9.1、IDEA
特点:
- 先于AES出来取代DES
- 安全性极高
- 常用于电子邮件加密算法
9.2、实现方式
- Bouncy Castle(BC,工作模式只有ECB,密钥长度为128位)
9.2.1、基于BC实现的IDEA算法
package com.util.idea;
import java.io.UnsupportedEncodingException;
import java.security.InvalidAlgorithmParameterException;
import java.security.InvalidKeyException;
import java.security.Key;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.Security;
import java.security.spec.InvalidKeySpecException;
import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.KeyGenerator;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;
import org.apache.commons.codec.binary.Base64;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
/**
* 基于BC的IDEA算法,工作模式只有ECB
*/
public class IDEABC {
private static final String ENCODING = "UTF-8";
private static final String KEY_ALGORITHM = "IDEA";//产生密钥的算法
private static final String CIPHER_ALGORITHM = "IDEA/ECB/PKCS5Padding";//加解密算法 格式:算法/工作模式/填充模式
/**
* 产生密钥
*/
public static byte[] getKey() throws NoSuchAlgorithmException{
Security.addProvider(new BouncyCastleProvider());//在BC中用,JDK下去除
KeyGenerator keyGenerator = KeyGenerator.getInstance(KEY_ALGORITHM);
keyGenerator.init(128);//初始化密钥长度,128
SecretKey key =keyGenerator.generateKey();//产生密钥
return key.getEncoded();
}
/**
* 还原密钥:二进制字节数组转换为Java对象
*/
public static Key toKey(byte[] keyByte){
return new SecretKeySpec(keyByte, KEY_ALGORITHM);
}
/**
* IDEA加密
* @param data 带加密数据
* @param keyByte 密钥
*/
public static byte[] encrypt(String data, byte[] keyByte) throws NoSuchAlgorithmException,
NoSuchProviderException,
NoSuchPaddingException,
InvalidKeyException,
IllegalBlockSizeException,
BadPaddingException,
UnsupportedEncodingException {
Key key = toKey(keyByte);//还原密钥
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM,"BC");//BC下用
cipher.init(Cipher.ENCRYPT_MODE, key);//设置加密模式并且初始化key
return cipher.doFinal(data.getBytes(ENCODING));
}
/**
* IDEA加密,并转为16进制字符串或Base64编码字符串
*/
public static String encryptIDEAHex(String data, byte[] keyByte) throws NoSuchAlgorithmException,
NoSuchProviderException,
NoSuchPaddingException,
InvalidKeyException,
IllegalBlockSizeException,
BadPaddingException,
UnsupportedEncodingException {
byte[] encodedByte = encrypt(data, keyByte);
//return new String(Hex.encode(encodedByte));//借助BC
//return new String(org.apache.commons.codec.binary.Hex.encodeHexString(encodedByte));//借助CC
return Base64.encodeBase64String(encodedByte);//借助CC的Base64编码
}
/**
* IDEA解密
* @param data 待解密数据为字节数组
* @param keyByte 密钥
*/
public static byte[] decrypt(byte[] data, byte[] keyByte) throws NoSuchAlgorithmException,
NoSuchProviderException,
NoSuchPaddingException,
InvalidKeyException,
IllegalBlockSizeException,
BadPaddingException {
Key key = toKey(keyByte);//还原密钥
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM,"BC");//BC下用
cipher.init(Cipher.DECRYPT_MODE, key);
return cipher.doFinal(data);
}
/**
* IDEA解密
* @param data 待解密数据为字符串
* @param keyByte 密钥
*/
public static byte[] decrypt(String data, byte[] keyByte) throws NoSuchAlgorithmException,
NoSuchProviderException,
NoSuchPaddingException,
InvalidKeyException,
IllegalBlockSizeException,
BadPaddingException {
Key key = toKey(keyByte);//还原密钥
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM,"BC");//BC下用
cipher.init(Cipher.DECRYPT_MODE, key);
