2009年注会新制度《税法》考试试题及答案解析 电子商务安全导论 第一章 电子商务安全基础 数字信封加密技术(RSA和DES结合起来的算法)关于电子商务 2010-01-12 21:51:50 阅读176 评论0 字号:大中小 订阅 数字信封加密技术(RSA和DES结合起来的算法) 充分发挥了DES和RSA两种加密体制的优点 原理为: !.发送者利用DES密钥对重要数据进行加密 2.发送者利用RSA公钥对DES密钥进行加密 3.传送消息 4.接收者收到消息后,利用RSA私钥对经过加密的DES密钥进行解密 5.接收者利用RSA密钥解密解得的DES密钥对重要数据进行解密 在此文中,先产生,本次模拟所要的DES密钥和RSA密钥 然后按照上面五个步骤进行模拟: 1.产生DES密钥 /* * To change this template, choose Tools | Templates * and open the template in the editor. */ package digital.envolope.technology; import java.io.File; import java.io.FileOutputStream; import java.io.ObjectOutputStream; import java.util.logging.Level; import java.util.logging.Logger; import javax.crypto.KeyGenerator; import javax.crypto.SecretKey; /** * * @author Administrator */ public class GenerateDESKey {//产生DES密钥 public static void main(String[] args) { try { //密钥生成器 KeyGenerator kg = KeyGenerator.getInstance("DESede"); //采用双重des加密算法 //设置密钥长度为168位 kg.init(168); //生成密钥 SecretKey k=kg.generateKey(); //将密钥保存在文件中 File dir=new File("digitalEnvolope"); boolean pass= dir.mkdir();//创建目录 if(!pass){ File file=new File(dir,"key.dat"); FileOutputStream out=new FileOutputStream(file); ObjectOutputStream OOS=new ObjectOutputStream(out); OOS.writeObject(k);//必须以可序列化对象的形式写入,否则在用ObjectInputStream读取时会抛出异常 out.close(); OOS.close(); } } catch (Exception ex) { Logger.getLogger(GenerateDESKey.class.getName()).log(Level.SEVERE, null, ex); } } } 2.产生RSR密钥对 /* * To change this template, choose Tools | Templates * and open the template in the editor. */ package digital.envolope.technology; import java.io.FileOutputStream; import java.io.ObjectOutputStream; import java.io.File; import java.security.KeyPair; import java.security.KeyPairGenerator; import java.security.PrivateKey; import java.security.PublicKey; import java.util.logging.Level; import java.util.logging.Logger; /** * * @author Administrator */ public class GenKey { public static void main(String[] args){ try { //创建密钥对生成器 KeyPairGenerator KPG = KeyPairGenerator.getInstance("RSA"); //初始化密钥生成器 KPG.initialize(1024); //生成密钥对 KeyPair KP=KPG.genKeyPair(); //获取公钥和密钥 PublicKey pbKey=KP.getPublic(); PrivateKey prKey=KP.getPrivate(); //保存公钥到文件 File file=new File("digitalEnvolope","RSAPublic.dat"); FileOutputStream out=new FileOutputStream(file); ObjectOutputStream fileOut=new ObjectOutputStream(out); fileOut.writeObject(pbKey); //保存密钥到文件 file=new File(("digitalEnvolope","RSAPrivate.dat"); FileOutputStream outPrivate=new FileOutputStream(file); ObjectOutputStream privateOut=new ObjectOutputStream(outPrivate); privateOut.writeObject(prKey); } catch (Exception ex) { Logger.getLogger(GenKey.class.getName()).log(Level.SEVERE, null, ex); } } } 3.用DES密钥对重要数据进行加密 /* * To change this template, choose Tools | Templates * and open the template in the editor. */ package digital.envolope.technology; import java.io.File; import java.io.FileInputStream; import java.io.FileOutputStream; import java.io.ObjectInputStream; import java.security.Key; import java.util.logging.Level; import java.util.logging.Logger; import javax.crypto.Cipher; /** * * @author Administrator */ public class EncryptDESede {//用DESede算法加密数据文件 public static void main(String[] args){ //读取数据文件 File data=new File("digitalEnvolope","business.txt"); try { FileInputStream dataInput = new FileInputStream(data); int size=0;//记录文件的字节数 