PGP 对于JSON的加解密

最新推荐文章于 2024-07-29 14:22:26 发布
置顶 最新推荐文章于 2024-07-29 14:22:26 发布
阅读量723 收藏 2
点赞数 1
分类专栏: Java 工具 文章标签: java pgp gpg 加密解密
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/nealdor/article/details/121518844
版权

引言:

目前CSDN上,大部分都是对于文本的PGP加解密博文,但实际开发中,可能会与渠道对接使用PGP加解密报文,所以这里整理了下,对文本的加解密工具,希望对你有帮助。

一、引入PGP的依赖

        <!-- PGP 加解密 依赖-->
        <dependency>
            <groupId>org.bouncycastle</groupId>
            <artifactId>bcpg-jdk15on</artifactId>
            <optional>true</optional>
        </dependency>

        <dependency>
            <groupId>org.bouncycastle</groupId>
            <artifactId>bcprov-jdk15on</artifactId>
            <optional>true</optional>
        </dependency>

二、编写工具类

package com.bop.util.pgp;

import org.bouncycastle.openpgp.PGPException;
import org.bouncycastle.openpgp.PGPPrivateKey;
import org.bouncycastle.openpgp.PGPPublicKey;
import org.bouncycastle.openpgp.PGPPublicKeyRing;
import org.bouncycastle.openpgp.PGPPublicKeyRingCollection;
import org.bouncycastle.openpgp.PGPSecretKey;
import org.bouncycastle.openpgp.PGPSecretKeyRing;
import org.bouncycastle.openpgp.PGPSecretKeyRingCollection;
import org.bouncycastle.openpgp.PGPUtil;
import org.bouncycastle.openpgp.operator.jcajce.JcaKeyFingerprintCalculator;
import org.bouncycastle.openpgp.operator.jcajce.JcePBESecretKeyDecryptorBuilder;

import java.io.BufferedInputStream;
import java.io.FileInputStream;
import java.io.IOException;
import java.io.InputStream;
import java.util.Iterator;

public class BCPGPUtils {
    public static PGPPublicKey readPublicKey(String fileName) throws IOException, PGPException {
        InputStream keyIn = new BufferedInputStream(new FileInputStream(fileName));
        PGPPublicKey pubKey = readPublicKey(keyIn);
        keyIn.close();
        return pubKey;
    }

    public static PGPPublicKey readPublicKey(InputStream in) throws IOException, PGPException {
        PGPPublicKeyRingCollection pgpPub = new PGPPublicKeyRingCollection(PGPUtil.getDecoderStream(in),
                new JcaKeyFingerprintCalculator());
        Iterator<PGPPublicKeyRing> keyRings = pgpPub.getKeyRings();
        while (keyRings.hasNext()) {
            PGPPublicKeyRing keyRing = keyRings.next();
            Iterator<PGPPublicKey> publicKeys = keyRing.getPublicKeys();
            while (publicKeys.hasNext()) {
                PGPPublicKey key = publicKeys.next();
                if (key.isEncryptionKey()) {
                    return key;
                }
            }
        }
        throw new IllegalArgumentException("Can't find encryption key in key ring.");
    }

    public static PGPSecretKey readSecretKey(String fileName) throws IOException, PGPException {
        InputStream keyIn = new BufferedInputStream(new FileInputStream(fileName));
        PGPSecretKey secKey = readSecretKey(keyIn);
        keyIn.close();
        return secKey;
    }

    public static PGPSecretKey readSecretKey(InputStream in) throws IOException, PGPException {
        PGPSecretKeyRingCollection pgpSec = new PGPSecretKeyRingCollection(PGPUtil.getDecoderStream(in),
                new JcaKeyFingerprintCalculator());
        Iterator<PGPSecretKeyRing> keyRings = pgpSec.getKeyRings();
        while (keyRings.hasNext()) {
            PGPSecretKeyRing keyRing = keyRings.next();
            Iterator<PGPSecretKey> secretKeys = keyRing.getSecretKeys();
            while (secretKeys.hasNext()) {
                PGPSecretKey key = secretKeys.next();
                if (key.isSigningKey()) {
                    return key;
                }
            }
        }
        throw new IllegalArgumentException("Can't find signing key in key ring.");
    }

