Java與.NET兼容的RSA密鑰持久化方法
阿新 • • 發佈:2018-03-20
bigint gpt tns 位數 amp keep 通用 tools 兼容 
* To change this template, choose Tools | Templates
* and open the template in the editor.
*/
package com.scbeta.helpers;
/**
*
* @author aaa
*/
public class StringHelper {
//數組中是否包括某字符串
public static boolean arrayContainsString(String[] array, String key) {
for (String tmpString : array) {
if (tmpString.equals(key)) {
return true;
}
}
return false;
}
public static String GetLeftString(String source, String strTail) {
return GetLeftString(source, strTail, false);
}
public static String GetLeftString(String source, String strTail, boolean KeepHeadAndTail) {
return GetMiddleString(source, "", strTail, KeepHeadAndTail);
}
public static String GetRightString(String source, String strHead) {
return GetRightString(source, strHead, false);
}
public static String GetRightString(String source, String strHead, boolean KeepHeadAndTail) {
return GetMiddleString(source, strHead, "", KeepHeadAndTail);
}
public static String GetMiddleString(String source, String strHead, String strTail) {
return GetMiddleString(source, strHead, strTail, false);
}
public static String GetMiddleString(String source, String strHead, String strTail, boolean KeepHeadAndTail) {
try {
int indexHead, indexTail;
if (strHead == null || strHead.isEmpty()) {
indexHead = 0;
} else {
indexHead = source.indexOf(strHead);
}
if (strTail == null || strTail.isEmpty()) {
indexTail = source.length();
} else {
indexTail = source.indexOf(strTail, indexHead + strHead.length());
}
if (indexTail < 0) {
indexTail = source.length();
}
String rtnStr = "";
if ((indexHead >= 0) && (indexTail >= 0)) {
if (KeepHeadAndTail) {
rtnStr = source.substring(indexHead, indexTail + strTail.length());
} else {
rtnStr = source.substring(indexHead + strHead.length(), indexTail);
}
}
return rtnStr;
} catch (Exception ex) {
return "";
}
}
}
package com.scbeta.helpers;
import java.io.IOException;
public class Base64Helper {
public static String encode(byte[] byteArray) {
sun.misc.BASE64Encoder base64Encoder = new sun.misc.BASE64Encoder();
return base64Encoder.encode(byteArray);
}
public static byte[] decode(String base64EncodedString) {
sun.misc.BASE64Decoder base64Decoder = new sun.misc.BASE64Decoder();
try {
return base64Decoder.decodeBuffer(base64EncodedString);
} catch (IOException e) {
return null;
}
}
//===================
//作者:aaaSoft
//日期:2011年11月30日
//博客:http://www.cnblogs.com/aaaSoft/
//Email:[email protected]
//說明:原創文章,轉載請註明出處並保留作者信息
//===================
package com.scbeta.helpers.security;
import java.math.BigInteger;
import java.security.KeyFactory;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.NoSuchAlgorithmException;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.Signature;
import java.security.interfaces.RSAPrivateCrtKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.RSAPrivateCrtKeySpec;
import java.security.spec.RSAPublicKeySpec;
import javax.crypto.Cipher;
import com.scbeta.helpers.Base64Helper;
import com.scbeta.helpers.StringHelper;
public class RsaHelper {
/**
* 生成RSA密鑰對(默認密鑰長度為1024)
*
* @return
*/
public static KeyPair generateRSAKeyPair() {
return generateRSAKeyPair(1024);
}
/**
* 生成RSA密鑰對
*
* @param keyLength
* 密鑰長度,範圍:512~2048
* @return