size=dataInput.available(); byte[] dataInputByte=new byte[size]; //读入到字节数组中 dataInput.read(dataInputByte); //读取des密钥 File encryption=new File("digitalEnvolope","key.dat"); FileInputStream fileInput=new FileInputStream(encryption); //若在把密钥写入文件时,不是用ObjectOutputStream直接将SecretKey对象写入文件时,在此读取会抛出异常,切记 ObjectInputStream OIS=new ObjectInputStream(fileInput); Key key=(Key)OIS.readObject(); //取得加密器 Cipher cp=Cipher.getInstance("DESede"); //设置加密模式 cp.init(Cipher.ENCRYPT_MODE, key); //加密字节 byte encryptByte[]=cp.doFinal(dataInputByte); FileOutputStream out=new FileOutputStream(new File("digitalEnvolope","DESEncrypt_data.txt")); out.write(encryptByte); //释放系统资源 dataInput.close(); OIS.close(); out.close(); } catch (Exception ex) { Logger.getLogger(EncryptDESede.class.getName()).log(Level.SEVERE, null, ex); } } } 4.利用RSA公钥对DES密钥进行加密 /* * To change this template, choose Tools | Templates * and open the template in the editor. */ package digital.envolope.technology; import java.io.File; import java.io.FileInputStream; import java.io.FileOutputStream; import java.io.IOException; import java.io.ObjectInputStream; import java.security.Key; import java.util.logging.Level; import java.util.logging.Logger; import javax.crypto.Cipher; import org.bouncycastle.jce.provider.BouncyCastleProvider; /** * * @author Administrator */ public class RSAEncryptDESEnctyption {//用RSA公钥加密DESede密钥 public static void main(String[] args) { //创建并初始化密码器 FileInputStream keyFIS = null;//此处不能少 try { //读取RSA公钥,位于digitalEnvolope文件夹下 File file = new File("digitalEnvolope", "RSAPublic.dat"); keyFIS = new FileInputStream(file); ObjectInputStream OIS = new ObjectInputStream(keyFIS); Key key = (Key) OIS.readObject(); //创建并初始化密码器 Cipher cp = Cipher.getInstance("RSA", new BouncyCastleProvider()); //此处不能少 cp.init(Cipher.ENCRYPT_MODE, key); //读取DESede密钥 file = new File("digitalEnvolope", "key.dat"); FileInputStream dataFIS = new FileInputStream(file); //取得要加密的数据 int size = dataFIS.available(); byte[] encryptByte = new byte[size]; dataFIS.read(encryptByte); //建立文件输出流 file = new File("digitalEnvolope", "Enc_RAS.dat"); if (file.exists()) { file.delete();//如果已经存在则先删除 } FileOutputStream FOS = new FileOutputStream(file); //RSA算法必须采用分块加密 //取得RSA加密的块的大小 int blockSize = cp.getBlockSize(); //根据给定的输入长度 inputLen(以字节为单位),返回保存下一个 update 或 doFinal 操作结果所需的输出缓冲区长度(以字节为单位)。 int outputBlockSize = cp.getOutputSize(encryptByte.length); //确定要加密的次数(加密块的个数) int leavedSize = encryptByte.length % blockSize; int blocksNum = leavedSize == 0 ? encryptByte.length / blockSize : encryptByte.length / blockSize + 1; byte[] cipherData = new byte[blocksNum * outputBlockSize]; //对每块数据分别加密 for (int i = 0; i < blocksNum; i++) { if ((encryptByte.length - i * blockSize) > blockSize) { cp.doFinal(encryptByte, i * blockSize, blockSize, cipherData, i * outputBlockSize); } else { cp.doFinal(encryptByte, i * blockSize, encryptByte.length - i * blockSize, cipherData, i * outputBlockSize); } } FOS.write(cipherData); FOS.close(); } catch (Exception ex) { Logger.getLogger(RSAEncryptDESEnctyption.class.getName()).log(Level.SEVERE, null, ex); } finally { try { keyFIS.close(); } catch (IOException ex) { Logger.getLogger(RSAEncryptDESEnctyption.class.getName()).log(Level.SEVERE, null, ex); } } } } 5..