    /**
     * Load a secret key ring collection from keyIn and find the private key
     * corresponding to keyID if it exists.
     */
    public static PGPPrivateKey findSecretKey(PGPSecretKeyRingCollection pgpSec, long keyID, char[] pass)
            throws PGPException {
        PGPSecretKey pgpSecKey = pgpSec.getSecretKey(keyID);
        if (pgpSecKey == null) {
            return null;
        }
        return pgpSecKey.extractPrivateKey(new JcePBESecretKeyDecryptorBuilder().setProvider("BC").build(pass));
    }

    public static PGPPrivateKey findPrivateKey(InputStream keyIn, long keyID, char[] pass)
            throws IOException, PGPException {
        PGPSecretKeyRingCollection pgpSec = new PGPSecretKeyRingCollection(PGPUtil.getDecoderStream(keyIn),
                new JcaKeyFingerprintCalculator());
        return findPrivateKey(pgpSec.getSecretKey(keyID), pass);
    }

    public static PGPPrivateKey findPrivateKey(PGPSecretKey pgpSecKey, char[] pass)
            throws PGPException {
        if (pgpSecKey == null)
            return null;
        return pgpSecKey.extractPrivateKey(new JcePBESecretKeyDecryptorBuilder().setProvider("BC").build(pass));
    }
}

三、编写加密类

package com.bop.util.pgp;

import lombok.SneakyThrows;
import org.apache.commons.io.IOUtils;
import org.bouncycastle.bcpg.ArmoredOutputStream;
import org.bouncycastle.bcpg.CompressionAlgorithmTags;
import org.bouncycastle.bcpg.HashAlgorithmTags;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.openpgp.PGPCompressedData;
import org.bouncycastle.openpgp.PGPCompressedDataGenerator;
import org.bouncycastle.openpgp.PGPEncryptedData;
import org.bouncycastle.openpgp.PGPEncryptedDataGenerator;
import org.bouncycastle.openpgp.PGPException;
import org.bouncycastle.openpgp.PGPLiteralData;
import org.bouncycastle.openpgp.PGPLiteralDataGenerator;
import org.bouncycastle.openpgp.PGPOnePassSignature;
import org.bouncycastle.openpgp.PGPPrivateKey;
import org.bouncycastle.openpgp.PGPPublicKey;
import org.bouncycastle.openpgp.PGPSecretKey;
import org.bouncycastle.openpgp.PGPSignature;
import org.bouncycastle.openpgp.PGPSignatureGenerator;
import org.bouncycastle.openpgp.PGPSignatureSubpacketGenerator;
import org.bouncycastle.openpgp.operator.bc.BcPBESecretKeyDecryptorBuilder;
import org.bouncycastle.openpgp.operator.bc.BcPGPContentSignerBuilder;
import org.bouncycastle.openpgp.operator.bc.BcPGPDataEncryptorBuilder;
import org.bouncycastle.openpgp.operator.bc.BcPGPDigestCalculatorProvider;
import org.bouncycastle.openpgp.operator.bc.BcPublicKeyKeyEncryptionMethodGenerator;

import java.io.BufferedOutputStream;
import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.io.InputStream;
import java.io.OutputStream;
import java.nio.charset.StandardCharsets;
import java.nio.file.Files;
import java.nio.file.Paths;
import java.security.Provider;
import java.security.SecureRandom;
import java.security.Security;

/**
 * PGP 加密类
 *
 * @author neal.armstrong
 * @version 1.0
 * @since 2021.11.22
 */
public class PgpMemEncryptor {
    private final String publicKeyPath;
    private final String privateKeyPath;

    private InputStream PUBLIC_KEY;

    private PGPPublicKey publicKey;
    private PGPPrivateKey privateKey;

    public PgpMemEncryptor(String publicKeyPath, String privateKeyPath) {
        this.publicKeyPath = publicKeyPath;
        this.privateKeyPath = privateKeyPath;
    }

    public PGPPublicKey getPublicKey() {
        if (publicKey == null) {
            try {
                publicKey = BCPGPUtils.readPublicKey(publicKeyPath);
            } catch (IOException | PGPException e) {
                e.printStackTrace();
            }
        }
        return publicKey;
    }

    public PGPPrivateKey getPrivateKey(String purhapse) {
        if (privateKey == null) {
            try {
                PGPSecretKey secretKey = BCPGPUtils.readSecretKey(privateKeyPath);
                privateKey = secretKey
                        .extractPrivateKey(new BcPBESecretKeyDecryptorBuilder(new BcPGPDigestCalculatorProvider())
                                .build(purhapse.toCharArray()));
            } catch (PGPException | IOException e) {
                e.printStackTrace();
            }
        }
        return privateKey;
    }

