对称加密
AES
理论
-
算法
分组密码:包含行移位变换、轮密钥加操作、字节替换操作、数学基础、列混合变换、演示视频 -
模式
-
填充
实现
- AES/CBC/PKCS7Padding 实现
import com.alibaba.fastjson.JSONObject;
import net.iharder.Base64;
import javax.crypto.Cipher;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import java.nio.charset.StandardCharsets;
/**
* @author Ryan
* @Description: AES 加密
* @Date 20220525
*/
public class AesEncrypt {
private static final String ALGO = "AES";
private static final String ALGO_MODE = "AES/CBC/NoPadding";
private static final String AIV = "e5fc2f2955c8cc92f0fa9b37734bfa60";
private final String key;
AesEncrypt(String key) {
this.key = key;
}
public String encrypt(String Data) {
try {
byte[] iv = toByteArray(AIV);//因为要求IV为16byte,而此处aiv串为32位字符串,所以将32位字符串转为16byte
Cipher cipher = Cipher.getInstance(ALGO_MODE);
int blockSize = cipher.getBlockSize();
byte[] dataBytes = Data.getBytes();
int plaintextLength = dataBytes.length;
if (plaintextLength % blockSize != 0) {
plaintextLength = plaintextLength + (blockSize - (plaintextLength % blockSize));
}
byte[] plaintext = new byte[plaintextLength];
System.arraycopy(dataBytes, 0, plaintext, 0, dataBytes.length);
SecretKeySpec keyspec = new SecretKeySpec(key.getBytes(StandardCharsets.UTF_8), ALGO);
IvParameterSpec ivspec = new IvParameterSpec(iv);
cipher.init(Cipher.ENCRYPT_MODE, keyspec, ivspec);
byte[] encrypted = cipher.doFinal(plaintext);
return Base64.encodeBytes(encrypted);//将cipher加密后的byte数组用base64加密生成字符串
} catch (Exception e) {
e.printStackTrace();
return null;
}
}
public String decrypt(String encryptedData) {
try {
byte[] encrypted1 = Base64.decode(encryptedData);
byte[] iv = toByteArray(AIV);
Cipher cipher = Cipher.getInstance(ALGO_MODE);
SecretKeySpec keyspec = new SecretKeySpec(key.getBytes(StandardCharsets.UTF_8), ALGO);
IvParameterSpec ivspec = new IvParameterSpec(iv);
cipher.init(Cipher.DECRYPT_MODE, keyspec, ivspec);
byte[] original = cipher.doFinal(encrypted1);
String originalString = new String(original);
return originalString.trim();//此处添加trim()是为了去除多余的填充字符,就不用去填充了,具体有什么问题我还没有遇到,有强迫症的同学可以自己写一个PKCS7UnPadding函数
} catch (Exception e) {
e.printStackTrace();
return null;
}
}
//此函数是将字符串每两个字符合并生成byte数组
public static byte[] toByteArray(String hexString) {
hexString = hexString.toLowerCase();
final byte[] byteArray = new byte[hexString.length() >> 1];
int index = 0;
for (int i = 0; i < hexString.length(); i++) {
if (index > hexString.length() - 1)
return byteArray;
byte highDit = (byte) (Character.digit(hexString.charAt(index), 16) & 0xFF);
byte lowDit = (byte) (Character.digit(hexString.charAt(index + 1), 16) & 0xFF);
byteArray[i] = (byte) (highDit << 4 | lowDit);
index += 2;
}
System.out.println(byteArray.length);
return byteArray;
}
//此函数是pkcs7padding填充函数
public static String pkcs7padding(String data) {
int bs = 16;
int padding = bs - (data.length() % bs);
StringBuilder padding_text = new StringBuilder();
for (int i = 0; i < padding; i++) {
padding_text.append((char) padding);
}
return data + padding_text;
}
public static void main(String[] args) {
AesEncrypt aes = new AesEncrypt("e495a7f0f6434b91a65abd66eab37b67");//创建AES
JSONObject data = new JSONObject();//创建Json的加密对象
data.put("key", "value");
System.out.println("原始数据:" + data.toJSONString());
String rstData = pkcs7padding(data.toJSONString());//进行PKCS7Padding填充
String passwordEnc = aes.encrypt(rstData);//进行java的AES/CBC/NoPadding加密
String passwordDec = aes.decrypt(passwordEnc);//解密
System.out.println("加密之后的字符串:" + passwordEnc);
System.out.println("解密后的数据:" + passwordDec);
}
}