1.使用RSA生成一对公钥和私钥的工具类(以下代码可以直接贴到项目中使用):
package com.jidogncloud.common;
/**
* ClassName:RSAkeysUtil
* PackageName:com.jidogncloud.common
* Description:
*
* @date:2020/5/4 22:07
* @author:13812536906
*/
import sun.misc.BASE64Decoder;
import sun.misc.BASE64Encoder;
import java.security.Key;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import java.util.HashMap;
import java.util.Map;
/**
* 描述 使用RSA生成一对公钥和私钥的工具类
*
*/
public class RSAkeysUtil {
public static final String KEY_ALGORITHM = "RSA";
private static final String PUBLIC_KEY = "RSAPublicKey";
private static final String PRIVATE_KEY = "RSAPrivateKey";
public static void main(String[] args) {
Map<String, Object> keyMap;
try {
keyMap = initKey();
String publicKey = getPublicKey(keyMap);
String privateKey = getPrivateKey(keyMap);
System.out.println("生成的公钥=>" + publicKey);
System.out.println("生成的私钥=>" + privateKey);
} catch (Exception e) {
e.printStackTrace();
}
}
public static String getPublicKey(Map<String, Object> keyMap) throws Exception {
Key key = (Key) keyMap.get(PUBLIC_KEY);
return encryptBASE64(key.getEncoded());
}
public static String getPrivateKey(Map<String, Object> keyMap) throws Exception {
Key key = (Key) keyMap.get(PRIVATE_KEY);
return encryptBASE64(key.getEncoded());
}
public static String encryptBASE64(byte[] key) throws Exception {
return (new BASE64Encoder()).encodeBuffer(key);
}
public static byte[] decryptBASE64(String key) throws Exception {
return (new BASE64Decoder()).decodeBuffer(key);
}
/**
* RSA是目前最有影响力的公钥加密算法,该算法基于一个十分简单的数论事实:将两个大素数相乘十分容易,但那时想要对其乘积进行因式分解却极其困难,因此可以将乘积公开作为加密密钥,即公钥,而两个大素数组合成私钥。公钥是可发布的供任何人使用,私钥则为自己所有,供解密之用。
* <p>
* 解密者拥有私钥,并且将由私钥计算生成的公钥发布给加密者。加密都使用公钥进行加密,并将密文发送到解密者,解密者用私钥解密将密文解码为明文。
* <p>
* 以甲要把信息发给乙为例,首先确定角色:甲为加密者,乙为解密者。首先由乙随机确定一个KEY,称之为密匙,将这个KEY始终保存在机器B中而不发出来;然后,由这个 KEY计算出另一个KEY,称之为公匙。这个公钥的特性是几乎不可能通过它自身计算出生成它的私钥。接下来通过网络把这个公钥传给甲,甲收到公钥后,利用公钥对信息加密,并把密文通过网络发送到乙,最后乙利用已知的私钥,就对密文进行解码了。以上就是RSA算法的工作流程。
* <p>
* 算法实现过程为:
* <p>
* 1. 随意选择两个大的质数p和q,p不等于q,计算N=pq。
* 2. 根据欧拉函数,不大于N且与N互质的整数個数為(p-1)(q-1)。
* 3. 选择一个整数e与(p-1)(q-1)互质,并且e小于(p-1)(q-1)。
* 4. 用以下这个公式计算d:d× e ≡ 1 (mod (p-1)(q-1))。
* 5. 将p和q的记录销毁。
* <p>
* 以上内容中,(N,e)是公钥,(N,d)是私钥。
* <p>
* <p>
* RSA算法的应用。
* <p>
* 1. RSA的公钥和私钥是由KeyPairGenerator生成的,获取KeyPairGenerator的实例后还需要设置其密钥位数。
* 设置密钥位数越高,加密过程越安全,一般使用1024位。 *
* KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance("RSA");
* keyPairGen.initialize(1024);
* <p>
* <p>
* 2.公钥和私钥可以通过KeyPairGenerator执行generateKeyPair()后生成密钥对KeyPair,
* 通过KeyPair.getPublic()和KeyPair.getPrivate()来获取。
* 动态生成密钥对,这是当前最耗时的操作,一般要2s以上。
* KeyPair keyPair = keyPairGen.generateKeyPair();
* 公钥
* PublicKey publicKey = (RSAPublicKey) keyPair.getPublic();