    @SneakyThrows
    private InputStream getPublicIs() {
        if (PUBLIC_KEY == null) {
            PUBLIC_KEY = Files.newInputStream(Paths.get(publicKeyPath));
        }
        return PUBLIC_KEY;
    }

    private static void getProvider() {
        Provider provider = Security.getProvider("BC");
        if (provider == null) {
            provider = new BouncyCastleProvider();
            Security.addProvider(provider);
        }
    }

    public String encryptFile(String inputFile, boolean withIntegrityCheck) throws IOException, PGPException {
        getProvider();
        byte[] rawText = inputFile.getBytes();

        ByteArrayOutputStream encOut = new ByteArrayOutputStream();
        PGPPublicKey pubKey = BCPGPUtils.readPublicKey(getPublicIs());
        ArmoredOutputStream outputStream = new ArmoredOutputStream(encOut);

        ByteArrayOutputStream bOut = new ByteArrayOutputStream();
        PGPCompressedDataGenerator comData = new PGPCompressedDataGenerator(CompressionAlgorithmTags.ZIP);
        PGPLiteralDataGenerator lData = new PGPLiteralDataGenerator();
        OutputStream open = lData.open(comData.open(bOut), PGPLiteralData.BINARY, PGPLiteralData.CONSOLE, rawText.length, PGPLiteralData.NOW);
        open.write(rawText);
        lData.close();
        comData.close();

        BcPGPDataEncryptorBuilder builder = new BcPGPDataEncryptorBuilder(PGPEncryptedData.AES_256);
        builder.setWithIntegrityPacket(withIntegrityCheck);
        builder.setSecureRandom(new SecureRandom());

        PGPEncryptedDataGenerator cpk = new PGPEncryptedDataGenerator(builder);
        cpk.addMethod(new BcPublicKeyKeyEncryptionMethodGenerator(pubKey));

        byte[] bytes = bOut.toByteArray();
        OutputStream cOut = cpk.open(outputStream, bytes.length);
        cOut.write(bytes);
        cOut.close();
        outputStream.close();

        return new String(encOut.toByteArray(), StandardCharsets.UTF_8);
    }

    public String encryptAndSignFile(String inputFile, boolean withIntegrityCheck, String purhapse) {
        getProvider();
        InputStream input = IOUtils.toInputStream(inputFile);
        ByteArrayOutputStream output = new ByteArrayOutputStream();
        try {
            int DEFAULT_BUFFER_SIZE = 16 * 1024;

            PGPSecretKey pgpSec = BCPGPUtils.readSecretKey(privateKeyPath);
            PGPPrivateKey signingKey = getPrivateKey(purhapse);

            PGPPublicKey publicKey = pgpSec.getPublicKey();
            String userid = (String) publicKey.getUserIDs().next();

            BcPGPDataEncryptorBuilder dataEncryptor = new BcPGPDataEncryptorBuilder(PGPEncryptedData.AES_256);
            dataEncryptor.setWithIntegrityPacket(withIntegrityCheck);
            dataEncryptor.setSecureRandom(new SecureRandom());

            PGPEncryptedDataGenerator encryptedDataGenerator = new PGPEncryptedDataGenerator(dataEncryptor);
            encryptedDataGenerator.addMethod((new BcPublicKeyKeyEncryptionMethodGenerator(getPublicKey())));

            OutputStream finalOut = new BufferedOutputStream(new ArmoredOutputStream(output), DEFAULT_BUFFER_SIZE);
            OutputStream encOut = encryptedDataGenerator.open(finalOut, new byte[DEFAULT_BUFFER_SIZE]);

