需求 :用户登陆时候将密码经过rsa非对称加密,使用公钥加密后传给后台,后台使用私钥解密:安全
我在网上找了一个现成的rsa工具类工具
public class RsaUtils {
//构建Cipher实例时所传入的的字符串,默认为"RSA/NONE/PKCS1Padding"
private static String sTransform = "RSA/None/PKCS1Padding";
//进行Base64转码时的flag设置,默认为Base64.DEFAULT
private static int sBase64Mode = Base64.DEFAULT;
//初始化方法,设置参数
public static void init(String transform,int base64Mode){
sTransform = transform;
sBase64Mode = base64Mode;
}
/*
产生密钥对
@param keyLength
密钥长度,小于1024长度的密钥已经被证明是不安全的,一般设置为1024或者2048,建议2048
*/
public static KeyPair generateRSAKeyPair(int keyLength){
KeyPair keyPair = null;
try {
KeyPairGenerator keyPairGenerator = KeyPairGenerator.getInstance("RSA");
//设置密钥长度
keyPairGenerator.initialize(keyLength);
//产生密钥对
keyPair = keyPairGenerator.generateKeyPair();
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
}
return keyPair;
}
/*
加密或解密数据的通用方法
@param srcData
待处理的数据
@param key
公钥或者私钥
@param mode
指定是加密仍是解密,值为Cipher.ENCRYPT_MODE或者Cipher.DECRYPT_MODE
*/
private static byte[] processData(byte[] srcData, Key key, int mode){
//用来保存处理结果
byte[] resultBytes = null;
try {
//获取Cipher实例
Cipher cipher = Cipher.getInstance(sTransform);
//初始化Cipher,mode指定是加密仍是解密,key为公钥或私钥
cipher.init(mode,key);
//处理数据
resultBytes = cipher.doFinal(srcData);
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
} catch (NoSuchPaddingException e) {
e.printStackTrace();
} catch (InvalidKeyException e) {
e.printStackTrace();
} catch (BadPaddingException e) {
e.printStackTrace();
} catch (IllegalBlockSizeException e) {
e.printStackTrace();
}
return resultBytes;
}
/*
使用公钥加密数据,结果用Base64转码
*/
public static String encryptDataByPublicKey(byte[] srcData, PublicKey publicKey){
byte[] resultBytes = processData(srcData,publicKey,Cipher.ENCRYPT_MODE);
return Base64.encodeToString(resultBytes,sBase64Mode);
}
/*
使用私钥解密,返回解码数据
*/
public static byte[] decryptDataByPrivate(String encryptedData, PrivateKey privateKey){
byte[] bytes = Base64.decode(encryptedData,sBase64Mode);
return processData(bytes,privateKey,Cipher.DECRYPT_MODE);
}
/*
使用私钥进行解密,解密数据转换为字符串,使用utf-8编码格式
*/
public static String decryptedToStrByPrivate(String encryptedData, PrivateKey privateKey){
return new String(decryptDataByPrivate(encryptedData,privateKey));
}
/*
使用私钥解密,解密数据转换为字符串,并指定字符集
*/
public static String decryptedToStrByPrivate(String encryptedData, PrivateKey privateKey,String charset){
try {
return new String(decryptDataByPrivate(encryptedData,privateKey),charset);
} catch (UnsupportedEncodingException e) {
e.printStackTrace();
}
return null;
}
/*
使用私钥加密,结果用Base64转码
*/
public static String encryptDataByPrivateKey(byte[] srcData,PrivateKey privateKey){
byte[] resultBytes = processData(srcData,privateKey,Cipher.ENCRYPT_MODE);
return Base64.encodeToString(resultBytes,sBase64Mode);
}
/*
使用公钥解密,返回解密数据
*/
public static byte[] decryptDataByPublicKey(String encryptedData,PublicKey publicKey){
byte[] bytes = Base64.decode(encryptedData,sBase64Mode);
return processData(bytes,publicKey,Cipher.DECRYPT_MODE);
}
/*
使用公钥解密,结果转换为字符串,使用默认字符集utf-8
*/
public static String decryptedToStrByPublicKey(String encryptedData,PublicKey publicKey){
return new String(decryptDataByPublicKey(encryptedData,publicKey));
}
/*
使用公钥解密,结果转换为字符串,使用指定字符集
*/
public static String decryptedToStrByPublicKey(String encryptedData,PublicKey publicKey,String charset){
try {
return new String(decryptDataByPublicKey(encryptedData,publicKey),charset);
} catch (UnsupportedEncodingException e) {
e.printStackTrace();
}
return null;
}
/*
将字符串形式的公钥转换为公钥对象
*/
public static PublicKey keyStrToPublicKey(String publicKeyStr){
PublicKey publicKey = null;
byte[] keyBytes = Base64.decode(publicKeyStr,sBase64Mode);
X509EncodedKeySpec keySpec = new X509EncodedKeySpec(keyBytes);
try {
KeyFactory keyFactory = KeyFactory.getInstance("RSA");
publicKey = keyFactory.generatePublic(keySpec);
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
} catch (InvalidKeySpecException e) {
e.printStackTrace();
}
return publicKey;
}
/*
将字符串形式的私钥,转换为私钥对象
*/
public static PrivateKey keyStrToPrivate(String privateKeyStr){
PrivateKey privateKey = null;
byte[] keyBytes = Base64.decode(privateKeyStr,sBase64Mode);
PKCS8EncodedKeySpec keySpec = new PKCS8EncodedKeySpec(keyBytes);
try {
KeyFactory keyFactory = KeyFactory.getInstance("RSA");
privateKey = keyFactory.generatePrivate(keySpec);
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
} catch (InvalidKeySpecException e) {
e.printStackTrace();
}
return privateKey;
}
}
而后建立了一个调用加密方法的类编码
//PUBLIC_KEY_STR 公钥
public class PasswordJiami {
public static PublicKey publicKey;
public static String passwordjiami( String password){
//获取公钥
publicKey = RsaUtils.keyStrToPublicKey(PUBLIC_KEY_STR);
//公钥加密结果
String publicEncryptedResult = RsaUtils.encryptDataByPublicKey(password.getBytes(), publicKey);
//私钥解密结果
// String privateDecryptedResult = RsaUtils.decryptedToStrByPrivate(publicEncryptedResult,privateKey);
return publicEncryptedResult;
}
}