记RSA非对称加密实战

最新推荐文章于 2024-04-15 17:15:25 发布

seanlal

最新推荐文章于 2024-04-15 17:15:25 发布

阅读量327

点赞数

分类专栏：密码学文章标签： RSA 密码加密算法

本文链接：https://blog.csdn.net/seanlal/article/details/79374038

版权

密码学专栏收录该内容

2 篇文章 0 订阅

订阅专栏

本来觉得挺简单的不用写了，之前看到有人在讲密码学加密算法，发现有点不记得了。重新来贴一下流程
RSA加密算法的原理不再赘述，网上都有讲的比我好，我也懒得转载。
网上都有的RSAUtils 贴一下，有好几个版本了，之前找了一个前后端加密用不了，这个可以用

import java.io.ByteArrayOutputStream;
import java.io.FileInputStream;
import java.io.FileOutputStream;
import java.io.ObjectInputStream;
import java.io.ObjectOutputStream;
import java.math.BigInteger;
import java.security.KeyFactory;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.NoSuchAlgorithmException;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.SecureRandom;
import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.InvalidKeySpecException;
import java.security.spec.RSAPrivateKeySpec;
import java.security.spec.RSAPublicKeySpec;
import java.util.HashMap;
import java.util.Map;

import javax.crypto.Cipher;

public class RSAUtils2 {

    private static String RSAKeyStore = "C:/RSAKey.txt";
    /**
     * 获取公钥的key
     */
    private static final String PUBLIC_KEY = "RSAPublicKey";

    /**
     * 获取私钥的key
     */
    private static final String PRIVATE_KEY = "RSAPrivateKey";
    /**
     * * 生成密钥对 *
     *
     * @return KeyPair *
     * @throws Exception
     */

    public static Map<String, Object> genKeyPair() throws Exception {
        KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance("RSA");
        keyPairGen.initialize(1024);
        KeyPair keyPair = keyPairGen.generateKeyPair();
        RSAPublicKey publicKey = (RSAPublicKey) keyPair.getPublic();
        RSAPrivateKey privateKey = (RSAPrivateKey) keyPair.getPrivate();
        Map<String, Object> keyMap = new HashMap<String, Object>(2);
        keyMap.put(PUBLIC_KEY, publicKey);
        keyMap.put(PRIVATE_KEY, privateKey);
        return keyMap;
    }
    public static KeyPair generateKeyPair() throws Exception {
        try {
            KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance("RSA",  
                    new org.bouncycastle.jce.provider.BouncyCastleProvider());  
            final int KEY_SIZE = 1024;// 没什么好说的了，这个值关系到块加密的大小，可以更改，但是不要太大，否则效率会低  
            keyPairGen.initialize(KEY_SIZE, new SecureRandom());  
            KeyPair keyPair = keyPairGen.generateKeyPair();  

            System.out.println(keyPair.getPrivate());  
            System.out.println(keyPair.getPublic());  

            saveKeyPair(keyPair);
            return keyPair;
        } catch (Exception e) {
            throw new Exception(e.getMessage());
        }
    }

    public static KeyPair getKeyPair() throws Exception {
        FileInputStream fis = new FileInputStream(RSAKeyStore);
        ObjectInputStream oos = new ObjectInputStream(fis);
        KeyPair kp = (KeyPair) oos.readObject();
        oos.close();
        fis.close();
        return kp;
    }

    public static void saveKeyPair(KeyPair kp) throws Exception {

        FileOutputStream fos = new FileOutputStream(RSAKeyStore);
        ObjectOutputStream oos = new ObjectOutputStream(fos);
        // 生成密钥
        oos.writeObject(kp);
        oos.close();
        fos.close();
    }

    /**
     * * 生成公钥 *
     *
     * @param modulus *
     * @param publicExponent *
     * @return RSAPublicKey *
     * @throws Exception
     */
    public static RSAPublicKey generateRSAPublicKey(byte[] modulus,  
            byte[] publicExponent) throws Exception {  
        KeyFactory keyFac = null;  
        try {  
            keyFac = KeyFactory.getInstance("RSA",  
                    new org.bouncycastle.jce.provider.BouncyCastleProvider());  
        } catch (NoSuchAlgorithmException ex) {  
            throw new Exception(ex.getMessage());  
        }  