*/
public static KeyPair generateRSAKeyPair(int keyLength) {
try {
KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA");
kpg.initialize(keyLength);
return kpg.genKeyPair();
} catch (NoSuchAlgorithmException e) {
return null;
}
}
public static String encodePublicKeyToXml(PublicKey key) {
if (!RSAPublicKey.class.isInstance(key)) {
return null;
}
RSAPublicKey pubKey = (RSAPublicKey) key;
StringBuilder sb = new StringBuilder();
sb.append("<RSAKeyValue>");
sb.append("<Modulus>")
.append(Base64Helper.encode(pubKey.getModulus().toByteArray()))
.append("</Modulus>");
sb.append("<Exponent>")
.append(Base64Helper.encode(pubKey.getPublicExponent()
.toByteArray())).append("</Exponent>");
sb.append("</RSAKeyValue>");
return sb.toString();
}
public static PublicKey decodePublicKeyFromXml(String xml) {
xml = xml.replaceAll("\r", "").replaceAll("\n", "");
BigInteger modulus = new BigInteger(1, Base64Helper.decode(StringHelper
.GetMiddleString(xml, "<Modulus>", "</Modulus>")));
BigInteger publicExponent = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml,
"<Exponent>", "</Exponent>")));
RSAPublicKeySpec rsaPubKey = new RSAPublicKeySpec(modulus,
publicExponent);
KeyFactory keyf;
try {
keyf = KeyFactory.getInstance("RSA");
return keyf.generatePublic(rsaPubKey);
} catch (Exception e) {
return null;
}
}
public static PrivateKey decodePrivateKeyFromXml(String xml) {
xml = xml.replaceAll("\r", "").replaceAll("\n", "");
BigInteger modulus = new BigInteger(1, Base64Helper.decode(StringHelper
.GetMiddleString(xml, "<Modulus>", "</Modulus>")));
BigInteger publicExponent = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml,
"<Exponent>", "</Exponent>")));
BigInteger privateExponent = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml, "<D>",
"</D>")));
BigInteger primeP = new BigInteger(1, Base64Helper.decode(StringHelper
.GetMiddleString(xml, "<P>", "</P>")));
BigInteger primeQ = new BigInteger(1, Base64Helper.decode(StringHelper
.GetMiddleString(xml, "<Q>", "</Q>")));
BigInteger primeExponentP = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml, "<DP>",
"</DP>")));
BigInteger primeExponentQ = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml, "<DQ>",
"</DQ>")));
BigInteger crtCoefficient = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml,
"<InverseQ>", "</InverseQ>")));
RSAPrivateCrtKeySpec rsaPriKey = new RSAPrivateCrtKeySpec(modulus,
publicExponent, privateExponent, primeP, primeQ,
primeExponentP, primeExponentQ, crtCoefficient);
KeyFactory keyf;
try {
keyf = KeyFactory.getInstance("RSA");
return keyf.generatePrivate(rsaPriKey);
} catch (Exception e) {
return null;
}
}
public static String encodePrivateKeyToXml(PrivateKey key) {
if (!RSAPrivateCrtKey.class.isInstance(key)) {
return null;
}
RSAPrivateCrtKey priKey = (RSAPrivateCrtKey) key;
StringBuilder sb = new StringBuilder();
sb.append("<RSAKeyValue>");
sb.append("<Modulus>")
.append(Base64Helper.encode(priKey.getModulus().toByteArray()))
.append("</Modulus>");
sb.append("<Exponent>")
.append(Base64Helper.encode(priKey.getPublicExponent()
.toByteArray())).append("</Exponent>");
sb.append("<P>")
.append(Base64Helper.encode(priKey.getPrimeP().toByteArray()))
.append("</P>");
sb.append("<Q>")