            PGPCompressedDataGenerator compressedDataGenerator = new PGPCompressedDataGenerator(PGPCompressedData.ZIP);
            BufferedOutputStream compressedOut = new BufferedOutputStream(compressedDataGenerator.open(encOut));

            PGPSignatureGenerator signatureGenerator = new PGPSignatureGenerator(new BcPGPContentSignerBuilder(
                    publicKey.getAlgorithm(), HashAlgorithmTags.SHA256));
            signatureGenerator.init(PGPSignature.BINARY_DOCUMENT, signingKey);

            PGPSignatureSubpacketGenerator pgpSignatureSubpacketGenerator = new PGPSignatureSubpacketGenerator();
            pgpSignatureSubpacketGenerator.setSignerUserID(false, userid);
            signatureGenerator.setHashedSubpackets(pgpSignatureSubpacketGenerator.generate());

            PGPOnePassSignature onePassSignature = signatureGenerator.generateOnePassVersion(false);
            onePassSignature.encode(compressedOut);

            PGPLiteralDataGenerator literalDataGenerator = new PGPLiteralDataGenerator(true);
            OutputStream literalOut = literalDataGenerator.open(compressedOut, PGPLiteralData.BINARY,
                    PGPLiteralData.CONSOLE, PGPLiteralData.NOW, new byte[1 << 16]);

            byte[] buffer = new byte[1 << 16];

            int bytesRead;
            while ((bytesRead = input.read(buffer)) != -1) {
                literalOut.write(buffer, 0, bytesRead);
                signatureGenerator.update(buffer, 0, bytesRead);
                literalOut.flush();
            }
            // Close Literal data stream and add signature
            literalOut.close();
            literalDataGenerator.close();
            signatureGenerator.generate().encode(compressedOut);
            // Close all other streams
            compressedOut.close();
            compressedDataGenerator.close();
            encOut.close();
            encryptedDataGenerator.close();
            finalOut.close();

            input.close();
            return new String(output.toByteArray(), StandardCharsets.UTF_8);
        } catch (Exception e) {
            e.printStackTrace();
        }
        return null;
    }
}

四、编写解密类

package com.bop.util.pgp;

import lombok.SneakyThrows;
import org.apache.commons.io.IOUtils;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.openpgp.PGPCompressedData;
import org.bouncycastle.openpgp.PGPEncryptedDataList;
import org.bouncycastle.openpgp.PGPException;
import org.bouncycastle.openpgp.PGPLiteralData;
import org.bouncycastle.openpgp.PGPObjectFactory;
import org.bouncycastle.openpgp.PGPOnePassSignature;
import org.bouncycastle.openpgp.PGPOnePassSignatureList;
import org.bouncycastle.openpgp.PGPPrivateKey;
import org.bouncycastle.openpgp.PGPPublicKey;
import org.bouncycastle.openpgp.PGPPublicKeyEncryptedData;
import org.bouncycastle.openpgp.PGPPublicKeyRingCollection;
import org.bouncycastle.openpgp.PGPSecretKeyRingCollection;
import org.bouncycastle.openpgp.PGPSignature;
import org.bouncycastle.openpgp.PGPSignatureList;
import org.bouncycastle.openpgp.PGPUtil;
import org.bouncycastle.openpgp.operator.bc.BcKeyFingerprintCalculator;
import org.bouncycastle.openpgp.operator.bc.BcPGPContentVerifierBuilderProvider;
import org.bouncycastle.openpgp.operator.bc.BcPublicKeyDataDecryptorFactory;
import org.bouncycastle.util.io.Streams;

import java.io.ByteArrayOutputStream;
import java.io.InputStream;
import java.nio.file.Files;
import java.nio.file.Paths;
import java.security.Provider;
import java.security.Security;
import java.util.Iterator;

/**
 * PGP 解密类
 *
 * @author neal.armstrong
 * @version 1.0
 * @since 2021.11.22
 */
public class PgpMemDecryptor {
    private final String publicKeyPath;
    private final String privateKeyPath;

    public PgpMemDecryptor(String publicKeyPath, String privateKeyPath) {
        this.publicKeyPath = publicKeyPath;
        this.privateKeyPath = privateKeyPath;
    }

    private InputStream PUBLIC_KEY;
    private InputStream PRIVATE_KEY;

