importjava.io.FileInputStream;importjava.io.FileOutputStream;importjava.io.ObjectInputStream;importjava.io.ObjectOutputStream;importjava.security.Key;importjava.security.KeyFactory;importjava.security.KeyPair;importjava.security.KeyPairGenerator;importjava.security.PrivateKey;importjava.security.PublicKey;importjava.security.SecureRandom;importjava.security.Signature;importjava.security.spec.PKCS8EncodedKeySpec;importjava.security.spec.X509EncodedKeySpec;importjavax.crypto.Cipher;importsun.misc.BASE64Decoder;importsun.misc.BASE64Encoder;/*** RSA加密,支持分片加密
*
* BCD码(Binary-Coded Decimal)亦称二进码十进数或二-十进制代码。
* 用4位二进制数来表示1位十进制数中的0~9这10个数码。
* 是一种二进制的数字编码形式,用二进制编码的十进制代码。
* 注:日常所说的BCD码大都是指8421BCD码形式
*@authorMing
**/
public classRSAUtil {/**指定加密算法为RSA*/
private static String ALGORITHM = "RSA";/**指定key的大小*/
private static int KEYSIZE = 1024;/**指定公钥存放文件*/
private static String PUBLIC_KEY_FILE = "d:/PublicKey";/**指定私钥存放文件*/
private static String PRIVATE_KEY_FILE = "d:/PrivateKey";public static final String KEY_ALGORITHM = "RSA";/**自定义一个串*/
public static final String SIGNATURE_ALGORITHM = "shihaiming@#!RSA";/*** 生成密钥对*/
public static void generateKeyPair() throwsException {if (getpublickey() == null || getprivatekey() == null) {/**RSA算法要求有一个可信任的随机数源*/SecureRandom sr= newSecureRandom();/**为RSA算法创建一个KeyPairGenerator对象*/KeyPairGenerator kpg=KeyPairGenerator.getInstance(ALGORITHM);/**利用上面的随机数据源初始化这个KeyPairGenerator对象*/kpg.initialize(KEYSIZE, sr);/**生成密匙对*/KeyPair kp=kpg.generateKeyPair();/**得到公钥*/Key publicKey=kp.getPublic();/**得到私钥*/Key privateKey=kp.getPrivate();/**用对象流将生成的密钥写入文件*/ObjectOutputStream oos1= new ObjectOutputStream(newFileOutputStream(PUBLIC_KEY_FILE));
ObjectOutputStream oos2= new ObjectOutputStream(newFileOutputStream(PRIVATE_KEY_FILE));
oos1.writeObject(publicKey);
oos2.writeObject(privateKey);/**清空缓存,关闭文件输出流*/oos1.close();
oos2.close();
}
}/*** 产生签名
*
*@paramdata
*@paramprivateKey
*@return*@throwsException*/
public static String sign(byte[] data, String privateKey) throwsException {//解密由base64编码的私钥
byte[] keyBytes =decryptBASE64(privateKey);//构造PKCS8EncodedKeySpec对象
PKCS8EncodedKeySpec pkcs8KeySpec = newPKCS8EncodedKeySpec(keyBytes);//KEY_ALGORITHM 指定的加密算法
KeyFactory keyFactory =KeyFactory.getInstance(KEY_ALGORITHM);//取私钥对象
PrivateKey priKey =keyFactory.generatePrivate(pkcs8KeySpec);//用私钥对信息生成数字签名
Signature signature =Signature.getInstance(SIGNATURE_ALGORITHM);
signature.initSign(priKey);
signature.update(data);returnencryptBASE64(signature.sign());
}/*** 验证签名
*
*@paramdata
*@parampublicKey
*@paramsign
*@return*@throwsException*/
public static boolean verify(byte[] data, String publicKey, String sign) throwsException {//解密由base64编码的公钥
byte[] keyBytes =decryptBASE64(publicKey);//构造X509EncodedKeySpec对象
X509EncodedKeySpec keySpec = newX509EncodedKeySpec(keyBytes);//KEY_ALGORITHM 指定的加密算法
KeyFactory keyFactory =KeyFactory.getInstance(KEY_ALGORITHM);//取公钥对象
PublicKey pubKey =keyFactory.generatePublic(keySpec);
Signature signature=Signature.getInstance(SIGNATURE_ALGORITHM);
signature.initVerify(pubKey);
signature.update(data);//验证签名是否有效
returnsignature.verify(decryptBASE64(sign));
}/*** BASE64解密
*
*@paramkey
*@return*@throwsException*/
public static byte[] decryptBASE64(String key) throwsException {return (newBASE64Decoder()).decodeBuffer(key);
}/*** BASE64加密
*
*@paramkey
*@return*@throwsException*/
public static String encryptBASE64(byte[] key) throwsException {return (newBASE64Encoder()).encodeBuffer(key);
}/*** 加密方法 source: 源数据*/
public static String encrypt(String source) throwsException {/**将文件中的公钥对象读出*/ObjectInputStream ois= new ObjectInputStream(newFileInputStream(PUBLIC_KEY_FILE));
Key key=(Key) ois.readObject();
ois.close();/**得到Cipher对象来实现对源数据的RSA加密*/Cipher cipher=Cipher.getInstance(ALGORITHM);
cipher.init(Cipher.ENCRYPT_MODE, key);int MaxBlockSize = KEYSIZE / 8;int len = (MaxBlockSize - 11) / 8;
String[] datas=splitString(source, len);