.append(Base64Helper.encode(priKey.getPrimeQ().toByteArray()))
.append("</Q>");
sb.append("<DP>")
.append(Base64Helper.encode(priKey.getPrimeExponentP()
.toByteArray())).append("</DP>");
sb.append("<DQ>")
.append(Base64Helper.encode(priKey.getPrimeExponentQ()
.toByteArray())).append("</DQ>");
sb.append("<InverseQ>")
.append(Base64Helper.encode(priKey.getCrtCoefficient()
.toByteArray())).append("</InverseQ>");
sb.append("<D>")
.append(Base64Helper.encode(priKey.getPrivateExponent()
.toByteArray())).append("</D>");
sb.append("</RSAKeyValue>");
return sb.toString();
}
// 用公鑰加密
public static byte[] encryptData(byte[] data, PublicKey pubKey) {
try {
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.ENCRYPT_MODE, pubKey);
return cipher.doFinal(data);
} catch (Exception e) {
return null;
}
}
// 用私鑰解密
public static byte[] decryptData(byte[] encryptedData, PrivateKey priKey) {
try {
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.DECRYPT_MODE, priKey);
return cipher.doFinal(encryptedData);
} catch (Exception e) {
return null;
}
}
/**
* 根據指定私鑰對數據進行簽名(默認簽名算法為"SHA1withRSA")
*
* @param data
* 要簽名的數據
* @param priKey
* 私鑰
* @return
*/
public static byte[] signData(byte[] data, PrivateKey priKey) {
return signData(data, priKey, "SHA1withRSA");
}
/**
* 根據指定私鑰和算法對數據進行簽名
*
* @param data
* 要簽名的數據
* @param priKey
* 私鑰
* @param algorithm
* 簽名算法
* @return
*/
public static byte[] signData(byte[] data, PrivateKey priKey,
String algorithm) {
try {
Signature signature = Signature.getInstance(algorithm);
signature.initSign(priKey);
signature.update(data);
return signature.sign();
} catch (Exception ex) {
return null;
}
}
/**
* 用指定的公鑰進行簽名驗證(默認簽名算法為"SHA1withRSA")
*
* @param data
* 數據
* @param sign
* 簽名結果
* @param pubKey
* 公鑰
* @return
*/
public static boolean verifySign(byte[] data, byte[] sign, PublicKey pubKey) {
return verifySign(data, sign, pubKey, "SHA1withRSA");
}
/**
*
* @param data 數據
* @param sign 簽名結果
* @param pubKey 公鑰
* @param algorithm 簽名算法
* @return
*/
public static boolean verifySign(byte[] data, byte[] sign,
PublicKey pubKey, String algorithm) {
try {
Signature signature = Signature.getInstance(algorithm);
signature.initVerify(pubKey);
signature.update(data);
return signature.verify(sign);
} catch (Exception ex) {
return false;
}
}
}
public static void main(String[] args) {
KeyPair kp = RsaHelper.generateRSAKeyPair();
PublicKey pubKey = kp.getPublic();
PrivateKey priKey = kp.getPrivate();
String pubKeyXml = RsaHelper.encodePublicKeyToXml(pubKey);
String priKeyXml = RsaHelper.encodePrivateKeyToXml(priKey);
System.out.println("====公鑰====");
System.out.println(pubKeyXml);
System.out.println("====私鑰====");
System.out.println(priKeyXml);
PublicKey pubKey2 = RsaHelper.decodePublicKeyFromXml(pubKeyXml);
PrivateKey priKey2 = RsaHelper.decodePrivateKeyFromXml(priKeyXml);
System.out.println("====公鑰對比====");
System.out.println(pubKey.toString());
System.out.println("------");
System.out.println(pubKey2.toString());
System.out.println("====私鑰對比====");
System.out.println(priKey.toString());
System.out.println("------");
System.out.println(priKey2.toString());
try {
String pubKeyXml3 = "<RSAKeyValue><Modulus>rHESyuI3ny4MLsqDBalW9ySaodCL0e6Bsrl01Q5G1qm2wjUoGULazZSNqZY+JQNjU92tW3Snk5RPIkv+wDj+uOT9LTUjQImltHnzqMvbt06GipVXDOyBLTa7G/zRIe/CrjyJ+XEYX2xIhpe5ayowl3HHUpZ71jRNioyxaVVZ8S0=</Modulus><Exponent>AQAB</Exponent></RSAKeyValue>";
