关于MD3非对称加密和MD4对称加密在java中的运用
**业务场景:**最近在和第三方调试接口,第三方要求接口的入参和出参都需要加密,参数需要先使用md3加密生成签名,然后签名和参数需要使用md4加密一起传过来,第三方接收到请求之后解密参数,之后第三方的回参也通过md4加密回传回来。
首先需要引入依赖
<dependencies>
<dependency>
<groupId>junit</groupId>
<artifactId>junit</artifactId>
<version>4.11</version>
</dependency>
<dependency>
<groupId>com.bamboocloud.Codec.bamboocloud_Codec</groupId>
<artifactId>bamboocloud_Codec</artifactId>
<version>0.0.3</version>
</dependency>
<dependency>
<groupId>org.bouncycastle</groupId>
<artifactId>bcprov-jdk15on</artifactId>
<version>1.69</version>
</dependency>
<!-- https://mvnrepository.com/artifact/com.alibaba/fastjson -->
<dependency>
<groupId>com.alibaba</groupId>
<artifactId>fastjson</artifactId>
<version>1.2.73</version>
</dependency>
<!-- https://mvnrepository.com/artifact/org.dom4j/dom4j -->
<dependency>
<groupId>org.dom4j</groupId>
<artifactId>dom4j</artifactId>
<version>2.1.3</version>
</dependency>
<!-- https://mvnrepository.com/artifact/javax.servlet/javax.servlet-api -->
<dependency>
<groupId>javax.servlet</groupId>
<artifactId>javax.servlet-api</artifactId>
<version>4.0.1</version>
<scope>provided</scope>
</dependency>
<!-- https://mvnrepository.com/artifact/org.slf4j/slf4j-api -->
<dependency>
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
<version>1.7.25</version>
</dependency>
<!-- https://mvnrepository.com/artifact/org.slf4j/slf4j-log4j12 -->
<dependency>
<groupId>org.slf4j</groupId>
<artifactId>slf4j-log4j12</artifactId>
<version>1.7.25</version>
</dependency>
</dependencies>
然后单元测试
package com.bamboocloud.ws;
import com.alibaba.fastjson.JSON;
import com.alibaba.fastjson.JSONObject;
import com.alibaba.fastjson.parser.Feature;
import com.bamboocloud.ws.demo.service.BamboocloudUtils;
import com.banboocloud.Codec.Sm3Signature;
import com.banboocloud.Codec.Sm4Cipher;
import com.banboocloud.commons.codec.sm4.SM3;
import org.junit.Test;
import java.io.UnsupportedEncodingException;
import java.util.LinkedHashMap;
import java.util.Map;
public class EncryptTest {
//SM4
private String type = "SM4";
private String signType = "SM3";
//秘钥
private String key = "JLB6L6MJVIT5Z7IL";
/**
* 获取用户属性demo
*/
@Test
public void SchemaService(){
//创建用户的demo
//sm3签名
String originalStr = "bimRequestId=9e928d12ec8a4c1bb75283b8df71308d&bimRemoteUser=user&bimRemotePwd=password";
Sm3Signature signature = new Sm3Signature();
String signatureStr = signature.signature(originalStr);
System.out.println("*old signatureStr*"+signatureStr);
//sm4加解密
Sm4Cipher sm4Cipher = new Sm4Cipher();
String source = "{\"bimRequestId\":\"9e928d12ec8a4c1bb75283b8df71308d\",\"bimRemoteUser\":\"user\",\"bimRemotePwd\":\"password\",\"signature\":\"" + signatureStr + "\"}";
String target = sm4Cipher.encrypt(source, key);
//输出密文
System.out.println("target:" + target);
//解密
//报文解密
String bodyparam = BamboocloudUtils.getPlaintext(target, key, type);
Map<String,Object> reqmap = (Map<String,Object>) JSONObject.parseObject(bodyparam, Feature.OrderedField);
System.out.println("new signatureStr"+reqmap.get("signature"));
if (BamboocloudUtils.verify(reqmap, signType).booleanValue()) {
//输出密文
System.out.println("bodyparam:" + bodyparam);
}
}
/**
* 创建用户demo
*/
@Test
public void UserCreateService(){
//创建用户的demo @Mmx748124843
//sm3签名
String originalStr = "bimRequestId=11928d12ec8a4c1bb75283b8df71308d&bimRemoteUser=user&bimRemotePwd=password&userid=oijerqeffvihikbh";
Sm3Signature signature = new Sm3Signature();
String signatureStr = signature.signature(originalStr);
System.out.println("*old signatureStr*"+signatureStr);
//sm4加解密
Sm4Cipher sm4Cipher = new Sm4Cipher();
String source = "{\"bimRequestId\":\"11928d12ec8a4c1bb75283b8df71308d\",\"bimRemoteUser\":\"user\",\"bimRemotePwd\":\"password\",\"userid\":\"oijerqeffvihikbh\",\"signature\":\"" + signatureStr + "\"}";