//    int compressionAlgorithm;
//    int hashAlgorithm;
//    int symmetricKeyAlgorithm;

    private static void getProvider() {
        Provider provider = Security.getProvider("BC");
        if (provider == null) {
            provider = new BouncyCastleProvider();
            Security.addProvider(provider);
        }
    }

    @SneakyThrows
    private InputStream getPublicIs() {
        if (PUBLIC_KEY == null) {
            PUBLIC_KEY = Files.newInputStream(Paths.get(publicKeyPath));
        }
        return PUBLIC_KEY;
    }

    @SneakyThrows
    private InputStream getPrivateIs() {
        if (PRIVATE_KEY == null) {
            PRIVATE_KEY = Files.newInputStream(Paths.get(privateKeyPath));
        }
        return PRIVATE_KEY;
    }

    public String decryptAndVerifyFile(String content, String passPhrase) {
        getProvider();
        InputStream verifyKeyInput = getPrivateIs();
        InputStream decryptKeyInput = getPublicIs();
        char[] passwd;
        try {
            passwd = passPhrase.toCharArray();
            InputStream input = PGPUtil.getDecoderStream(IOUtils.toInputStream(content));

            PGPObjectFactory pgpF = new PGPObjectFactory(input, new BcKeyFingerprintCalculator());
            PGPEncryptedDataList enc;

            Object o = pgpF.nextObject();

            if (o instanceof PGPEncryptedDataList) {
                enc = (PGPEncryptedDataList) o;
            } else {
                enc = (PGPEncryptedDataList) pgpF.nextObject();
            }

            Iterator<?> it = enc.getEncryptedDataObjects();
            PGPPrivateKey sKey = null;
            PGPPublicKeyEncryptedData pbe = null;
            PGPSecretKeyRingCollection pgpSec = new PGPSecretKeyRingCollection(PGPUtil.getDecoderStream(verifyKeyInput),
                    new BcKeyFingerprintCalculator());

            while (sKey == null && it.hasNext()) {
                pbe = (PGPPublicKeyEncryptedData) it.next();
                sKey = BCPGPUtils.findSecretKey(pgpSec, pbe.getKeyID(), passwd);
            }

            if (sKey == null) {
                throw new IllegalArgumentException("secret key for message not found.");
            }

            InputStream clear = pbe.getDataStream(new BcPublicKeyDataDecryptorFactory(sKey));
//            pbe.getSymmetricAlgorithm(new BcPublicKeyDataDecryptorFactory(sKey));

            PGPObjectFactory plainFact = new PGPObjectFactory(clear, new BcKeyFingerprintCalculator());

            Object message;

            PGPOnePassSignatureList onePassSignatureList = null;
            PGPSignatureList signatureList = null;
            PGPCompressedData compressedData;

            message = plainFact.nextObject();
            ByteArrayOutputStream actualOutput = new ByteArrayOutputStream();

            while (message != null) {
                if (message instanceof PGPCompressedData) {
                    compressedData = (PGPCompressedData) message;
                    plainFact = new PGPObjectFactory(compressedData.getDataStream(), new BcKeyFingerprintCalculator());
                    message = plainFact.nextObject();
//                    this.compressionAlgorithm = compressedData.getAlgorithm();
                }

                if (message instanceof PGPLiteralData) {
                    Streams.pipeAll(((PGPLiteralData) message).getInputStream(), actualOutput);
                } else if (message instanceof PGPOnePassSignatureList) {
                    onePassSignatureList = (PGPOnePassSignatureList) message;
                } else if (message instanceof PGPSignatureList) {
                    signatureList = (PGPSignatureList) message;
                }
                message = plainFact.nextObject();
            }
            actualOutput.close();
            PGPPublicKey publicKey;
            byte[] outputBytes = actualOutput.toByteArray();
            if (onePassSignatureList == null || signatureList == null) {
                throw new PGPException("Poor PGP. Signatures not found.");
            } else {
                for (int i = 0; i < onePassSignatureList.size(); i++) {
                    PGPOnePassSignature ops = onePassSignatureList.get(0);
                    PGPPublicKeyRingCollection pgpRing = new PGPPublicKeyRingCollection(
                            PGPUtil.getDecoderStream(decryptKeyInput), new BcKeyFingerprintCalculator());
                    publicKey = pgpRing.getPublicKey(ops.getKeyID());
                    if (publicKey != null) {
                        ops.init(new BcPGPContentVerifierBuilderProvider(), publicKey);
                        ops.update(outputBytes);
                        PGPSignature signature = signatureList.get(i);
                        if (ops.verify(signature)) {
//                            this.hashAlgorithm = ops.getHashAlgorithm();
                        }
                    }
                }