String priKeyXml3 = "<RSAKeyValue><Modulus>rHESyuI3ny4MLsqDBalW9ySaodCL0e6Bsrl01Q5G1qm2wjUoGULazZSNqZY+JQNjU92tW3Snk5RPIkv+wDj+uOT9LTUjQImltHnzqMvbt06GipVXDOyBLTa7G/zRIe/CrjyJ+XEYX2xIhpe5ayowl3HHUpZ71jRNioyxaVVZ8S0=</Modulus><Exponent>AQAB</Exponent><P>5a7uM+IeY8QMVQl0q88ZTqWbB555l7+366cUIClTN8z2ZXzTnWFCNoQzUrG14FouJFYumFZD12Ni5MkJK6gqSw==</P><Q>wDMhwwO4kz82uSG+FlCBr06fYk2COTg0TofmSp/5OrVqgkBIe7FgpTpVGzGLk0mvOLcy6UZftq//W0Saow6nZw==</Q><DP>FbjDgliiMyE5YVlxlUYSyKNU1BWivj09caXte1UtL5vMubBiewHVtz4tdGamIr+kmX8lDPcrl1Uo5yY0HdLbnQ==</DP><DQ>kIjjJsgxkWnEOUyKqjU4kSDK8x3ehDEkBLpmEFBlGCU9R14YJAyr5RUM0zpbABQ1VK1P9+UYLUYE/hmFQIHQmQ==</DQ><InverseQ>pxQDThwSnUZ4EaNaCPl1ovYypdQUZaZ/Sld1+0n8FEjkmRcGP1R9VMuj1ViPZg3rvm2GeP8Xv1SJqJUVueWiGA==</InverseQ><D>DxBNoPWEAF7IZ6n/KhZx52MGMw6BuFQKdm9m+lml7Iik03BLUXGapYzNlzvtr9QM8D2UMEIPhX/WLdvPpEEWVzGnD7XpLXjGwfu1ZkJRcXPEZEZ2subh5ZBqOWCFWKv5WwgGYWuYDLHfrBlBgSFWR8cZuyqkmMsWl4CiadXqGA0=</D></RSAKeyValue>";
System.out.println((new Date()).toLocaleString() + ": 加載公鑰中。。。");
PublicKey pubKey3 = RsaHelper.decodePublicKeyFromXml(pubKeyXml3);
System.out.println((new Date()).toLocaleString() + ": 加載私鑰中。。。");
PrivateKey priKey3 = RsaHelper.decodePrivateKeyFromXml(priKeyXml3);
String dataStr = "Java與.NET和平共處萬歲!";
byte[] dataByteArray = dataStr.getBytes("utf-8");
System.out.println("data的Base64表示:"
+ Base64Helper.encode(dataByteArray));
System.out.println((new Date()).toLocaleString() + ": 加密中。。。"); // 加密
byte[] encryptedDataByteArray = RsaHelper.encryptData(
dataByteArray, pubKey3);
System.out.println("encryptedData的Base64表示:"
+ Base64Helper.encode(encryptedDataByteArray));
System.out.println((new Date()).toLocaleString() + ": 解密中。。。"); // 解密
// byte[]
byte[] decryptedDataByteArray = RsaHelper.decryptData(
encryptedDataByteArray, priKey3);
System.out.println(new String(decryptedDataByteArray, "utf-8"));// 簽名
System.out.println((new Date()).toLocaleString() + ": 簽名中。。。");
byte[] signDataByteArray = RsaHelper.signData(dataByteArray,
priKey3);
System.out.println("signData的Base64表示:"
+ Base64Helper.encode(signDataByteArray)); // 驗簽
System.out.println((new Date()).toLocaleString() + ": 驗簽中。。。");
boolean isMatch = RsaHelper.verifySign(dataByteArray,
signDataByteArray, pubKey3);
System.out.println("驗簽結果:" + isMatch);
} catch (Exception ex) {
ex.printStackTrace();
}
}
默認情況下,.NET生成的RSA密鑰對可以用XML或字節流來保存,而JAVA中生成的RSA密鑰對只能用字節流來保存。而它們的字節流格式不同,就導致Java中生成的RSA密鑰對不能在.NET中使用,而.NET中生成的密鑰對又不能在Java中使用。而.NET的XML保存方法我覺得比較有通用性,於是就以.NET中RSA密鑰保存的XML格式作為兼容格式,這樣它們就可以通用了。下面是Java代碼:
PS:在Chrome上用博客園的編輯器設置不了代碼折疊,保存後折疊的代碼就打不開了。。。
=============================================
文件:StringHelper.java
字符串操作輔助類
文件:Base64Helper.java
Base64字符串和字節流互轉的輔助類
文件:RsaHelper.java
代碼中主要方法說明:
KeyPair generateRSAKeyPair();//生成密鑰對
String encodePublicKeyToXml(PublicKey key);//將公鑰轉換為XML字符串
PublicKey decodePublicKeyFromXml(String xml);//從XML字符串得到公鑰
String encodePrivateKeyToXml(PrivateKey key);//將私鑰轉換為XML字符串
PrivateKey decodePrivateKeyFromXml(String xml);//從XML字符串得到私鑰
========================================================
StringHelper.java
/*
* To change this template, choose Tools | Templates* and open the template in the editor.