* 私钥
* PrivateKey privateKey = (RSAPrivateKey) keyPair.getPrivate();
* <p>
* byte[] publicKeyData = publicKey.getEncoded();
* byte[] privateKeyData = publicKey.getEncoded();
* 公钥和私钥都有它们自己独特的比特编码,可以通过getEncoded()方法获取,返回类型为byte[]。通过byte[]可以再度将公钥或私钥还原出来。
*/
public static Map<String, Object> initKey() throws Exception {
KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance(KEY_ALGORITHM);
// 密钥位数
keyPairGen.initialize(1024);
KeyPair keyPair = keyPairGen.generateKeyPair();
RSAPublicKey publicKey = (RSAPublicKey) keyPair.getPublic();
RSAPrivateKey privateKey = (RSAPrivateKey) keyPair.getPrivate();
Map<String, Object> keyMap = new HashMap<>(4);
keyMap.put(PUBLIC_KEY, publicKey);
keyMap.put(PRIVATE_KEY, privateKey);
return keyMap;
}
}
2.公钥加密,私钥解密在数据传输中的应用:
package com.jidogncloud.common;
import org.apache.commons.codec.binary.Base64;
import javax.crypto.Cipher;
import java.security.KeyFactory;
import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;
/**
* ClassName:RSAEncrypt
* PackageName:com.jidogncloud.common
* Description:
*
* @date:2020/5/4 21:54
* @author:13812536906
*/
public class RSAEncrypt {
// RSA公钥:MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCNawT+jaMn32YXmrdu+xxwMh6B5yGnMKwO/ngx8YMp7yFvJfhMiOwsIOwRFXRbfQsLqXIAmZ24olCHJCvSWTqaQH1mi457R9bIwGGYj5wMLvl4xZXP4ocV+lfLwz8I0/Le7NXhTs4vfM9XR2EUg9r8lwdjaLMksws7pfuENBZpOQIDAQAB
// public static String PriKey = "MIICdwIBADANBgkqhkiG9w0BAQEFAASCAmEwggJdAgEAAoGBAI1rBP6NoyffZheat277HHAyHoHnIacwrA7+eDHxgynvIW8l+EyI7Cwg7BEVdFt9CwupcgCZnbiiUIckK9JZOppAfWaLjntH1sjAYZiPnAwu+XjFlc/ihxX6V8vDPwjT8t7s1eFOzi98z1dHYRSD2vyXB2NosySzCzul+4Q0Fmk5AgMBAAECgYBVKczRKyTFP1CxCFhNOmYO3u/mVPW8RKBpSy/BC+tsVnjxAZG9LXvku1LOmvf+nJgJRtrDp78G0KDkMZE+VMPn+IZCHaLv+e60o41NI4PNVI8KGypBcQDNG64tnadV2FN4HOloFYab9dtCxl6g+0FCqxa3d43CbRYkv59uXLUffQJBANHjca8G6w8dNHmX6tGelc6p/2mKtGRiqjt0C1BqzXEqV5IgR9nT9tA9PG7Rr4P+zESppCJCdW1pEZioHdV8fAcCQQCsfKjcUK19PJakc8fnMuK6zoamH2FKo2/9vB4jwNWVYcY5j3I/NPdBYzKHwYubgcgH11GZzw5OQ2ENUXDqYyC/AkAza72WW+OKuGT6xTVKVcft8cgZW1oGngWGu09qTEA40V7S9gWkYEG/ksEThVuywuHYkJcdrZqHS458D/P/MZhRAkEAg/Kg4li9Pq6YtpjzdUOR+kF+85nRvV0lkL7Vd5hOSwYOs32ucfe8pcKSpxNCDuXK9WSbwcOJOAmHNr70V/kY1QJBALC/H8KqnrvR2C9AVEnokVY3VoP2O1GTDGDPKr5scAhgi49I/L+zHeByCf/n5GzMAUod6Q+oAiI1Y58hAxTAYY4=";
//用工具类生成私钥
public static String PriKey = "MIICdgIBADANBgkqhkiG9w0BAQEFAASCAmAwggJcAgEAAoGBAIlCv6qgZQBFvePNAT5cyqO1yfxU\n" +
"aQ9GsITYcnRo1pEQ1U0MjlNf5kQ4SfTxBGRMriVYZjSi8RGsrmDaS+sROLtQuFwAWmYJrI+BdVhU\n" +
"E4Th5EW89ichyJhr+aBx3Jz9gxlXBmgZTlBaYAKwkru/cS2pQ53ihjHs7/r/QF05VMhXAgMBAAEC\n" +
"gYBBk+lcjLsUkT1y64vvjoemBYFWE8IJ8Vz+aybrpPb2YdN2t0v8W3H5H+d9pfTSMqx03TIfbcW9\n" +
