Java中常用加密/解密方法详解
安全问题已经成为一个越来越重要的问题,在Java中如何对重要数据进行加密解密是本文的主要内容。
一、常用的加密/解密算法
1.Base64
严格来说Base64并不是一种加密/解密算法,而是一种编码方式。Base64不生成密钥,通过Base64编码后的密文就可以直接“翻译”为明文,但是可以通过向明文中添加混淆字符来达到加密的效果。
2.DES
DES是一种基于56位密钥的对称算法,1976年被美国联邦政府的国家标准局确定为联邦资料处理标准(FIPS),随后在国际上广泛流传开来。现在DES已经不是一种安全的加密算法,已被公开破解,现在DES已经被高级加密标准(AES)所代替。
3.3DES
3DES是DES的一种派生算法,主要提升了DES的一些实用所需的安全性。
4.AES
AES是现在对称加密算法中最流行的算法之一。
二、实现所需的一些库
为了实现上述的算法,我们可以实用JDK自带的实现,也可以使用一些开源的第三方库,例如BouncyCastle(https://www.bouncycastle.org/)和comnonscodec(https://commons.apache.org/proper/commons-codec/)。
三、具体实现
1.Base64
packagecom.tancky.security; importjava.io.IOException; importsun.misc.BASE64Decoder; importsun.misc.BASE64Encoder; publicclassBase64Demo{ privatestaticStringsrc="TestBase64"; publicstaticvoidmain(String[]args){ Base64Demo.jdkBase64(); Base64Demo.commonsCodecBase64(); Base64Demo.bouncyCastleBase64(); } //使用JDK的base64实现, publicstaticvoidjdkBase64(){ BASE64Encoderencoder=newBASE64Encoder(); Stringencode=encoder.encode(Base64Demo.src.getBytes()); System.out.println("encode:"+encode); BASE64Decoderdecoder=newBASE64Decoder(); try{ Stringdecode=newString(decoder.decodeBuffer(encode)); System.out.println("decode:"+decode); }catch(IOExceptione){ e.printStackTrace(); } } //使用apache的commonsCodec实现 publicstaticvoidcommonsCodecBase64(){ byte[]encodeBytes=org.apache.commons.codec.binary.Base64.encodeBase64(Base64Demo.src.getBytes()); Stringencode=newString(encodeBytes); System.out.println("encode:"+encode); byte[]decodeBytes=org.apache.commons.codec.binary.Base64.decodeBase64(encode); Stringdecode=newString(decodeBytes); System.out.println("decode:"+decode); } //使用bouncyCastlede实现 publicstaticvoidbouncyCastleBase64(){ byte[]encodeBytes=org.bouncycastle.util.encoders.Base64.encode(Base64Demo.src.getBytes()); Stringencode=newString(encodeBytes); System.out.println("encode:"+encode); byte[]decodeBytes=org.bouncycastle.util.encoders.Base64.decode(encode); Stringdecode=newString(decodeBytes); System.out.println("decode:"+decode); } }
2.DES
packagecom.tancky.security; importjava.security.InvalidKeyException; importjava.security.Key; importjava.security.NoSuchAlgorithmException; importjava.security.NoSuchProviderException; importjava.security.Security; importjava.security.spec.InvalidKeySpecException; importjavax.crypto.BadPaddingException; importjavax.crypto.Cipher; importjavax.crypto.IllegalBlockSizeException; importjavax.crypto.KeyGenerator; importjavax.crypto.NoSuchPaddingException; importjavax.crypto.SecretKey; importjavax.crypto.SecretKeyFactory; importjavax.crypto.spec.DESKeySpec; importorg.bouncycastle.jce.provider.BouncyCastleProvider; importorg.bouncycastle.util.encoders.Hex; publicclassDESDemo{ privatestaticStringsrc="TestDES"; publicstaticvoidjdkDES(){ try{ //生成密钥Key KeyGeneratorkeyGenerator=KeyGenerator.getInstance("DES"); keyGenerator.init(56); SecretKeysecretKey=keyGenerator.generateKey(); byte[]bytesKey=secretKey.getEncoded(); //KEY转换 DESKeySpecdeSedeKeySpec=newDESKeySpec(bytesKey); SecretKeyFactoryfactory=SecretKeyFactory.getInstance("DES"); KeyconvertSecretKey=factory.generateSecret(deSedeKeySpec); //加密 Ciphercipher=Cipher.getInstance("DES/ECB/PKCS5Padding"); cipher.init(Cipher.ENCRYPT_MODE,convertSecretKey); byte[]encodeResult=cipher.doFinal(DESDemo.src.getBytes()); System.out.println("DESEncode:"+Hex.toHexString(encodeResult)); //解密 cipher.init(Cipher.DECRYPT_MODE,convertSecretKey); byte[]DecodeResult=cipher.doFinal(encodeResult); System.out.println("DESDncode:"+newString(DecodeResult)); }catch(NoSuchAlgorithmExceptione){ e.printStackTrace(); }catch(InvalidKeyExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(InvalidKeySpecExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(NoSuchPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(IllegalBlockSizeExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(BadPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); } } publicstaticvoidbcDES(){ try{ //使用BouncyCastle的DES加密 Security.addProvider(newBouncyCastleProvider()); //生成密钥Key KeyGeneratorkeyGenerator=KeyGenerator.getInstance("DES","BC"); keyGenerator.init(56); SecretKeysecretKey=keyGenerator.generateKey(); byte[]bytesKey=secretKey.getEncoded(); //KEY转换 DESKeySpecdeSedeKeySpec=newDESKeySpec(bytesKey); SecretKeyFactoryfactory=SecretKeyFactory.getInstance("DES"); KeyconvertSecretKey=factory.generateSecret(deSedeKeySpec); //加密 Ciphercipher=Cipher.getInstance("DES/ECB/PKCS5Padding"); cipher.init(Cipher.ENCRYPT_MODE,convertSecretKey); byte[]encodeResult=cipher.doFinal(DESDemo.src.getBytes()); System.out.println("DESEncode:"+Hex.toHexString(encodeResult)); //解密 cipher.init(Cipher.DECRYPT_MODE,convertSecretKey); byte[]DecodeResult=cipher.doFinal(encodeResult); System.out.println("DESDncode:"+newString(DecodeResult)); }catch(NoSuchAlgorithmExceptione){ e.printStackTrace(); }catch(InvalidKeyExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(InvalidKeySpecExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(NoSuchPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(IllegalBlockSizeExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(BadPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(NoSuchProviderExceptione){ //TODO自动生成的catch块 e.printStackTrace(); } } publicstaticvoidmain(String[]args){ DESDemo.jdkDES(); DESDemo.bcDES(); } }
3.3DES
packagecom.tancky.security; importjava.security.InvalidKeyException; importjava.security.Key; importjava.security.NoSuchAlgorithmException; importjava.security.NoSuchProviderException; importjava.security.Security; importjava.security.spec.InvalidKeySpecException; importjavax.crypto.BadPaddingException; importjavax.crypto.Cipher; importjavax.crypto.IllegalBlockSizeException; importjavax.crypto.KeyGenerator; importjavax.crypto.NoSuchPaddingException; importjavax.crypto.SecretKey; importjavax.crypto.SecretKeyFactory; importjavax.crypto.spec.DESedeKeySpec; importorg.bouncycastle.jce.provider.BouncyCastleProvider; importorg.bouncycastle.util.encoders.Hex; publicclassTripleDESDemo{ privatestaticStringsrc="TestTripleDES"; publicstaticvoidjdkTripleDES(){ try{ //生成密钥Key KeyGeneratorkeyGenerator=KeyGenerator.getInstance("DESede"); keyGenerator.init(168); SecretKeysecretKey=keyGenerator.generateKey(); byte[]bytesKey=secretKey.getEncoded(); //KEY转换 DESedeKeySpecdeSedeKeySpec=newDESedeKeySpec(bytesKey); SecretKeyFactoryfactory=SecretKeyFactory.getInstance("DESede"); KeyconvertSecretKey=factory.generateSecret(deSedeKeySpec); //加密 Ciphercipher=Cipher.getInstance("DESede/ECB/PKCS5Padding"); cipher.init(Cipher.ENCRYPT_MODE,convertSecretKey); byte[]encodeResult=cipher.doFinal(TripleDESDemo.src.getBytes()); System.out.println("TripleDESEncode:"+Hex.toHexString(encodeResult)); //解密 cipher.init(Cipher.DECRYPT_MODE,convertSecretKey); byte[]DecodeResult=cipher.doFinal(encodeResult); System.out.println("TripleDESDncode:"+newString(DecodeResult)); }catch(NoSuchAlgorithmExceptione){ e.printStackTrace(); }catch(InvalidKeyExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(InvalidKeySpecExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(NoSuchPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(IllegalBlockSizeExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(BadPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); } } publicstaticvoidbcTripleDES(){ try{ Security.addProvider(newBouncyCastleProvider()); //生成密钥Key KeyGeneratorkeyGenerator=KeyGenerator.getInstance("DESede","BC"); keyGenerator.getProvider(); keyGenerator.init(168); SecretKeysecretKey=keyGenerator.generateKey(); byte[]bytesKey=secretKey.getEncoded(); //KEY转换 DESedeKeySpecdeSedeKeySpec=newDESedeKeySpec(bytesKey); SecretKeyFactoryfactory=SecretKeyFactory.getInstance("DESede"); KeyconvertSecretKey=factory.generateSecret(deSedeKeySpec); //加密 