        RSAPublicKeySpec pubKeySpec = new RSAPublicKeySpec(new BigInteger(  
                modulus), new BigInteger(publicExponent));  
        try {  
            return (RSAPublicKey) keyFac.generatePublic(pubKeySpec);  
        } catch (InvalidKeySpecException ex) {  
            throw new Exception(ex.getMessage());  
        }  
    }  

    /**
     * * 生成私钥 *
     *
     * @param modulus *
     * @param privateExponent *
     * @return RSAPrivateKey *
     * @throws Exception
     */
    public static RSAPrivateKey generateRSAPrivateKey(byte[] modulus,  
            byte[] privateExponent) throws Exception {  
        KeyFactory keyFac = null;  
        try {  
            keyFac = KeyFactory.getInstance("RSA",  
                    new org.bouncycastle.jce.provider.BouncyCastleProvider());  
        } catch (NoSuchAlgorithmException ex) {  
            throw new Exception(ex.getMessage());  
        }  

        RSAPrivateKeySpec priKeySpec = new RSAPrivateKeySpec(new BigInteger(  
                modulus), new BigInteger(privateExponent));  
        try {  
            return (RSAPrivateKey) keyFac.generatePrivate(priKeySpec);  
        } catch (InvalidKeySpecException ex) {  
            throw new Exception(ex.getMessage());  
        }  
    }  

    /**
     * * 加密 *
     *  
     * @param pk
     *            加密的密钥 *
     * @param data
     *            待加密的明文数据 *
     * @return 加密后的数据 *
     * @throws Exception
     */
    public static byte[] encrypt(PublicKey pk, byte[] data) throws Exception {
        try {
            Cipher cipher = Cipher.getInstance("RSA",
                    new org.bouncycastle.jce.provider.BouncyCastleProvider());
            cipher.init(Cipher.ENCRYPT_MODE, pk);
            int blockSize = cipher.getBlockSize();// 获得加密块大小，如：加密前数据为128个byte，而key_size=1024
            // 加密块大小为127
            // byte,加密后为128个byte;因此共有2个加密块，第一个127
            // byte第二个为1个byte
            int outputSize = cipher.getOutputSize(data.length);// 获得加密块加密后块大小
            int leavedSize = data.length % blockSize;
            int blocksSize = leavedSize != 0 ? data.length / blockSize + 1
                    : data.length / blockSize;
            byte[] raw = new byte[outputSize * blocksSize];
            int i = 0;
            while (data.length - i * blockSize > 0) {
                if (data.length - i * blockSize > blockSize) {
                    cipher.doFinal(data, i * blockSize, blockSize, raw, i
                            * outputSize);
                }else {
                    cipher.doFinal(data, i * blockSize, data.length - i
                            * blockSize, raw, i * outputSize);
                }
                // 这里面doUpdate方法不可用，查看源代码后发现每次doUpdate后并没有什么实际动作除了把byte[]放到
                // ByteArrayOutputStream中，而最后doFinal的时候才将所有的byte[]进行加密，可是到了此时加密块大小很可能已经超出了
                // OutputSize所以只好用dofinal方法。

                i++;
            }
            return raw;
        } catch (Exception e) {
            throw new Exception(e.getMessage());
        }
    }

    /**
     * * 解密 *
     *
     * @param pk
     *            解密的密钥 *
     * @param raw
     *            已经加密的数据 *
     * @return 解密后的明文 *
     * @throws Exception
     */
    public static byte[] decrypt(PrivateKey pk, byte[] raw) throws Exception {
        try {
            Cipher cipher = Cipher.getInstance("RSA",
                    new org.bouncycastle.jce.provider.BouncyCastleProvider());
            cipher.init(Cipher.DECRYPT_MODE, pk);
            int blockSize = cipher.getBlockSize();
            ByteArrayOutputStream bout = new ByteArrayOutputStream(64);
            int j = 0;

            while (raw.length - j * blockSize > 0) {
                bout.write(cipher.doFinal(raw, j * blockSize, blockSize));
                j++;
            }
            return bout.toByteArray();
        } catch (Exception e) {
            throw new Exception(e.getMessage());
        }
    }


    /**  
     * 16进制 To byte[]  
     * @param hexString  
     * @return byte[]  
     */  
    public static byte[] hexStringToBytes(String hexString) {  
        if (hexString == null || hexString.equals("")) {  
            return null;  
        }  
        hexString = hexString.toUpperCase();  
        int length = hexString.length() / 2;  
        char[] hexChars = hexString.toCharArray();  
        byte[] d = new byte[length];  
        for (int i = 0; i < length; i++) {  
            int pos = i * 2;  
            d[i] = (byte) (charToByte(hexChars[pos]) << 4 | charToByte(hexChars[pos + 1]));  
        }  
        return d;  
    }  

