主要步骤: 密钥-》SHA1加密-》得到SHA1加密后的8位密钥-》DES加密 JAVA实现:
import sun.misc.BASE64Encoder;
import javax.crypto.*;
import javax.crypto.spec.SecretKeySpec;
import java.io.UnsupportedEncodingException;
import java.security.InvalidKeyException;
import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;
public class DESEncode {
public static String DES_Encode(String encodeRules,String content){
try {
BASE64Encoder encoder = new BASE64Encoder();
//1.构造密钥生成器,指定为AES算法,不区分大小写
KeyGenerator keygen=KeyGenerator.getInstance("DES");
//2.根据ecnodeRules规则初始化密钥生成器
SecureRandom secureRandom = SecureRandom.getInstance("SHA1PRNG");
secureRandom.setSeed(encodeRules.getBytes());
keygen.init( secureRandom);
//3.产生原始对称密钥
SecretKey original_key=keygen.generateKey();
//4.获得原始对称密钥的字节数组
byte [] raw=original_key.getEncoded();
//5.根据字节数组生成AES密钥
SecretKey key=new SecretKeySpec(raw, "DES");
//6.根据指定算法AES自成密码器
Cipher cipher=Cipher.getInstance("DES");
//7.初始化密码器,第一个参数为加密(Encrypt_mode)或者解密解密(Decrypt_mode)操作,第二个参数为使用的KEY
cipher.init(Cipher.ENCRYPT_MODE, key);
//8.获取加密内容的字节数组(这里要设置为utf-8)不然内容中如果有中文和英文混合中文就会解密为乱码
byte [] byte_encode=content.getBytes("utf-8");
//9.根据密码器的初始化方式--加密:将数据加密
byte [] byte_AES=cipher.doFinal(byte_encode);
//10.将加密后的数据转换为字符串
//这里用Base64Encoder中会找不到包
//解决办法:
//在项目的Build path中先移除JRE System Library,再添加库JRE System Library,重新编译后就一切正常了。
//String AES_encode=new String(new BASE64Encoder().encode(byte_AES));
// String AES_encode = new String(bytesToHexString(byte_AES));
return encoder.encode(byte_AES);
//11.将字符串返回
// return AES_encode;
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
} catch (NoSuchPaddingException e) {
e.printStackTrace();
} catch (InvalidKeyException e) {
e.printStackTrace();
} catch (IllegalBlockSizeException e) {
e.printStackTrace();
} catch (BadPaddingException e) {
e.printStackTrace();
} catch (UnsupportedEncodingException e) {
e.printStackTrace();
}
//如果有错就返加nulll
return null;
}
public static void main(String args[]) {
String encode_val = DESEncode.DES_Encode("jiami133abc", "qm123456");
System.out.println(encode_val);
}
}
关键步骤:
SecureRandom secureRandom = SecureRandom.getInstance("SHA1PRNG");
secureRandom.setSeed(encodeRules.getBytes());
keygen.init( secureRandom);
SecretKey original_key=keygen.generateKey();
密钥使用SHA1加密,DES支持8位密钥,通过该步骤可以使用任意长度的密钥
PYTHON实现
import base64
from base64 import b64encode, encodebytes
from Crypto.Cipher import DES
import binascii
import hashlib
BS = DES.block_size
def padding_pkcs5(value):
return str.encode(value + (BS - len(value) % BS) * chr(BS - len(value) % BS))
def get_userkey(key, value):
''' AES/ECB/PKCS5Padding encrypt
就是一个普通的AES ECB加密,填充方式是PKCS5Padding
'''
cryptor = DES.new(bytes.fromhex(key), DES.MODE_ECB)
padding_value = padding_pkcs5(value)
ciphertext = cryptor.encrypt(padding_value)
print(str(base64.b64encode(ciphertext),'UTF-8'))
# / return ''.join(['%02x' % i for i in ciphertext]).upper()
return str(base64.b64encode(ciphertext),'UTF-8')
def get_decrypt(key, value):
cryptor = DES.new(bytes.fromhex(key), DES.MODE_ECB)
# padding_value = padding_pkcs5(value)
ciphertext = cryptor.decrypt(base64.b64decode(value))
return ciphertext.decode('UTF-8').strip()
##关键步骤要使用SHA1加密,加密后的数据为hex格式,截取16位,把hex转成str,16位变8位
def get_sha1png_key(key):
'''[summary]
encrypt key with SHA1PRNG
same as java AES crypto key generator SHA1PRNG
Arguments:
key {[string]} -- [key]
Returns:
[string] -- [hexstring]
'''
signature = hashlib.sha1(key.encode()).digest()
signature = hashlib.sha1(signature).digest()
return ''.join(['%02x' % i for i in signature]).upper()[:16]
if __name__ == '__main__':
# sha1prng 加密方式
mac = 'abasdfasd' # 原文
device_id = 'testabc123' # '12403492' #'12532802' # 加密key
#key 先使用sha1加密后再作为DES算法的密钥
aes128string = get_userkey(get_sha1png_key(device_id), mac)
print(aes128string)
passwd = get_decrypt(get_sha1png_key(device_id), aes128string)
print(passwd)
参考python3 - AES 加密实现java中SHA1PRNG 算法_Max's Note-CSDN博客_sha1prng