Ciphercipher=Cipher.getInstance("DESede/ECB/PKCS5Padding"); cipher.init(Cipher.ENCRYPT_MODE,convertSecretKey); byte[]encodeResult=cipher.doFinal(TripleDESDemo.src.getBytes()); System.out.println("TripleDESEncode:"+Hex.toHexString(encodeResult)); //解密 cipher.init(Cipher.DECRYPT_MODE,convertSecretKey); byte[]DecodeResult=cipher.doFinal(encodeResult); System.out.println("TripleDESDncode:"+newString(DecodeResult)); }catch(NoSuchAlgorithmExceptione){ e.printStackTrace(); }catch(InvalidKeyExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(InvalidKeySpecExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(NoSuchPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(IllegalBlockSizeExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(BadPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(NoSuchProviderExceptione){ //TODO自动生成的catch块 e.printStackTrace(); } } publicstaticvoidmain(String[]args){ jdkTripleDES(); bcTripleDES(); } }
4.AES
packagecom.tancky.security; importjava.security.InvalidKeyException; importjava.security.Key; importjava.security.NoSuchAlgorithmException; importjava.security.NoSuchProviderException; importjava.security.SecureRandom; importjava.security.Security; importjavax.crypto.BadPaddingException; importjavax.crypto.Cipher; importjavax.crypto.IllegalBlockSizeException; importjavax.crypto.KeyGenerator; importjavax.crypto.NoSuchPaddingException; importjavax.crypto.SecretKey; importjavax.crypto.spec.SecretKeySpec; importorg.bouncycastle.jce.provider.BouncyCastleProvider; importorg.bouncycastle.util.encoders.Hex; publicclassAESDemo{ privatestaticStringsrc="TestAES"; publicstaticvoidjdkAES(){ try{ //生成Key KeyGeneratorkeyGenerator=KeyGenerator.getInstance("AES"); keyGenerator.init(128); //keyGenerator.init(128,newSecureRandom("seedseedseed".getBytes())); //使用上面这种初始化方法可以特定种子来生成密钥,这样加密后的密文是唯一固定的。 SecretKeysecretKey=keyGenerator.generateKey(); byte[]keyBytes=secretKey.getEncoded(); //Key转换 Keykey=newSecretKeySpec(keyBytes,"AES"); //加密 Ciphercipher=Cipher.getInstance("AES/ECB/PKCS5Padding"); cipher.init(Cipher.ENCRYPT_MODE,key); byte[]encodeResult=cipher.doFinal(AESDemo.src.getBytes()); System.out.println("AESencode:"+Hex.toHexString(encodeResult)); //解密 cipher.init(Cipher.DECRYPT_MODE,key); byte[]decodeResult=cipher.doFinal(encodeResult); System.out.println("AESdecode:"+newString(decodeResult)); }catch(NoSuchAlgorithmExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(NoSuchPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(InvalidKeyExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(IllegalBlockSizeExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(BadPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); } } publicstaticvoidbcAES(){ try{ //使用BouncyCastle的DES加密 Security.addProvider(newBouncyCastleProvider()); //生成Key KeyGeneratorkeyGenerator=KeyGenerator.getInstance("AES","BC"); keyGenerator.getProvider(); keyGenerator.init(128); SecretKeysecretKey=keyGenerator.generateKey(); byte[]keyBytes=secretKey.getEncoded(); //Key转换 Keykey=newSecretKeySpec(keyBytes,"AES"); //加密 Ciphercipher=Cipher.getInstance("AES/ECB/PKCS5Padding"); cipher.init(Cipher.ENCRYPT_MODE,key); byte[]encodeResult=cipher.doFinal(AESDemo.src.getBytes()); System.out.println("AESencode:"+Hex.toHexString(encodeResult)); //解密 cipher.init(Cipher.DECRYPT_MODE,key); byte[]decodeResult=cipher.doFinal(encodeResult); System.out.println("AESdecode:"+newString(decodeResult)); }catch(NoSuchAlgorithmExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(NoSuchPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(InvalidKeyExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(IllegalBlockSizeExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(BadPaddingExceptione){ //TODO自动生成的catch块 e.printStackTrace(); }catch(NoSuchProviderExceptione){ //TODO自动生成的catch块 e.printStackTrace(); } } publicstaticvoidmain(String[]args){ jdkAES(); bcAES(); } }
以上就是本文的全部内容,希望本文的内容对大家的学习或者工作能带来一定的帮助,同时也希望多多支持毛票票!