接收者收到消息后,利用RSA私钥对经过加密的DES密钥进行解密 /* * To change this template, choose Tools | Templates * and open the template in the editor. */ package digital.envolope.technology; import java.io.File; import java.io.FileInputStream; import java.io.FileOutputStream; import java.io.IOException; import java.io.ObjectInputStream; import java.security.Key; import java.util.logging.Level; import java.util.logging.Logger; import javax.crypto.Cipher; import org.bouncycastle.jce.provider.BouncyCastleProvider; /** * * @author Administrator */ public class RSADecryptionDESEncryption {//用RSA私钥来解密经过加密的des密钥 public static void main(String[] agrs) { FileInputStream keyFIS = null; try { //读取RSA私钥,位于digitalEnvolope文件夹下 File file = new File("digitalEnvolope", "RSAPrivate.dat"); keyFIS = new FileInputStream(file); ObjectInputStream OIS = new ObjectInputStream(keyFIS); Key key = (Key) OIS.readObject(); //创建并初始化密码器 Cipher cp = Cipher.getInstance("RSA", new BouncyCastleProvider()); //此处不能少 cp.init(Cipher.DECRYPT_MODE, key); //读取经过加密的DES密钥 file=new File("digitalEnvolope","Enc_RAS.dat"); FileInputStream dataFIS = new FileInputStream(file); //取得要加密的数据 int size = dataFIS.available(); byte[] encryptByte = new byte[size]; dataFIS.read(encryptByte); //建立输出流 file=new File("digitalEnvolope","Dec_RAS.dat"); FileOutputStream FOS = new FileOutputStream(file); int blockSize = cp.getBlockSize(); int j = 0; //分别对各块数据进行解密 while ((encryptByte.length - j * blockSize) > 0) { FOS.write(cp.doFinal(encryptByte, j * blockSize, blockSize)); j++; } FOS.close(); } catch (Exception ex) { Logger.getLogger(RSADecryptionDESEncryption.class.getName()).log(Level.SEVERE, null, ex); } finally { try { keyFIS.close(); } catch (IOException ex) { Logger.getLogger(RSADecryptionDESEncryption.class.getName()).log(Level.SEVERE, null, ex); } } } } 6.接收者利用RSA密钥解密解得的DES密钥对重要数据进行解密 /* * To change this template, choose Tools | Templates * and open the template in the editor. */ package digital.envolope.technology; import java.io.File; import java.io.FileInputStream; import java.io.FileOutputStream; import java.io.IOException; import java.io.ObjectInputStream; import java.security.Key; import java.util.logging.Level; import java.util.logging.Logger; import javax.crypto.Cipher; /** * * @author Administrator */ public class DecryptDESede {//用RSA密钥解密解得的DES密钥对数据文件进行解密 public static void main(String[] args){ FileInputStream fInput=null; try { //读取加密后的数据文件 File f = new File("digitalEnvolope", "DESEncrypt_data.txt"); fInput = new FileInputStream(f); int size=0; size=fInput.available(); byte[] encryptDataByte=new byte[size]; fInput.read(encryptDataByte); //读取解密后的密钥 File des=new File("digitalEnvolope","Dec_RAS.dat"); FileInputStream fileDes=new FileInputStream(des); ObjectInputStream OIS=new ObjectInputStream(fileDes); Key key=(Key)OIS.readObject(); Cipher cp=Cipher.getInstance("DESede"); cp.init(Cipher.DECRYPT_MODE, key); byte[] ptext=cp.doFinal(encryptDataByte); //把解密后的数据保存起来 f=new File("digitalEnvolope","businessJieMi.dat"); FileOutputStream out=new FileOutputStream(f); out.write(ptext); out.close(); fileDes.close(); OIS.close(); } catch (Exception ex) { Logger.getLogger(DecryptDESede.class.getName()).log(Level.SEVERE, null, ex); } finally { try { fInput.close(); } catch (IOException ex) { Logger.getLogger(DecryptDESede.class.getName()).log(Level.SEVERE, null, ex); } } } }
3058
评论
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
查看更多评论
添加红包