String target = sm4Cipher.encrypt(source, key);
//输出密文
System.out.println("target:" + target);
//解密
//报文解密
String bodyparam = BamboocloudUtils.getPlaintext(target, key, type);
Map<String,Object> reqmap = (Map<String,Object>) JSONObject.parseObject(bodyparam, Feature.OrderedField);
System.out.println("new signatureStr"+reqmap.get("signature"));
if (BamboocloudUtils.verify(reqmap, signType).booleanValue()) {
//输出密文
System.out.println("bodyparam:" + bodyparam);
}
}
/**
* 更新用户
*/
@Test
public void UserUpdateService(){
//创建用户的demo @Mmx748124843
//sm3签名
String originalStr = "bimRequestId=9e928d12ec8a4c1bb75283b8df71308d&bimRemoteUser=user&bimRemotePwd=password&bimUid=141&userid=gargafff";
Sm3Signature signature = new Sm3Signature();
String signatureStr = signature.signature(originalStr);
System.out.println("*old signatureStr*"+signatureStr);
//sm4加解密
Sm4Cipher sm4Cipher = new Sm4Cipher();
String source = "{\"bimRequestId\":\"9e928d12ec8a4c1bb75283b8df71308d\",\"bimRemoteUser\":\"user\",\"bimRemotePwd\":\"password\",\"bimUid\":\"141\",\"userid\":\"gargafff\",\"signature\":\"" + signatureStr + "\"}";
String target = sm4Cipher.encrypt(source, key);
//输出密文
System.out.println("target:" + target);
//解密
//报文解密
String bodyparam = BamboocloudUtils.getPlaintext(target, key, type);
Map<String,Object> reqmap = (Map<String,Object>) JSONObject.parseObject(bodyparam, Feature.OrderedField);
System.out.println("new signatureStr"+reqmap.get("signature"));
if (BamboocloudUtils.verify(reqmap, signType).booleanValue()) {
//输出密文
System.out.println("bodyparam:" + bodyparam);
}
}
/**
* 删除用户
*/
@Test
public void UserDeleteService(){
//创建用户的demo @Mmx748124843
//sm3签名
String originalStr = "bimRequestId=9e928d12ec8a4c1bb75283b8df71308d&bimRemoteUser=user&bimRemotePwd=password&bimUid=141";
Sm3Signature signature = new Sm3Signature();
String signatureStr = signature.signature(originalStr);
System.out.println("*old signatureStr*"+signatureStr);
//sm4加解密
Sm4Cipher sm4Cipher = new Sm4Cipher();
String source = "{\"bimRequestId\":\"9e928d12ec8a4c1bb75283b8df71308d\",\"bimRemoteUser\":\"user\",\"bimRemotePwd\":\"password\",\"bimUid\":\"141\",\"signature\":\"" + signatureStr + "\"}";
String target = sm4Cipher.encrypt(source, key);
//输出密文
System.out.println("target:" + target);
//解密
//报文解密
String bodyparam = BamboocloudUtils.getPlaintext(target, key, type);
Map<String,Object> reqmap = (Map<String,Object>) JSONObject.parseObject(bodyparam, Feature.OrderedField);
System.out.println("new signatureStr"+reqmap.get("signature"));
if (BamboocloudUtils.verify(reqmap, signType).booleanValue()) {
//输出密文
System.out.println("bodyparam:" + bodyparam);
}
}
/**
* 获取所有账号列表
*/
@Test
public void QueryAllUserIdsService(){
//创建用户的demo @Mmx748124843
//sm3签名
String originalStr = "bimRequestId=9e928d12ec8a4c1bb75283b8df71308d&bimRemoteUser=user&bimRemotePwd=password";
Sm3Signature signature = new Sm3Signature();
String signatureStr = signature.signature(originalStr);
System.out.println("*old signatureStr*"+signatureStr);
//sm4加解密
Sm4Cipher sm4Cipher = new Sm4Cipher();
String source = "{\"bimRequestId\":\"9e928d12ec8a4c1bb75283b8df71308d\",\"bimRemoteUser\":\"user\",\"bimRemotePwd\":\"password\",\"signature\":\"" + signatureStr + "\"}";
String target = sm4Cipher.encrypt(source, key);
//输出密文
System.out.println("target:" + target);
//解密
//报文解密
String bodyparam = BamboocloudUtils.getPlaintext(target, key, type);
Map<String,Object> reqmap = (Map<String,Object>) JSONObject.parseObject(bodyparam, Feature.OrderedField);
System.out.println("new signatureStr"+reqmap.get("signature"));
if (BamboocloudUtils.verify(reqmap, signType).booleanValue()) {
//输出密文