            }
            return new String(outputBytes);
        } catch (Exception e) {
            e.printStackTrace();
        }
        return null;
    }

    public String decryptFile(String content, String passphrase)
            throws Exception {
        getProvider();
        InputStream fIn = IOUtils.toInputStream(content);
        InputStream in = PGPUtil.getDecoderStream(fIn);
        InputStream keyIn = getPrivateIs();
        char[] passPhrase = passphrase.toCharArray();
        PGPObjectFactory pgpF = new PGPObjectFactory(in, new BcKeyFingerprintCalculator());
        PGPEncryptedDataList enc;
        Object o = pgpF.nextObject();

        if (o instanceof PGPEncryptedDataList) {
            enc = (PGPEncryptedDataList) o;
        } else {
            enc = (PGPEncryptedDataList) pgpF.nextObject();
        }

        Iterator<PGPPublicKeyEncryptedData> it = enc.getEncryptedDataObjects();
        PGPPrivateKey sKey = null;
        PGPPublicKeyEncryptedData pbe = null;

        while (sKey == null && it.hasNext()) {
            pbe = it.next();
            sKey = BCPGPUtils.findPrivateKey(keyIn, pbe.getKeyID(), passPhrase);
        }
        InputStream clear = pbe.getDataStream(new BcPublicKeyDataDecryptorFactory(sKey));
//        this.symmetricKeyAlgorithm = pbe.getSymmetricAlgorithm(new BcPublicKeyDataDecryptorFactory(sKey));

        PGPObjectFactory pgpFact = new PGPObjectFactory(clear, new BcKeyFingerprintCalculator());

        o = pgpFact.nextObject();
        if (o instanceof PGPCompressedData) {
            PGPCompressedData cData = (PGPCompressedData) o;
            pgpFact = new PGPObjectFactory(cData.getDataStream(), new BcKeyFingerprintCalculator());
            o = pgpFact.nextObject();
        }

        if (o instanceof PGPLiteralData) {
            PGPLiteralData ld = (PGPLiteralData) o;
            InputStream unc = ld.getInputStream();
            return IOUtils.toString(unc);
        }
        return null;
    }
}

