DES算法要求有一个可信任的随机数源
SecureRandom sr = new SecureRandom();
try {
DESKeySpec dks = new DESKeySpec(key);
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance(DES);
SecretKey securekey = keyFactory.generateSecret(dks);
// Cipher对象实际完成加密操作,NoPadding为填充方式 默认为PKCS5Padding
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM);
// 用密匙初始化Cipher对象
cipher.init(Cipher.ENCRYPT_MODE, securekey, sr);
// 现在,获取数据并加密
// 正式执行加密操作
return cipher.doFinal(src);
} catch (Exception e) {
logger.error("加密错误", e);
}
return null;
}
/**
* 生成密钥
*
* @return
* @throws NoSuchAlgorithmException
*/
public static byte[] initKey() throws NoSuchAlgorithmException {
KeyGenerator kg = KeyGenerator.getInstance(DES);
kg.init(56);
SecretKey secretKey = kg.generateKey();
return secretKey.getEncoded();
}
/**
* 解密
*
* @param src 数据源
* @param key 密钥,长度必须是8的倍数
* @return 返回解密后的原始数据
* @throws Exception
*/
public static byte[] decrypt(byte[] src, byte[] key) {
// DES算法要求有一个可信任的随机数源
SecureRandom sr = new SecureRandom();
try {
// 从原始密匙数据创建一个DESKeySpec对象
DESKeySpec dks = new DESKeySpec(key);
// 创建一个密匙工厂,然后用它把DESKeySpec对象转换成
// 一个SecretKey对象
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance(DES);
SecretKey securekey = keyFactory.generateSecret(dks);
// Cipher对象实际完成解密操作
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM);
// 用密匙初始化Cipher对象
cipher.init(Cipher.DECRYPT_MODE, securekey, sr);
// 现在,获取数据并解密
// 正式执行解密操作
return cipher.doFinal(src);
} catch (Exception e) {
logger.error("DES解密错误", e);
}
return null;
}
}
加密:
@Test
public void testChargeSuc() throws Exception {
Client client = Client.create();
URI u = new URI("http://localhost:8080/UnionFlowPlatform/open/ChargeFlow");
WebResource service = client.resource(u);
String busiData = null;
busiData = "<BusiData><ChargeType>1</ChargeType><ChargePhoneNum>"
+ DESUtil.getEncryptString("13588112337,18867103381", key.getBytes())
+ "</ChargePhoneNum><ProductCode>1</ProductCode><CreateTime>" + System.currentTimeMillis()
+ "</CreateTime><ChargeNum> 2 </ChargeNum></BusiData>";
System.out.println("客户端MD5签名内容:" + busiData + key);
String verifyCode = MD5.sign(busiData , key, "utf-8");
String pubInfo = "<PubInfo><VerifyCode>"
+ verifyCode + "</VerifyCode><AppId>"+appid+"</AppId><Version>1</Version></PubInfo>";
String xml = "<?xml version=”1.0” encoding=”utf-8” ?>\n" +
"<AdvPay>" + pubInfo + busiData + "</AdvPay>";
System.out.println(xml);
String response = service.type("text/plain").post(String.class, xml);
logger.info(response);
assertTrue(response.contains("<ReturnCode>0</ReturnCode>"));
System.out.println(response);
}
解密:
if(busiData.element("ChargePhoneNum") != null)
{
phones = DESUtil.getDecryptString(busiData.element("ChargePhoneNum").getText(), appInfo.getAppSecret().getBytes());
}
测试DES加密算法:
@Test
public void testDES(){
String key = "73kjfduiaksjfyqowixkmns83726543k";
String phone = "13566775432";
SecretKeySpec keySpec = new SecretKeySpec(getKey(key), "DES");
Cipher cipher = null;
byte[] byteMi = null;
byte[] byteMing = null;
byte[] buf = phone.getBytes();
int len = 8 - buf.length % 8;
byteMing = new byte[buf.length + len];
System.arraycopy(buf, 0, byteMing, 0, buf.length);
String encryptResult ="";
try {
cipher = Cipher.getInstance("DES/ECB/NoPadding");
cipher.init(Cipher.ENCRYPT_MODE, keySpec);
byte[] encryptedData = cipher.doFinal(byteMing);
BASE64Encoder base64Encoder = new BASE64Encoder();
encryptResult = base64Encoder.encode(encryptedData);
System.out.println("after encode:" + encryptResult);
} catch (Exception e) {
e.printStackTrace();
}
String decodeString = DESUtil.getDecryptString(encryptResult, key.getBytes());
Assert.assertEquals(phone, decodeString);
System.out.println("des :" + decodeString);
}