    /**  
     * Convert char to byte  
     * @param c char  
     * @return byte  
     */  
     private static byte charToByte(char c) {  
        return (byte) "0123456789ABCDEF".indexOf(c);  
    }  
    /**
     * * *
     *
     * @param args *
     * @throws Exception
     */
    public static void main(String[] args) throws Exception {
        RSAPublicKey rsap = (RSAPublicKey) RSAUtils2.getKeyPair().getPublic();
        String test = "hello world";
        System.out.println(rsap.getModulus().toString(16));
        //System.out.println(new BigInteger(getKeyPair().getPublic().getEncoded()).toString(16));
        byte[] en_test = encrypt(getKeyPair().getPublic(), test.getBytes());
        byte[] de_test = decrypt(getKeyPair().getPrivate(), en_test);
        System.out.println(new String(de_test));
    }
}

其他的还有RSA.js前台加密等官网可以下载到这里就不贴了。还有一个生成密钥对的类

import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import java.util.Map;



public class RSAData {

    public static  Map<String, Object> keyMap;
    public static String publicKey;
    public static String privateKey;
    public static RSAPublicKey pubk;
    public static RSAPrivateKey prik;
    static {
        try {
            long time1 = System.currentTimeMillis();
            //生成密钥对
            RSAUtils2.generateKeyPair();
            keyMap = RSAUtils2.genKeyPair();
            pubk= (RSAPublicKey)RSAUtils2.getKeyPair().getPublic();
            publicKey = pubk.getModulus().toString(16);
            prik =  (RSAPrivateKey) RSAUtils2.getKeyPair().getPrivate();
            privateKey = prik.getModulus().toString(16);
            System.err.println("公钥: \n\r" + publicKey);
            System.err.println("私钥： \n\r" + privateKey);
            long time2 =System.currentTimeMillis();
            System.out.println("花费时间为："+(time2-time1));
        } catch (Exception e) {
            e.printStackTrace();
            System.err.println("公钥: \n\r" + publicKey);
            System.err.println("私钥： \n\r" + privateKey);
        }
    }
}

先从类中提取公钥

 try {
            publicKey= RSAData.publicKey;
        } catch (Exception e) {
            e.printStackTrace();
        }

将publicKey传入到前台页面用于加密
前台页面需要引入Barrett.js，BigInt.js，RSA.js，Base64.js

 var key;
 function enRSA() {
     setMaxDigits(130);

    //你传入的公钥
     var t=document.getElementById("publickey").value;
     //console.log(t);
     key = new RSAKeyPair("10001","",t);
 }

将密码使用base64加密

    password=Base.encode(password);
    enRSA();
    var token=encryptedString(key,encodeURIComponent('你要加密的东西'));

            // 转码
            token = (String) req.getAttr("token");
            //解析token转换为byte数组
            byte[] tokenBytes = RSAUtils2.hexStringToBytes(token);
            //获取私钥
            RSAPrivateKey privatekey1 = RSAData.prik;
            //使用私钥解密byte数组
            unencrypt_tokenbytes = RSAUtils2.decrypt(privatekey1, tokenBytes);
            //byte数组转换为字符串
            unencrypt_token = new String(unencrypt_tokenbytes);
            StringBuffer sb = new StringBuffer();
            sb.append(new String(unencrypt_token));
            //翻转字符串，前面翻转过现在翻转回来
            pwd = sb.reverse().toString();
            //用utf-8解码
            pwd = URLDecoder.decode(pwd, "UTF-8");//

总之RSA加密就是公钥加密私钥解密 RSA签名就是私钥加密公钥解密欢迎大神前来指导 - -

seanlal

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
记RSA非对称加密实战

本来觉得挺简单的不用写了，之前看到有人在讲密码学加密算法，发现有点不记得了。重新来贴一下流程 RSA加密算法的原理不再赘述，网上都有讲的比我好，我也懒得转载。网上都有的RSAUtils 贴一下，有好几个版本了，之前找了一个前后端加密用不了，这个可以用import java.io.ByteArrayOutputStream;import java.io.FileInputStream...
复制链接

扫一扫