五、测试

请选择正确的用法,例如使用加签加密方法时,对应请使用验签解密方法。使用加密方法,则直接使用解密方法即可。

五、结尾

由于时间仓促,并未对代码进行优化,许多流文件,可能遗漏并未进行完美关闭,还请注意使用。

nealdor
关注
  • 1
    点赞
  • 2
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
openPGP解密
qq_31743111的博客
07-09 2197
openPGP解密 这里写自定义目录标题openPGP解密欢迎使用Markdown编辑器新的改变功能快捷键合理的创建标题,有助于目录的生成如何改变文本的样式插入链接与图片如何插入一段漂亮的代码片生成一个适合你的列表创建一个表格设定内容居中、居左、居右SmartyPants创建一个自定义列表如何创建一个注脚注释也是必不可少的KaTeX数学公式新的甘特图功能,丰富你的文章UML 图表FLowchart流程图导出与导入导出导入 欢迎使用Markdown编辑器 你好! 这是你第一次使用 Markdown编辑
chrome-openpgp:适用于Chrome浏览器的OpenPGP密和解密扩展
04-29
Chrome OpenPGP是一款针对Google Chrome浏览器的扩展程序,旨在提供OpenPGP标准的密和解密功能。OpenPGP(开放PGP)是一种广泛使用的互联网数据密和签名标准,主要用于电子邮件的安全传输,确保隐私和数据完整性...
PGP 解密及签名验签示例
09-23
PGP 解密及签名验签示例
【算法】Java实现PGP算法
热门推荐
分享Java硬核干货
06-28 1万+
PGP(Pretty Good Privacy)是一种广泛使用的密和数字签名方案,用于保护电子邮件和文件的安全性。PGP使用对称密、非对称密和哈希算法的组合,提供了保密性、完整性和认证的功能。对称密:PGP使用对称密算法(如AES、3DES等)来密邮件和文件的内容。对称密使用相同的密钥用于密和解密,速度较快,适合处理大量数据。非对称密:PGP使用非对称密算法(如RSA、ECC等)来密和解密对称密钥。发送方使用接收方的公钥密对称密钥,接收方使用自己的私钥解密对称密钥。
PHP 非对称解密算法的实现和应用
LW1314QS的博客
01-13 394
在日常设计及开发中,为确保数据传输和数据存储的安全,可通过特定的算法,将数据明文密成复杂的密文。目前主流密手段大致可分为单向密和双向密。 密的类型 单向密:通过对数据进行摘要计算生成密文,密文不可逆推还原。算法代表:Base64,MD5,SHA。 双向密:与单向密相反,可以把密文逆推还原成明文,双向密又分为对称密和非对称密。 对称密:指数据使用者必须拥有相同的密钥才可以进行解密,就像彼此约定的一串暗号。算法代表:DES,3DES,AES,IDEA,RC4,RC5。 非对称密.
使用python进行AES对称解密
m0_47696151的博客
05-10 3618
这里写自定义目录标题常用的对称密算法简介经典的对称区块密模式现代的对称区块密模式使用示例安装依赖库示例以经典的CBC模式为例以现代的OCB模式为例可能问题 常用的对称密算法简介 有时需要对数据进行对称解密,常用的有: DES(Data Encryption Standard,即数据密标准)。 由于这种密算法已经可以被暴力破解,所以已经不再安全。因此除了用它来解密以前对密文外,不应该再使用DES了。 AES(Advanced Encryption Standard,即高级密标准),已经取代D
解密在开源SpringBoot/SpringCloud微服务框架的最佳实践
编码之旅
06-15 2437
1.结合多年项目经验,介绍了开源解密算法在开源SpringBoot/SpringCloud接口微服务解决方案中的最佳实践; 2.模拟实现了密机,使用密机密Jasypt,Jasypt密器,密器对业务接口进行密,同时也考虑并支持了缺失部分链路的情况; 3.讲解了密机数据密、密器针对不同用户采用不同秘钥的应用场景及实现,前置网关应该关注安全,业务模块应该关注业务; 4.支持商密和三级等保,既确保了安全,又把性能影响降到最低,而且是仅通过注解和配置开箱即用;
openpgp密工具_使用OpenPGP处理前端
07-16 1020
openpgp密工具by Mateja Trifunovski 通过Mateja Trifunovski 使用OpenPGP处理前端密 (Handling front-end encryption using OpenPGP) In a world where privacy is being constantly invaded, people tend to start to care...
[案例]PGP, RSA, JWT使用及案例总结
10-20 2712
文章目录1 背景1 基础概念1.1 RSA1.1.1 其他几种密算法及对比1.1.1.1 对称密算法 - 可逆1.1.1.2 非对称密算法-可逆1.1.1.3 线性散列算法算法-不可逆1.2 PGP 1 背景 最近的项目主要做的是公对公的API互通,因为是银行系统,公对公的API传输密要求比较高,架构师要求使用的是PGP, RSA的解密,因此,针对这几个技术,学习并且记录一些心得。 1 基础概念 1.1 RSA RSA密算法是一种非对称密算法。同属于非对称密算法的还有DSA和ECC RSA名
php实现对图片对称解密(适用身份证密等场景)
churu0608的博客
06-20 1025
图片解密 可以将人员身份证图片通过修改字节密,并且可将身份证信息也写入图片中。 可以直接将以下代码复制到一个php文件中进行测试。详情请看代码。 <?php /*** * .::::. * .::::...