System.out.println("bodyparam:" + bodyparam);
}
}
/**
* 查询账号的详细信息
*/
@Test
public void QueryUserByIdService(){
//创建用户的demo @Mmx748124843
//sm3签名
String originalStr = "bimRequestId=9e928d12ec8a4c1bb75283b8df71308d&bimRemoteUser=user&bimRemotePwd=password&bimUid=141";
Sm3Signature signature = new Sm3Signature();
String signatureStr = signature.signature(originalStr);
System.out.println("*old signatureStr*"+signatureStr);
//sm4加解密
Sm4Cipher sm4Cipher = new Sm4Cipher();
String source = "{\"bimRequestId\":\"9e928d12ec8a4c1bb75283b8df71308d\",\"bimRemoteUser\":\"user\",\"bimRemotePwd\":\"password\",\"bimUid\":\"141\",\"signature\":\"" + signatureStr + "\"}";
String target = sm4Cipher.encrypt(source, key);
//输出密文
System.out.println("target:" + target);
//解密
//报文解密
String bodyparam = BamboocloudUtils.getPlaintext(target, key, type);
Map<String,Object> reqmap = (Map<String,Object>) JSONObject.parseObject(bodyparam, Feature.OrderedField);
System.out.println("new signatureStr"+reqmap.get("signature"));
if (BamboocloudUtils.verify(reqmap, signType).booleanValue()) {
//输出密文
System.out.println("bodyparam:" + bodyparam);
}
}
/**
* 解密
*/
@Test
public void decryption() throws UnsupportedEncodingException {
//原始的密文
String originalParam = "EfSRGBN6BazDJ62gjmZYZukOkrRK2X6PksnTlLe4MoFabby7S6SgbWCDi5nQQaKP6HeaFngD7NfxKf4W1GKf7CB5+StjxgWsQbSZN5rxHQIaaZ+YGxhwfL0zSm0F7YhrZEicd1xh/8Ew7MuANUu4K8E5TVKtaXGhcYQ9qT+pDvqkKmFLCltbrFx6AlsbuujJ0zLJcYHPkQufZq9crN5u0Q7EQPAeD+FDZw0UHSiCNQjSYAl1X22FVLyc9foAYio+";
//sm4加解密
String bodyparam = BamboocloudUtils.getPlaintext(originalParam, key, type);
//报文解密
JSONObject resultJsonObject = JSONObject.parseObject(bodyparam, Feature.OrderedField);
System.out.println("**resultJsonObject**"+resultJsonObject.toJSONString());
}
}
其中BamboocloudUtils代码如下:
public abstract class BamboocloudUtils {
private static Properties properties = new Properties();
private static InputStream in = Thread.currentThread().getContextClassLoader().getResourceAsStream("application.properties");
static {
try {
properties.load(in);
} catch (IOException e) {
e.printStackTrace();
}
}
public static String getProperty(String property) {
return properties.getProperty(property);
}
public static void checkUsernamePassword(String username, String password) {
System.out.println("username --->" + username + " password --- >" + password + " ----ok");
}
public static String getPlaintext(String ciphertext, String key, String type) {
return BamboocloudFacade.decrypt(ciphertext, key, type);
}
public static Boolean verify(Map<String, Object> reqmap, String type) {
Map<String, Object> verifymap = new LinkedHashMap<>();
StringBuffer sb = new StringBuffer();
Iterator<String> it = reqmap.keySet().iterator();
while (it.hasNext()) {
String key = (String) it.next();
verifymap.put(key, reqmap.get(key));
}
Iterator<String> ittree = verifymap.keySet().iterator();
while (ittree.hasNext()) {
String key = (String) ittree.next();
if (!"signature".equals(key)) {
sb.append(key).append("=").append(verifymap.get(key)).append("&");
}
}
sb.deleteCharAt(sb.length() - 1);
System.out.println(reqmap.get("signature") + " now " + sb.toString());
return BamboocloudFacade.verify(reqmap.get("signature").toString(), sb.toString(), type);
}
public static String getRequestBody(HttpServletRequest request) {
BufferedReader br = null;
StringBuilder sb = new StringBuilder();
String str = "";
try {
br = request.getReader();
while ((str = br.readLine()) != null) {
sb.append(str);
}
br.close();
} catch (IOException e) {
e.printStackTrace();
if (br != null)
try {
br.close();
} catch (IOException eo) {
eo.printStackTrace();
}
} finally {
if (br != null) {
try {
br.close();
} catch (IOException e) {
e.printStackTrace();
}
}
}
return sb.toString();
}
}