直接贴代码:
package com.starv.addviewtoactivity;
import org.apache.commons.codec.binary.Base64;
import java.security.Key;
import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;
/**
* 参考:http://www.linuxidc.com/Linux/2012-08/69217.htm
* */
public class AESCodec {
//密钥算法
public static final String KEY_ALGORITHM = "AES";
//加解密算法/工作模式/填充方式,Java6.0支持PKCS5Padding填充方式,BouncyCastle支持PKCS7Padding填充方式
public static final String CIPHER_ALGORITHM = "AES/ECB/PKCS5Padding";
/**
* 生成密钥
*/
public static String initkey() throws Exception{
KeyGenerator kg = KeyGenerator.getInstance(KEY_ALGORITHM); //实例化密钥生成器
kg.init(128); //初始化密钥生成器:AES要求密钥长度为128,192,256位
SecretKey secretKey = kg.generateKey(); //生成密钥
return Base64.encodeBase64String(secretKey.getEncoded()); //获取二进制密钥编码形式
}
/**
* 转换密钥
*/
public static Key toKey(byte[] key) throws Exception{
return new SecretKeySpec(key, KEY_ALGORITHM);
}
/**
* 加密数据
* @param data 待加密数据
* @param key 密钥
* @return 加密后的数据
* */
public static String encrypt(String data, String key) throws Exception{
Key k = toKey(Base64.decodeBase64(key)); //还原密钥
//使用PKCS7Padding填充方式,这里就得这么写了(即调用BouncyCastle组件实现)
//Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM, "BC");
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM); //实例化Cipher对象,它用于完成实际的加密操作
cipher.init(Cipher.ENCRYPT_MODE, k); //初始化Cipher对象,设置为加密模式
return Base64.encodeBase64String(cipher.doFinal(data.getBytes())); //执行加密操作。加密后的结果通常都会用Base64编码进行传输
}
/**
* 解密数据
* @param data 待解密数据
* @param key 密钥
* @return 解密后的数据
* */
public static String decrypt(String data, String key) throws Exception{
Key k = toKey(Base64.decodeBase64(key));
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM);
cipher.init(Cipher.DECRYPT_MODE, k); //初始化Cipher对象,设置为解密模式
return new String(cipher.doFinal(Base64.decodeBase64(data))); //执行解密操作
}
public static void main(String[] args) throws Exception {
String source = "hello,world";
System.out.println("原文:" + source);
String key = initkey();
System.out.println("密钥:" + key);
String encryptData = encrypt(source, key);
System.out.println("加密:" + encryptData);
String decryptData = decrypt(encryptData, key);
System.out.println("解密: " + decryptData);
//这个密钥可以在C/S两端各自存储一个,server根据client传过来的密文通过这个密钥进行解密就可以了。
String encryptData1 = encrypt(source, "r2KyezNHuQa1DtCbzCtq8Q=+");
System.out.println("加密:" + encryptData1);
String decryptData1 = decrypt(encryptData1, "r2KyezNHuQa1DtCbzCtq8Q=+");
System.out.println("解密: " + decryptData1);
}
}