*/
package com.scbeta.helpers;
/**
*
* @author aaa
*/
public class StringHelper {
//數組中是否包括某字符串
public static boolean arrayContainsString(String[] array, String key) {
for (String tmpString : array) {
if (tmpString.equals(key)) {
return true;
}
}
return false;
}
public static String GetLeftString(String source, String strTail) {
return GetLeftString(source, strTail, false);
}
public static String GetLeftString(String source, String strTail, boolean KeepHeadAndTail) {
return GetMiddleString(source, "", strTail, KeepHeadAndTail);
}
public static String GetRightString(String source, String strHead) {
return GetRightString(source, strHead, false);
}
public static String GetRightString(String source, String strHead, boolean KeepHeadAndTail) {
return GetMiddleString(source, strHead, "", KeepHeadAndTail);
}
public static String GetMiddleString(String source, String strHead, String strTail) {
return GetMiddleString(source, strHead, strTail, false);
}
public static String GetMiddleString(String source, String strHead, String strTail, boolean KeepHeadAndTail) {
try {
int indexHead, indexTail;
if (strHead == null || strHead.isEmpty()) {
indexHead = 0;
} else {
indexHead = source.indexOf(strHead);
}
if (strTail == null || strTail.isEmpty()) {
indexTail = source.length();
} else {
indexTail = source.indexOf(strTail, indexHead + strHead.length());
}
if (indexTail < 0) {
indexTail = source.length();
}
String rtnStr = "";
if ((indexHead >= 0) && (indexTail >= 0)) {
if (KeepHeadAndTail) {
rtnStr = source.substring(indexHead, indexTail + strTail.length());
} else {
rtnStr = source.substring(indexHead + strHead.length(), indexTail);
}
}
return rtnStr;
} catch (Exception ex) {
return "";
}
}
}
Base64Helper.java:
package com.scbeta.helpers;import java.io.IOException;
public class Base64Helper {
public static String encode(byte[] byteArray) {
sun.misc.BASE64Encoder base64Encoder = new sun.misc.BASE64Encoder();
return base64Encoder.encode(byteArray);
}
public static byte[] decode(String base64EncodedString) {
sun.misc.BASE64Decoder base64Decoder = new sun.misc.BASE64Decoder();
try {
return base64Decoder.decodeBuffer(base64EncodedString);
} catch (IOException e) {
return null;
}
}
}
RsaHelper.java:
//===================//作者:aaaSoft
//日期:2011年11月30日
//博客:http://www.cnblogs.com/aaaSoft/
//Email:[email protected]
//說明:原創文章,轉載請註明出處並保留作者信息
//===================
package com.scbeta.helpers.security;
import java.math.BigInteger;
import java.security.KeyFactory;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.NoSuchAlgorithmException;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.Signature;
import java.security.interfaces.RSAPrivateCrtKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.RSAPrivateCrtKeySpec;
import java.security.spec.RSAPublicKeySpec;
import javax.crypto.Cipher;
import com.scbeta.helpers.Base64Helper;
import com.scbeta.helpers.StringHelper;
public class RsaHelper {
/**
* 生成RSA密鑰對(默認密鑰長度為1024)
*
* @return
*/
public static KeyPair generateRSAKeyPair() {
return generateRSAKeyPair(1024);
}
/**
* 生成RSA密鑰對
*
* @param keyLength
* 密鑰長度,範圍:512~2048
* @return