return cipher.doFinal(Base64.decodeBase64(data));//注意data不可以直接采用data.getByte()方法转化为字节数组,否则会抛异常
}
/**
* 测试
*/
public static void main(String[] args) throws NoSuchAlgorithmException,
InvalidKeyException,
InvalidKeySpecException,
NoSuchPaddingException,
IllegalBlockSizeException,
BadPaddingException,
UnsupportedEncodingException,
NoSuchProviderException,
InvalidAlgorithmParameterException {
String data = "找一个好姑娘做老婆是我的梦 想!";
/*************测试encrypt()、decrypt()**************/
System.out.println("原文-->"+data);
byte[] keyByte = IDEABC.getKey();
System.out.println("密钥-->"+Base64.encodeBase64String(keyByte));//这里将二进制的密钥使用base64加密保存,这也是在实际中使用的方式
byte[] encodedByte = IDEABC.encrypt(data, keyByte);
System.out.println("加密后-->"+encodedByte);
byte[] encodedByte2 = IDEABC.encrypt(data, keyByte);
System.out.println("加密后-->"+encodedByte2);
byte[] decodedByte = IDEABC.decrypt(encodedByte, keyByte);
System.out.println("解密后-->"+decodedByte);
for(int i=0;i<encodedByte.length;i++){
System.out.println(encodedByte[i]==encodedByte2[i]);
}
/*************测试encryptIDEAHex()、decrypt()**************/
System.out.println("原文-->"+data);
byte[] keyByte3 = IDEABC.getKey();
System.out.println("密钥-->"+Base64.encodeBase64String(keyByte3));//这里将二进制的密钥使用base64加密保存,这也是在实际中使用的方式
String encodedStr = IDEABC.encryptIDEAHex(data, keyByte3);
System.out.println("加密后-->"+encodedStr);
String encodedByte4 = IDEABC.encryptIDEAHex(data, keyByte3);
System.out.println("加密后-->"+encodedByte4);
byte[] decodedByte3 = IDEABC.decrypt(Base64.decodeBase64(encodedStr), keyByte3);
System.out.println("解密Byte[]后-->"+decodedByte3);
byte[] decodedByte4 = IDEABC.decrypt(encodedStr, keyByte3);
System.out.println("解密String后-->"+decodedByte4);
}
}
package com.util.idea;
import java.io.UnsupportedEncodingException;
import java.security.InvalidAlgorithmParameterException;
import java.security.InvalidKeyException;
import java.security.Key;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.Security;
import java.security.spec.InvalidKeySpecException;
import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.KeyGenerator;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;
import org.apache.commons.codec.binary.Base64;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
/**
* 基于BC的IDEA算法,工作模式只有ECB
*/
public class IDEABC {
private static final String ENCODING = "UTF-8";
private static final String KEY_ALGORITHM = "IDEA";//产生密钥的算法
private static final String CIPHER_ALGORITHM = "IDEA/ECB/PKCS5Padding";//加解密算法 格式:算法/工作模式/填充模式
/**
* 产生密钥
*/
public static byte[] getKey() throws NoSuchAlgorithmException{
Security.addProvider(new BouncyCastleProvider());//在BC中用,JDK下去除
KeyGenerator keyGenerator = KeyGenerator.getInstance(KEY_ALGORITHM);
keyGenerator.init(128);//初始化密钥长度,128
SecretKey key =keyGenerator.generateKey();//产生密钥
return key.getEncoded();
}
/**
* 还原密钥:二进制字节数组转换为Java对象
*/
public static Key toKey(byte[] keyByte){
return new SecretKeySpec(keyByte, KEY_ALGORITHM);
}
/**
* IDEA加密
* @param data 带加密数据
* @param keyByte 密钥
*/
public static byte[] encrypt(String data, byte[] keyByte) throws NoSuchAlgorithmException,
NoSuchProviderException,
NoSuchPaddingException,
InvalidKeyException,
IllegalBlockSizeException,
BadPaddingException,
UnsupportedEncodingException {
Key key = toKey(keyByte);//还原密钥
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM,"BC");//BC下用
