生成密钥对
ssh-keygen -t rsa
RSA加密通常不直接用于大量数据的加密,因为加密和解密操作相对较慢,且加密的数据大小受限于密钥的长度(如果密钥长度为2048位,则加密的数据块大小通常为245字节或更小)。对于大量数据的加密,通常使用混合加密方案,如RSA用于加密会话密钥,而AES等对称加密算法用于加密实际数据。
import javax.crypto.Cipher;
import java.nio.charset.StandardCharsets;
import java.security.KeyFactory;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;
import java.util.Base64;
public class RSATest {
// RSA算法
private static final String ALGORITHM = "RSA";
/**
* 生成密钥对
*/
public static void generateKeyPair() {
try {
// 初始化密钥对生成器
KeyPairGenerator keyPairGenerator = KeyPairGenerator.getInstance(ALGORITHM);
keyPairGenerator.initialize(2048);
// 生成密钥对
KeyPair keyPair = keyPairGenerator.generateKeyPair();
PublicKey publicKey = keyPair.getPublic();
PrivateKey privateKey = keyPair.getPrivate();
// 公钥和私钥的Base64编码字符串
String publicKeyString = Base64.getEncoder().encodeToString(publicKey.getEncoded());
String privateKeyString = Base64.getEncoder().encodeToString(privateKey.getEncoded());
System.out.println("Public Key: " + publicKeyString);
System.out.println("Private Key: " + privateKeyString);
} catch (Exception e) {
e.printStackTrace();
}
}
/**
* 加载公钥
*
* @param publicKeyStr 公钥字符串
* @return 公钥
*/
public static PublicKey loadPublicKey(String publicKeyStr) {
try {
byte[] publicKeyBytes = Base64.getDecoder().decode(publicKeyStr);
X509EncodedKeySpec keySpec = new X509EncodedKeySpec(publicKeyBytes);
KeyFactory keyFactory = KeyFactory.getInstance("RSA");
return keyFactory.generatePublic(keySpec);
} catch (Exception e) {
e.printStackTrace();
}
return null;
}
/**
* 加载私钥
*
* @param privateKeyStr 私钥字符串
* @return 私钥
*/
public static PrivateKey loadPrivateKey(String privateKeyStr) {
try {
byte[] buffer = Base64.getDecoder().decode(privateKeyStr);
PKCS8EncodedKeySpec keySpec = new PKCS8EncodedKeySpec(buffer);
KeyFactory keyFactory = KeyFactory.getInstance("RSA");
return keyFactory.generatePrivate(keySpec);
} catch (Exception e) {
e.printStackTrace();
}
return null;
}
/**
* 加密
*
* @param publicKeyStr 公钥字符串
* @param data 明文数据
* @return 密文数据
*/
public static String encrypt(String publicKeyStr, String data) {
try {
Cipher cipher = Cipher.getInstance(ALGORITHM);
cipher.init(Cipher.ENCRYPT_MODE, loadPublicKey(publicKeyStr));
byte[] encrypted = cipher.doFinal(data.getBytes(StandardCharsets.UTF_8));
return Base64.getEncoder().encodeToString(encrypted);
} catch (Exception e) {
e.printStackTrace();
}
return null;
}
/**
* 解密
*
* @param privateKeyStr 私钥字符串
* @param data 加密数据
* @return 明文数据
*/
public static String decrypt(String privateKeyStr, String data) {
try {
Cipher cipher = Cipher.getInstance(ALGORITHM);
cipher.init(Cipher.DECRYPT_MODE, loadPrivateKey(privateKeyStr));
byte[] decrypted = cipher.doFinal(Base64.getDecoder().decode(data.getBytes(StandardCharsets.UTF_8)));
return new String(decrypted);
} catch (Exception e) {
e.printStackTrace();
}
return null;
}
public static void main(String[] args) {
String data = "你好,世界";
String publicKeyStr = "";
String encryptData = encrypt(publicKeyStr, data);
System.out.println("加密后的数据:" + encryptData);
String privateKeyStr ="";
String decryptData = decrypt(privateKeyStr, encryptData);
System.out.println("解密后的数据:" + decryptData);
}
}