|
|
@@ -0,0 +1,407 @@
|
|
|
+package org.bfkj.utils;
|
|
|
+
|
|
|
+
|
|
|
+import javax.crypto.Cipher;
|
|
|
+import javax.crypto.NoSuchPaddingException;
|
|
|
+import javax.crypto.SecretKey;
|
|
|
+import javax.crypto.SecretKeyFactory;
|
|
|
+import javax.crypto.spec.DESKeySpec;
|
|
|
+import javax.crypto.spec.DESedeKeySpec;
|
|
|
+import javax.crypto.spec.IvParameterSpec;
|
|
|
+import javax.crypto.spec.SecretKeySpec;
|
|
|
+import java.io.UnsupportedEncodingException;
|
|
|
+import java.nio.charset.StandardCharsets;
|
|
|
+import java.security.*;
|
|
|
+import java.security.spec.InvalidKeySpecException;
|
|
|
+import java.security.spec.PKCS8EncodedKeySpec;
|
|
|
+import java.security.spec.X509EncodedKeySpec;
|
|
|
+import java.util.Base64;
|
|
|
+
|
|
|
+public class DataEncryption {
|
|
|
+
|
|
|
+ private static String iv = "12345678";
|
|
|
+
|
|
|
+ /**
|
|
|
+ * 对给定的字符串进行加密操作
|
|
|
+ *
|
|
|
+ * @param source 原始字符串
|
|
|
+ * @param type 加密类型(BASE64、DES、3DES、AES、)
|
|
|
+ * @param key 密钥(用于DES、3DES、AES)
|
|
|
+ * @return 加密后的字符串
|
|
|
+ * @throws Exception 加密异常
|
|
|
+ */
|
|
|
+ public static String encrypt(String source, String type, String key) throws Exception {
|
|
|
+ switch (type.toUpperCase()) {
|
|
|
+ case "BASE64" -> {
|
|
|
+ return encryptBase64(source);
|
|
|
+ }
|
|
|
+ case "DES" -> {
|
|
|
+ return encryptDES(source, key);
|
|
|
+
|
|
|
+ }
|
|
|
+ case "3DES" -> {
|
|
|
+ return encrypt3DES(source, key);
|
|
|
+
|
|
|
+ }
|
|
|
+ case "AES" -> {
|
|
|
+ return encryptAES(source, key);
|
|
|
+
|
|
|
+ }
|
|
|
+ default -> {
|
|
|
+ return null;
|
|
|
+ }
|
|
|
+ }
|
|
|
+ }
|
|
|
+
|
|
|
+ /**
|
|
|
+ * 对给定的字符串进行解密操作
|
|
|
+ *
|
|
|
+ * @param source 加密后的字符串
|
|
|
+ * @param type 解密类型(BASE64、DES、3DES、AES、RSA)
|
|
|
+ * @param key 密钥(用于DES、3DES、AES、RSA加密)
|
|
|
+ * @return 解密后的字符串
|
|
|
+ * @throws Exception 解密异常
|
|
|
+ */
|
|
|
+ public static String decrypt(String source, String type, String key) throws Exception {
|
|
|
+ switch (type.toUpperCase()) {
|
|
|
+ case "BASE64" -> {
|
|
|
+ return decryptBase64(source);
|
|
|
+ }
|
|
|
+ case "DES" -> {
|
|
|
+ return decryptDES(source, key);
|
|
|
+ }
|
|
|
+ case "3DES" -> {
|
|
|
+ return decrypt3DES(source, key);
|
|
|
+ }
|
|
|
+ case "AES" -> {
|
|
|
+ return decryptAES(source, key);
|
|
|
+ }
|
|
|
+ default -> {
|
|
|
+ return null;
|
|
|
+ }
|
|
|
+ }
|
|
|
+ }
|
|
|
+
|
|
|
+ /**
|
|
|
+ * 使用Base64编码对数据进行加密
|
|
|
+ *
|
|
|
+ * @param data 待加密的数据
|
|
|
+ * @return 加密后的数据
|
|
|
+ */
|
|
|
+ private static String encryptBase64(String data) {
|
|
|
+ return Base64.getEncoder().encodeToString(data.getBytes(StandardCharsets.UTF_8));
|
|
|
+ }
|
|
|
+
|
|
|
+ /**
|
|
|
+ * 使用Base64解密数据
|
|
|
+ *
|
|
|
+ * @param data 要解密的数据
|
|
|
+ * @return 解密后的字符串
|
|
|
+ */
|
|
|
+ private static String decryptBase64(String data) {
|
|
|
+ return new String(Base64.getDecoder().decode(data));
|
|
|
+ }
|
|
|
+
|
|
|
+
|
|
|
+ /**
|
|
|
+ * 使用DES算法对数据进行加密
|
|
|
+ *
|
|
|
+ * @param data 要加密的数据