*/
public static KeyPair generateRSAKeyPair(int keyLength) {
try {
KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA");
kpg.initialize(keyLength);
return kpg.genKeyPair();
} catch (NoSuchAlgorithmException e) {
return null;
}
}
public static String encodePublicKeyToXml(PublicKey key) {
if (!RSAPublicKey.class.isInstance(key)) {
return null;
}
RSAPublicKey pubKey = (RSAPublicKey) key;
StringBuilder sb = new StringBuilder();
sb.append("<RSAKeyValue>");
sb.append("<Modulus>")
.append(Base64Helper.encode(pubKey.getModulus().toByteArray()))
.append("</Modulus>");
sb.append("<Exponent>")
.append(Base64Helper.encode(pubKey.getPublicExponent()
.toByteArray())).append("</Exponent>");
sb.append("</RSAKeyValue>");
return sb.toString();
}
public static PublicKey decodePublicKeyFromXml(String xml) {
xml = xml.replaceAll("\r", "").replaceAll("\n", "");
BigInteger modulus = new BigInteger(1, Base64Helper.decode(StringHelper
.GetMiddleString(xml, "<Modulus>", "</Modulus>")));
BigInteger publicExponent = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml,
"<Exponent>", "</Exponent>")));
RSAPublicKeySpec rsaPubKey = new RSAPublicKeySpec(modulus,
publicExponent);
KeyFactory keyf;
try {
keyf = KeyFactory.getInstance("RSA");
return keyf.generatePublic(rsaPubKey);
} catch (Exception e) {
return null;
}
}
public static PrivateKey decodePrivateKeyFromXml(String xml) {
xml = xml.replaceAll("\r", "").replaceAll("\n", "");
BigInteger modulus = new BigInteger(1, Base64Helper.decode(StringHelper
.GetMiddleString(xml, "<Modulus>", "</Modulus>")));
BigInteger publicExponent = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml,
"<Exponent>", "</Exponent>")));
BigInteger privateExponent = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml, "<D>",
"</D>")));
BigInteger primeP = new BigInteger(1, Base64Helper.decode(StringHelper
.GetMiddleString(xml, "<P>", "</P>")));
BigInteger primeQ = new BigInteger(1, Base64Helper.decode(StringHelper
.GetMiddleString(xml, "<Q>", "</Q>")));
BigInteger primeExponentP = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml, "<DP>",
"</DP>")));
BigInteger primeExponentQ = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml, "<DQ>",
"</DQ>")));
BigInteger crtCoefficient = new BigInteger(1,
Base64Helper.decode(StringHelper.GetMiddleString(xml,
"<InverseQ>", "</InverseQ>")));
RSAPrivateCrtKeySpec rsaPriKey = new RSAPrivateCrtKeySpec(modulus,
publicExponent, privateExponent, primeP, primeQ,
primeExponentP, primeExponentQ, crtCoefficient);
KeyFactory keyf;
try {
keyf = KeyFactory.getInstance("RSA");
return keyf.generatePrivate(rsaPriKey);
} catch (Exception e) {
return null;
}
}
public static String encodePrivateKeyToXml(PrivateKey key) {
if (!RSAPrivateCrtKey.class.isInstance(key)) {
return null;
}
RSAPrivateCrtKey priKey = (RSAPrivateCrtKey) key;
StringBuilder sb = new StringBuilder();
sb.append("<RSAKeyValue>");
sb.append("<Modulus>")
.append(Base64Helper.encode(priKey.getModulus().toByteArray()))
.append("</Modulus>");
sb.append("<Exponent>")
.append(Base64Helper.encode(priKey.getPublicExponent()
.toByteArray())).append("</Exponent>");