cryptoform:使用PGP密的端到端密Web表单
05-15
使用或将zip文件密为一个(或多个)公共PGP密钥zip文件将被丢弃,密的zip文件将被传输到服务器服务器现在可以通过电子邮件转发密的zip或使其可在某处下载如果(且仅)在拥有匹配私钥的情况下,接收方可以解密...
Local PGP - Browser Encryption and Decryption-crx插件
03-26
易于使用的PGP密和解密。 本地PGP浏览器支持网站:https://github.com/x0th/Local-PGP该扩展将OpenPGP.js(https://openpgpjs.org/)用于与密码相关的所有内容。 注意:扩展程序的安全性受其本地限制和浏览器操作...
opengpg.zpf.io:直接在浏览器中快速轻松地密和解密 PGPGPG 消息
05-31
GPG 是一个免费的、开放源代码的软件,用于实现 Pretty Good Privacy(PGP)算法,用于数据密和数字签名,确保数据的机密性和完整性。 描述中提到的“GPG 扬声器应用程序”可能是指一个特定的项目或功能,它与...
Java生成公钥密钥 密钥 签名
weixin_47174945的博客
03-23 949
package com.zjjhy.controller.api; import sun.misc.BASE64Decoder; import sun.misc.BASE64Encoder; import javax.crypto.Cipher; import java.io.ByteArrayOutputStream; import java.math.BigInteger; import java.security.*; import java.security.interfaces.RSAPriv
使用hutool工具判断字符串是否全部是字母(包括大小写),java判断字符串是否全部是字母(包括大小写)
最新发布
qq_43700885的博客
07-29 310
1.导入hutool的maven依赖。2.复制一下代码执行。
golang 接口
m0_70982551的博客
07-24 1092
接口定义了一组方法,这些方法没有具体的实现。接口类型的变量可以存储任何实现了这些方法的类型的值。// 更多方法...在Go语言中,接口值是指存储了实现某个接口的具体类型值的变量。接口值由两部分组成:1.动态类型:这是接口值当前存储的实际类型。2.动态值:这是实际存储的值,该值必须实现了接口中定义的所有方法。
java判断邮箱地址是否正确,使用hutool工具判断邮箱地址是否正确
qq_43700885的博客
07-29 145
1.导入hutool的maven依赖。2.直接复制一下代码运行。
Swagger使用Map接受参数时,页面如何显示具体参数及说
a1058926697的博客
07-26 589
后端使用Map接受参数,要求在swagger页面上显示具体的参数名称、类型及说明。当Map接受参数数量少时,可以使用Swagger自带的注解。自定义注解 @ApiGlobalModel。编写处理注解对应的插件。
PGP模拟公钥解密
05-31
PGP(Pretty Good Privacy)是一种密通信协议,用于保护数据的机密性和完整性。在PGP中,公钥密算法用于密和解密数据。 以下是一个简单的PGP模拟公钥解密的Python代码示例: ```python from Crypto.PublicKey import RSA from Crypto.Cipher import PKCS1_OAEP # 生成公钥和私钥 key = RSA.generate(2048) private_key = key.export_key() public_key = key.publickey().export_key() # 密函数 def encrypt(public_key, plaintext): key = RSA.import_key(public_key) cipher_rsa = PKCS1_OAEP.new(key) ciphertext = cipher_rsa.encrypt(plaintext) return ciphertext # 解密函数 def decrypt(private_key, ciphertext): key = RSA.import_key(private_key) cipher_rsa = PKCS1_OAEP.new(key) plaintext = cipher_rsa.decrypt(ciphertext) return plaintext # 测试解密 plaintext = b'Hello, world!' ciphertext = encrypt(public_key, plaintext) decrypted = decrypt(private_key, ciphertext) print(f"Plaintext: {plaintext}") print(f"Ciphertext: {ciphertext}") print(f"Decrypted: {decrypted}") ``` 在这个例子中,我们使用了Python密库`pycryptodome`中的RSA密算法和PKCS#1 OAEP填充方式。我们首先生成了一个2048位的RSA密钥对,并将公钥和私钥导出为字符串。然后定义了一个密函数和一个解密函数,分别使用RSA密算法和PKCS#1 OAEP填充方式进行密和解密。最后我们测试了解密的功能,并打印出了结果。 需要注意的是,这只是一个简单的PGP模拟公钥解密示例,实际使用PGP时还需要考虑密钥管理、数字签名等问题。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值