cipher.init(Cipher.ENCRYPT_MODE, key);//设置加密模式并且初始化key
return cipher.doFinal(data.getBytes(ENCODING));
}
/**
* IDEA加密,并转为16进制字符串或Base64编码字符串
*/
public static String encryptIDEAHex(String data, byte[] keyByte) throws NoSuchAlgorithmException,
NoSuchProviderException,
NoSuchPaddingException,
InvalidKeyException,
IllegalBlockSizeException,
BadPaddingException,
UnsupportedEncodingException {
byte[] encodedByte = encrypt(data, keyByte);
//return new String(Hex.encode(encodedByte));//借助BC
//return new String(org.apache.commons.codec.binary.Hex.encodeHexString(encodedByte));//借助CC
return Base64.encodeBase64String(encodedByte);//借助CC的Base64编码
}
/**
* IDEA解密
* @param data 待解密数据为字节数组
* @param keyByte 密钥
*/
public static byte[] decrypt(byte[] data, byte[] keyByte) throws NoSuchAlgorithmException,
NoSuchProviderException,
NoSuchPaddingException,
InvalidKeyException,
IllegalBlockSizeException,
BadPaddingException {
Key key = toKey(keyByte);//还原密钥
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM,"BC");//BC下用
cipher.init(Cipher.DECRYPT_MODE, key);
return cipher.doFinal(data);
}
/**
* IDEA解密
* @param data 待解密数据为字符串
* @param keyByte 密钥
*/
public static byte[] decrypt(String data, byte[] keyByte) throws NoSuchAlgorithmException,
NoSuchProviderException,
NoSuchPaddingException,
InvalidKeyException,
IllegalBlockSizeException,
BadPaddingException {
Key key = toKey(keyByte);//还原密钥
Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM,"BC");//BC下用
cipher.init(Cipher.DECRYPT_MODE, key);
return cipher.doFinal(Base64.decodeBase64(data));//注意data不可以直接采用data.getByte()方法转化为字节数组,否则会抛异常
}
/**
* 测试
*/
public static void main(String[] args) throws NoSuchAlgorithmException,
InvalidKeyException,
InvalidKeySpecException,
NoSuchPaddingException,
IllegalBlockSizeException,
BadPaddingException,
UnsupportedEncodingException,
NoSuchProviderException,
InvalidAlgorithmParameterException {
String data = "找一个好姑娘做老婆是我的梦 想!";
/*************测试encrypt()、decrypt()**************/
System.out.println("原文-->"+data);
byte[] keyByte = IDEABC.getKey();
System.out.println("密钥-->"+Base64.encodeBase64String(keyByte));//这里将二进制的密钥使用base64加密保存,这也是在实际中使用的方式
byte[] encodedByte = IDEABC.encrypt(data, keyByte);
System.out.println("加密后-->"+encodedByte);
byte[] encodedByte2 = IDEABC.encrypt(data, keyByte);
System.out.println("加密后-->"+encodedByte2);
byte[] decodedByte = IDEABC.decrypt(encodedByte, keyByte);
System.out.println("解密后-->"+decodedByte);
for(int i=0;i<encodedByte.length;i++){
System.out.println(encodedByte[i]==encodedByte2[i]);
}
/*************测试encryptIDEAHex()、decrypt()**************/
System.out.println("原文-->"+data);
byte[] keyByte3 = IDEABC.getKey();
System.out.println("密钥-->"+Base64.encodeBase64String(keyByte3));//这里将二进制的密钥使用base64加密保存,这也是在实际中使用的方式
String encodedStr = IDEABC.encryptIDEAHex(data, keyByte3);
System.out.println("加密后-->"+encodedStr);
String encodedByte4 = IDEABC.encryptIDEAHex(data, keyByte3);
System.out.println("加密后-->"+encodedByte4);
byte[] decodedByte3 = IDEABC.decrypt(Base64.decodeBase64(encodedStr), keyByte3);
System.out.println("解密Byte[]后-->"+decodedByte3);
byte[] decodedByte4 = IDEABC.decrypt(encodedStr, keyByte3);
System.out.println("解密String后-->"+decodedByte4);
}
}
注意:
- 与基于BC实现的AES算法代码基本一样
本文章为转载内容,我们尊重原作者对文章享有的著作权。如有内容错误或侵权问题,欢迎原作者联系我们进行内容更正或删除文章。
