三方只要在编码方式,key,vi中设置同样,就能够进行跨语言加密解密,java
首先是java ,Base64我这里是使用的org.apache.commons算法
- package com.jueyue.crypto;
-
- import javax.crypto.Cipher;
- import javax.crypto.spec.IvParameterSpec;
- import javax.crypto.spec.SecretKeySpec;
-
- import org.apache.commons.codec.binary.BAES64;
-
-
-
- public class AES {
-
-
- public static String Encrypt(String sSrc, String sKey) throws Exception {
- if (sKey == null) {
- System.out.print("Key为空null");
- return null;
- }
-
- if (sKey.length() != 16) {
- System.out.print("Key长度不是16位");
- return null;
- }
- byte[] raw = sKey.getBytes();
- SecretKeySpec skeySpec = new SecretKeySpec(raw, "AES");
- Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
- IvParameterSpec iv = new IvParameterSpec("0102030405060708".getBytes());
- cipher.init(Cipher.ENCRYPT_MODE, skeySpec, iv);
- byte[] encrypted = cipher.doFinal(sSrc.getBytes());
-
- return BAES64.encodeBAES64String(encrypted);
- }
-
-
- public static String Decrypt(String sSrc, String sKey) throws Exception {
- try {
-
- if (sKey == null) {
- System.out.print("Key为空null");
- return null;
- }
-
- if (sKey.length() != 16) {
- System.out.print("Key长度不是16位");
- return null;
- }
- byte[] raw = sKey.getBytes("ASCII");
- SecretKeySpec skeySpec = new SecretKeySpec(raw, "AES");
- Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
- IvParameterSpec iv = new IvParameterSpec("0102030405060708"
- .getBytes());
- cipher.init(Cipher.DECRYPT_MODE, skeySpec, iv);
- byte[] encrypted1 = BAES64.decodeBAES64(sSrc);
- try {
- byte[] original = cipher.doFinal(encrypted1);
- String originalString = new String(original);
- return originalString;
- } catch (Exception e) {
- System.out.println(e.toString());
- return null;
- }
- } catch (Exception ex) {
- System.out.println(ex.toString());
- return null;
- }
- }
-
-
- }
接着是as的加密实现,是使用的as3crypto.swc的架包apache
代码以下:session
- package util
- {
- import com.hurlant.crypto.symmetric.CBCMode;
- import com.hurlant.crypto.symmetric.DESKey;
-
- import flash.utils.ByteArray;
-
- import mx.utils.Base64Decoder;
- import mx.utils.Base64Encoder;
-
-
- public class EncryptionUtil
- {
- public function EncryptionUtil()
- {
- }
-
- static public function encryption(str:String):String{
- if(!str||str.length==0){return "";}
- var key:ByteArray= new ByteArray();
- key.writeUTFBytes("0102030405060708");
- var iv:ByteArray= new ByteArray();
- iv.writeUTFBytes("0102030405060708");
- var des:DESKey=new DESKey(key);
- var cbc:CBCMode = new CBCMode(des);
- cbc.IV = iv;
- var tmpByteArray:ByteArray=convertStringToByteArray(str);
- cbc.encrypt(tmpByteArray);
- var $base64:Base64Encoder = new Base64Encoder();
- $base64.insertNewLines = false;
- $base64.encodeBytes(tmpByteArray);
- return $base64.toString();
- }
-
- static public function decryption(str:String):String{
- if(!str||str.length==0){return "";}
- var key:ByteArray= new ByteArray();
- key.writeUTFBytes("0102030405060708");
- var iv:ByteArray= new ByteArray();
- iv.writeUTFBytes("0102030405060708");
- var des:DESKey=new DESKey(key);
- var cbc:CBCMode = new CBCMode(des);
- cbc.IV = iv;
- var $base64D:Base64Decoder = new Base64Decoder();
- $base64D.decode(str);
- var tmpByteArray:ByteArray =$base64D.toByteArray();
- cbc.decrypt(tmpByteArray);
- return convertByteArrayToString(tmpByteArray);
- }
- static private function convertStringToByteArray(str:String):ByteArray
- {
- var bytes:ByteArray;
- if (str)
- {
- bytes=new ByteArray();
- bytes.writeUTFBytes(str);
- }
- return bytes;
- }
- static private function convertByteArrayToString(bytes:ByteArray):String
- {
- var str:String;
- if (bytes)
- {
- bytes.position=0;
- str=bytes.readUTFBytes(bytes.length);
- }
- return str;
- }
- }
- }
最后是js的实现,js是用的CryptoJS这个包,这个搞了很久,就由于srcs没有转码,仍是要细心 呀 编码
- function Encrypt(word){
- var key = CryptoJS.enc.Utf8.parse("0102030405060708");
- var iv = CryptoJS.enc.Utf8.parse('0102030405060708');
- var srcs = CryptoJS.enc.Utf8.parse(word);
- var encrypted = CryptoJS.AES.encrypt(srcs, key, { iv: iv,mode:CryptoJS.mode.CBC});
- return encrypted.toString();
- }
- function Decrypt(word){
- var key = CryptoJS.enc.Utf8.parse("0102030405060708");
- var iv = CryptoJS.enc.Utf8.parse('0102030405060708');
- var decrypt = CryptoJS.AES.decrypt(word, key, { iv: iv,mode:CryptoJS.mode.CBC});
- return CryptoJS.enc.Utf8.stringify(decrypt).toString();
- }
本身也想了很久,这个key如何设置,若是设置简单的,固定的那么就和没有加密同样,由于本身基本上没有涉及过这个领域,想了一个就是session来做为key,缘由是key是单一的,并且不是固定的,这样给破解就加了必定的困难,可是session,能不能在流中被截取,因此可使用session中的某些值,在即这添加一些,做为key就能够基本上保证,在半路不会被破解了加密
转自:http://jueyue.iteye.com/blog/1830792url