sb.append("<P>")
.append(Base64Helper.encode(priKey.getPrimeP().toByteArray()))
.append("</P>");
sb.append("<Q>")
.append(Base64Helper.encode(priKey.getPrimeQ().toByteArray()))
.append("</Q>");
sb.append("<DP>")
.append(Base64Helper.encode(priKey.getPrimeExponentP()
.toByteArray())).append("</DP>");
sb.append("<DQ>")
.append(Base64Helper.encode(priKey.getPrimeExponentQ()
.toByteArray())).append("</DQ>");
sb.append("<InverseQ>")
.append(Base64Helper.encode(priKey.getCrtCoefficient()
.toByteArray())).append("</InverseQ>");
sb.append("<D>")
.append(Base64Helper.encode(priKey.getPrivateExponent()
.toByteArray())).append("</D>");
sb.append("</RSAKeyValue>");
return sb.toString();
}
// 用公鑰加密
public static byte[] encryptData(byte[] data, PublicKey pubKey) {
try {
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.ENCRYPT_MODE, pubKey);
return cipher.doFinal(data);
} catch (Exception e) {
return null;
}
}
// 用私鑰解密
public static byte[] decryptData(byte[] encryptedData, PrivateKey priKey) {
try {
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.DECRYPT_MODE, priKey);
return cipher.doFinal(encryptedData);
} catch (Exception e) {
return null;
}
}
/**
* 根據指定私鑰對數據進行簽名(默認簽名算法為"SHA1withRSA")
*
* @param data
* 要簽名的數據
* @param priKey
* 私鑰
* @return
*/
public static byte[] signData(byte[] data, PrivateKey priKey) {
return signData(data, priKey, "SHA1withRSA");
}
/**
* 根據指定私鑰和算法對數據進行簽名
*
* @param data
* 要簽名的數據
* @param priKey
* 私鑰
* @param algorithm
* 簽名算法
* @return
*/
public static byte[] signData(byte[] data, PrivateKey priKey,
String algorithm) {
try {
Signature signature = Signature.getInstance(algorithm);
signature.initSign(priKey);
signature.update(data);
return signature.sign();
} catch (Exception ex) {
return null;
}
}
/**
* 用指定的公鑰進行簽名驗證(默認簽名算法為"SHA1withRSA")
*
* @param data
* 數據
* @param sign
* 簽名結果
* @param pubKey
* 公鑰
* @return
*/
public static boolean verifySign(byte[] data, byte[] sign, PublicKey pubKey) {
return verifySign(data, sign, pubKey, "SHA1withRSA");
}
/**
*
* @param data 數據
* @param sign 簽名結果
* @param pubKey 公鑰
* @param algorithm 簽名算法
* @return
*/
public static boolean verifySign(byte[] data, byte[] sign,
PublicKey pubKey, String algorithm) {
try {
Signature signature = Signature.getInstance(algorithm);
signature.initVerify(pubKey);
signature.update(data);
return signature.verify(sign);
} catch (Exception ex) {
return false;
}
}
}
==============================
下面是測試代碼:
public static void main(String[] args) {KeyPair kp = RsaHelper.generateRSAKeyPair();
PublicKey pubKey = kp.getPublic();
PrivateKey priKey = kp.getPrivate();
String pubKeyXml = RsaHelper.encodePublicKeyToXml(pubKey);
String priKeyXml = RsaHelper.encodePrivateKeyToXml(priKey);
System.out.println("====公鑰====");
System.out.println(pubKeyXml);
System.out.println("====私鑰====");
System.out.println(priKeyXml);
PublicKey pubKey2 = RsaHelper.decodePublicKeyFromXml(pubKeyXml);
PrivateKey priKey2 = RsaHelper.decodePrivateKeyFromXml(priKeyXml);
System.out.println("====公鑰對比====");
System.out.println(pubKey.toString());
System.out.println("------");