"CwJY9ZKV4Sl36SBVeVKtEZBYbPO2npTmfuYhkQ16vtTscmAsquyM06foq/PPYzS8g8y+GJmP4KNO\n" +
"yvWJMhWoIFfEbyxuqTtjUQJBAMrdrovjFEdCD95v9N+T/EFwfG0pNiheifnJOySeeK60hYqNNeH7\n" +
"9JMoehrZ/+pGCm46qMAgt0L7yXLG0rMLvH8CQQCtNi/j3yCaZipVb/3AOoTkV0wYGuCBU8pxh6Zq\n" +
"N4NaRZwQ2pg0Mow9yrxefLFyjkbZ92LPlR6FGN+CxVnIIGgpAkEAh1q3zlAZxJ24VtLeUJq9kbAK\n" +
"5Q69OtwxNT9lvb4aiX6bJ2GmlPx2KAW2ytmvXdGTvg5Xb7GkdQXoWDN+e8YV4wJAJ8TENBZ7vtds\n" +
"KteetC77ag3dC7/IAgmB9pUFkWeTgftvfLMjtQBSELHmk+8fMsUV4V+aUTzUmAyA7N5w4bEHGQJA\n" +
"CuWzvmPRBFBRnusPEj2kBWEBEzAfdakQ/LWBjczNjcuktIqYERbsqjUjx/elCBGZdYQiMP1cnj8K\n" +
"IoHsEUdaRg==";
// public static String PUBKey = "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCNawT+jaMn32YXmrdu+xxwMh6B5yGnMKwO/ngx8YMp7yFvJfhMiOwsIOwRFXRbfQsLqXIAmZ24olCHJCvSWTqaQH1mi457R9bIwGGYj5wMLvl4xZXP4ocV+lfLwz8I0/Le7NXhTs4vfM9XR2EUg9r8lwdjaLMksws7pfuENBZpOQIDAQAB";
//用工具类生成公钥
public static String PUBKey = "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCJQr+qoGUARb3jzQE+XMqjtcn8VGkPRrCE2HJ0\n" +
"aNaRENVNDI5TX+ZEOEn08QRkTK4lWGY0ovERrK5g2kvrETi7ULhcAFpmCayPgXVYVBOE4eRFvPYn\n" +
"IciYa/mgcdyc/YMZVwZoGU5QWmACsJK7v3EtqUOd4oYx7O/6/0BdOVTIVwIDAQAB";
public static void main(String[] args) throws Exception {
String pwdstr = "dzc00120190905144600191-0.10";
/**
* encrypt加密方法 ,加密就是对内容加密
*/
String sign = encrypt(pwdstr, PUBKey);
System.out.println("签名:" + sign);
String design = decrypt(sign, PriKey);
System.out.println("解签:" + design);
}
/**
* RSA公钥加密
*
* @param str 加密字符串
* @param publicKey 公钥
* @return 密文
* @throws Exception 加密过程中的异常信息
*/
public static String encrypt(String str, String publicKey) throws Exception {
//base64编码的公钥
byte[] decoded = Base64.decodeBase64(publicKey);
RSAPublicKey pubKey = (RSAPublicKey) KeyFactory.getInstance("RSA").generatePublic(new X509EncodedKeySpec(decoded));
//RSA加密
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.ENCRYPT_MODE, pubKey);
String outStr = Base64.encodeBase64String(cipher.doFinal(str.getBytes("UTF-8")));
return outStr;
}
/**
* RSA私钥解密 解密就是对内容解密
*
* @param str 加密字符串
* @param privateKey 私钥
* @return 铭文
* @throws Exception 解密过程中的异常信息
*/
public static String decrypt(String str, String privateKey) {
try {
//64位解码加密后的字符串
byte[] inputByte = Base64.decodeBase64(str.getBytes("UTF-8"));
//base64编码的私钥
byte[] decoded = Base64.decodeBase64(privateKey);
RSAPrivateKey priKey = (RSAPrivateKey) KeyFactory.getInstance("RSA").generatePrivate(new PKCS8EncodedKeySpec(decoded));
//RSA解密
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.DECRYPT_MODE, priKey);
String outStr = new String(cipher.doFinal(inputByte));
return outStr;
} catch (Exception e) {
System.out.println("----->" + e.getMessage());
return "failed";
}
}
}