StringBuffer mi= newStringBuffer();for(String s : datas) {
mi.append(bcd2Str(cipher.doFinal(s.getBytes())));
}returnmi.toString();
}/*** 字符串分片
*
*@paramstring
* 源字符串
*@paramlen
* 单片的长度(keysize/8)
*@return
*/
public static String[] splitString(String string, intlen) {int x = string.length() /len;int y = string.length() %len;int z = 0;if (y != 0) {
z= 1;
}
String[] strings= new String[x +z];
String str= "";for (int i = 0; i < x + z; i++) {if (i == x + z - 1 && y != 0) {
str= string.substring(i * len, i * len +y);
}else{
str= string.substring(i * len, i * len +len);
}
strings[i]=str;
}returnstrings;
}/*** bcd 转 Str
*
*@parambytes
*@return
*/
public static String bcd2Str(byte[] bytes) {char temp[] = new char[bytes.length * 2], val;for (int i = 0; i < bytes.length; i++) {
val= (char) (((bytes[i] & 0xf0) >> 4) & 0x0f);
temp[i* 2] = (char) (val > 9 ? val + 'A' - 10 : val + '0');
val= (char) (bytes[i] & 0x0f);
temp[i* 2 + 1] = (char) (val > 9 ? val + 'A' - 10 : val + '0');
}return newString(temp);
}/*** 解密
*
*@paramcryptograph
* :密文
*@return解密后的明文
*@throwsException*/
public static String decrypt(String cryptograph) throwsException {/**将文件中的私钥对象读出*/@SuppressWarnings("resource")
ObjectInputStream ois= new ObjectInputStream(newFileInputStream(PRIVATE_KEY_FILE));
Key key=(Key) ois.readObject();/**得到Cipher对象对已用公钥加密的数据进行RSA解密*/Cipher cipher=Cipher.getInstance(ALGORITHM);
cipher.init(Cipher.DECRYPT_MODE, key);int key_len = KEYSIZE / 8;byte[] bytes =cryptograph.getBytes();byte[] bcd =ASCII2BCD(bytes, bytes.length);
StringBuffer sBuffer= newStringBuffer();byte[][] arrays =splitArray(bcd, key_len);for (byte[] arr : arrays) {
sBuffer.append(newString(cipher.doFinal(arr)));
}returnsBuffer.toString();
}/*** ASCII 转 BCD
*
*@paramascii
*@paramasc_len
*@return
*/
public static byte[] ASCII2BCD(byte[] ascii, intasc_len) {byte[] bcd = new byte[asc_len / 2];int j = 0;for (int i = 0; i < (asc_len + 1) / 2; i++) {
bcd[i]= asc2bcd(ascii[j++]);
bcd[i]= (byte) (((j >= asc_len) ? 0x00 : asc2bcd(ascii[j++])) + (bcd[i] << 4));
}returnbcd;
}/*** asc转bcd
*
*@paramasc
*@return
*/
public static byte asc2bcd(byteasc) {bytebcd;if ((asc >= '0') && (asc <= '9'))
bcd= (byte) (asc - '0');else if ((asc >= 'A') && (asc <= 'F'))
bcd= (byte) (asc - 'A' + 10);else if ((asc >= 'a') && (asc <= 'f'))
bcd= (byte) (asc - 'a' + 10);elsebcd= (byte) (asc - 48);returnbcd;
}/*** 字节数组分片
*
*@paramdata
*@paramlen
*@return
*/
public static byte[][] splitArray(byte[] data, intlen) {int x = data.length /len;int y = data.length %len;int z = 0;if (y != 0) {
z= 1;
}byte[][] arrays = new byte[x +z][];byte[] arr;for (int i = 0; i < x + z; i++) {
arr= new byte[len];if (i == x + z - 1 && y != 0) {
System.arraycopy(data, i* len, arr, 0, y);
}else{
System.arraycopy(data, i* len, arr, 0, len);
}
arrays[i]=arr;
}returnarrays;
}/**将文件中的公钥对象读出*/
public staticString getpublickey() {try{
@SuppressWarnings("resource")
ObjectInputStream ois= new ObjectInputStream(newFileInputStream(PUBLIC_KEY_FILE));
Key key=(Key) ois.readObject();
String publickey=encryptBASE64(key.getEncoded());returnpublickey;
}catch(Exception e) {
e.printStackTrace();
}return null;
}/**将文件中的私钥对象读出*/
public staticString getprivatekey() {try{
@SuppressWarnings("resource")
ObjectInputStream ois= new ObjectInputStream(newFileInputStream(PRIVATE_KEY_FILE));
Key key=(Key) ois.readObject();
String privatekey=encryptBASE64(key.getEncoded());returnprivatekey;
}catch(Exception e) {
e.printStackTrace();
}return null;
}public static voidmain(String[] args) {try{//生成公钥、私钥文件//generateKeyPair();
String s= encrypt("https://www.baidu.com/s?ie=utf-8&f=8&rsv_bp=1&rsv_idx=1&ch=3");
System.out.println("加密:"+s);
System.out.println("解密:"+decrypt(s));//再用base64加解密
String a =encryptBASE64(s.getBytes());
System.out.println(a);
String b= newString(decryptBASE64(a));
System.out.println(b);
System.out.println("解密b:"+decrypt(b));
}catch(Exception e) {
e.printStackTrace();
}
}
}