System.out.println(pubKey2.toString());
System.out.println("====私鑰對比====");
System.out.println(priKey.toString());
System.out.println("------");
System.out.println(priKey2.toString());
try {
String pubKeyXml3 = "<RSAKeyValue><Modulus>rHESyuI3ny4MLsqDBalW9ySaodCL0e6Bsrl01Q5G1qm2wjUoGULazZSNqZY+JQNjU92tW3Snk5RPIkv+wDj+uOT9LTUjQImltHnzqMvbt06GipVXDOyBLTa7G/zRIe/CrjyJ+XEYX2xIhpe5ayowl3HHUpZ71jRNioyxaVVZ8S0=</Modulus><Exponent>AQAB</Exponent></RSAKeyValue>";
String priKeyXml3 = "<RSAKeyValue><Modulus>rHESyuI3ny4MLsqDBalW9ySaodCL0e6Bsrl01Q5G1qm2wjUoGULazZSNqZY+JQNjU92tW3Snk5RPIkv+wDj+uOT9LTUjQImltHnzqMvbt06GipVXDOyBLTa7G/zRIe/CrjyJ+XEYX2xIhpe5ayowl3HHUpZ71jRNioyxaVVZ8S0=</Modulus><Exponent>AQAB</Exponent><P>5a7uM+IeY8QMVQl0q88ZTqWbB555l7+366cUIClTN8z2ZXzTnWFCNoQzUrG14FouJFYumFZD12Ni5MkJK6gqSw==</P><Q>wDMhwwO4kz82uSG+FlCBr06fYk2COTg0TofmSp/5OrVqgkBIe7FgpTpVGzGLk0mvOLcy6UZftq//W0Saow6nZw==</Q><DP>FbjDgliiMyE5YVlxlUYSyKNU1BWivj09caXte1UtL5vMubBiewHVtz4tdGamIr+kmX8lDPcrl1Uo5yY0HdLbnQ==</DP><DQ>kIjjJsgxkWnEOUyKqjU4kSDK8x3ehDEkBLpmEFBlGCU9R14YJAyr5RUM0zpbABQ1VK1P9+UYLUYE/hmFQIHQmQ==</DQ><InverseQ>pxQDThwSnUZ4EaNaCPl1ovYypdQUZaZ/Sld1+0n8FEjkmRcGP1R9VMuj1ViPZg3rvm2GeP8Xv1SJqJUVueWiGA==</InverseQ><D>DxBNoPWEAF7IZ6n/KhZx52MGMw6BuFQKdm9m+lml7Iik03BLUXGapYzNlzvtr9QM8D2UMEIPhX/WLdvPpEEWVzGnD7XpLXjGwfu1ZkJRcXPEZEZ2subh5ZBqOWCFWKv5WwgGYWuYDLHfrBlBgSFWR8cZuyqkmMsWl4CiadXqGA0=</D></RSAKeyValue>";
System.out.println((new Date()).toLocaleString() + ": 加載公鑰中。。。");
PublicKey pubKey3 = RsaHelper.decodePublicKeyFromXml(pubKeyXml3);
System.out.println((new Date()).toLocaleString() + ": 加載私鑰中。。。");
PrivateKey priKey3 = RsaHelper.decodePrivateKeyFromXml(priKeyXml3);
String dataStr = "Java與.NET和平共處萬歲!";
byte[] dataByteArray = dataStr.getBytes("utf-8");
System.out.println("data的Base64表示:"
+ Base64Helper.encode(dataByteArray));
System.out.println((new Date()).toLocaleString() + ": 加密中。。。"); // 加密
byte[] encryptedDataByteArray = RsaHelper.encryptData(
dataByteArray, pubKey3);
System.out.println("encryptedData的Base64表示:"
+ Base64Helper.encode(encryptedDataByteArray));
System.out.println((new Date()).toLocaleString() + ": 解密中。。。"); // 解密
// byte[]
byte[] decryptedDataByteArray = RsaHelper.decryptData(
encryptedDataByteArray, priKey3);
System.out.println(new String(decryptedDataByteArray, "utf-8"));// 簽名
System.out.println((new Date()).toLocaleString() + ": 簽名中。。。");
byte[] signDataByteArray = RsaHelper.signData(dataByteArray,
priKey3);
System.out.println("signData的Base64表示:"
+ Base64Helper.encode(signDataByteArray)); // 驗簽
System.out.println((new Date()).toLocaleString() + ": 驗簽中。。。");
boolean isMatch = RsaHelper.verifySign(dataByteArray,
signDataByteArray, pubKey3);
System.out.println("驗簽結果:" + isMatch);
} catch (Exception ex) {
ex.printStackTrace();
}
}
最後,補充一段C#產生密鑰對的代碼片段如下:
using System.Security.Cryptography; //密鑰位數 int keySize = 1024; //產生密鑰對 RSACryptoServiceProvider rSACryptoServiceProvider = new RSACryptoServiceProvider(keySize); //得到公鑰 String publicKey = rSACryptoServiceProvider.ToXmlString(false); //得到私鑰 String privateKey = rSACryptoServiceProvider.ToXmlString(true);
Java與.NET兼容的RSA密鑰持久化方法