|
|
|
+ * @param key 加密密钥
|
|
|
+ * @return 加密后的数据,以Base64编码的字符串形式返回
|
|
|
+ * @throws Exception 加密过程中可能抛出的异常
|
|
|
+ */
|
|
|
+ private static String encryptDES(String data, String key) throws Exception {
|
|
|
+ // 将密钥转换为字节数组
|
|
|
+ byte[] keyBytes = key.getBytes(StandardCharsets.UTF_8);
|
|
|
+
|
|
|
+ // 创建DESKeySpec对象,用于指定密钥
|
|
|
+ DESKeySpec desKeySpec = new DESKeySpec(keyBytes);
|
|
|
+
|
|
|
+ // 创建SecretKeyFactory对象,用于生成SecretKey对象
|
|
|
+ SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("DES");
|
|
|
+
|
|
|
+ // 生成SecretKey对象
|
|
|
+ SecretKey secretKey = keyFactory.generateSecret(desKeySpec);
|
|
|
+
|
|
|
+ // 创建Cipher对象,用于加密或解密操作
|
|
|
+ Cipher cipher = Cipher.getInstance("DES/ECB/PKCS5Padding");
|
|
|
+
|
|
|
+ // 初始化Cipher对象,设置为加密模式,并传入密钥
|
|
|
+ cipher.init(Cipher.ENCRYPT_MODE, secretKey);
|
|
|
+
|
|
|
+ // 执行加密操作
|
|
|
+ byte[] encryptedBytes = cipher.doFinal(data.getBytes(StandardCharsets.UTF_8));
|
|
|
+
|
|
|
+ // 将加密后的字节数组转换为Base64编码的字符串
|
|
|
+ return Base64.getEncoder().encodeToString(encryptedBytes);
|
|
|
+ }
|
|
|
+
|
|
|
+ private static String decryptDES(String encryptedData, String key) throws Exception {
|
|
|
+ // 将密钥转换为字节数组
|
|
|
+ byte[] keyBytes = key.getBytes(StandardCharsets.UTF_8);
|
|
|
+
|
|
|
+ // 创建DESKeySpec对象
|
|
|
+ DESKeySpec desKeySpec = new DESKeySpec(keyBytes);
|
|
|
+
|
|
|
+ // 创建SecretKeyFactory对象,并指定加密算法
|
|
|
+ SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("DES");
|
|
|
+
|
|
|
+ // 生成SecretKey对象
|
|
|
+ SecretKey secretKey = keyFactory.generateSecret(desKeySpec);
|
|
|
+
|
|
|
+ // 创建Cipher对象,并指定加密算法
|
|
|
+ Cipher cipher = Cipher.getInstance("DES/ECB/PKCS5Padding");
|
|
|
+
|
|
|
+ // 初始化Cipher对象,设置为解密模式,并传入密钥
|
|
|
+ cipher.init(Cipher.DECRYPT_MODE, secretKey);
|
|
|
+
|
|
|
+ // 将Base64编码的字符串转换为字节数组
|
|
|
+ byte[] encryptedBytes = Base64.getDecoder().decode(encryptedData);
|
|
|
+
|
|
|
+ // 执行解密操作
|
|
|
+ byte[] decryptedBytes = cipher.doFinal(encryptedBytes);
|
|
|
+
|
|
|
+ // 将解密后的字节数组转换为字符串
|
|
|
+ return new String(decryptedBytes, StandardCharsets.UTF_8);
|
|
|
+ }
|
|
|
+
|
|
|
+ private static String encryptAES(String data, String key) throws Exception {
|
|
|
+ // 创建AES加密算法实例
|
|
|
+ Cipher cipher = Cipher.getInstance("AES/ECB/PKCS5Padding");
|
|
|
+
|
|
|
+ // 创建密钥规则
|
|
|
+ SecretKeySpec secretKeySpec = new SecretKeySpec(key.getBytes(), "AES");
|
|
|
+
|
|
|
+ // 初始化加密模式
|
|
|
+ cipher.init(Cipher.ENCRYPT_MODE, secretKeySpec);
|
|
|
+
|
|
|
+ // 执行加密操作
|
|
|
+ byte[] encryptedBytes = cipher.doFinal(data.getBytes());
|
|
|
+
|
|
|
+ // 将加密后的字节数组转换为Base64编码的字符串
|
|
|
+
|
|
|
+ return Base64.getEncoder().encodeToString(encryptedBytes);
|
|
|
+ }
|
|
|
+
|
|
|
+ private static String decryptAES(String encryptedData, String key) throws Exception {
|
|
|
+ // 创建AES解密算法实例
|
|
|
+ Cipher cipher = Cipher.getInstance("AES/ECB/PKCS5Padding");
|
|
|
+
|
|
|
+ // 创建密钥规则
|
|
|
+ SecretKeySpec secretKeySpec = new SecretKeySpec(key.getBytes(), "AES");
|
|
|
+
|
|
|
+ // 初始化解密模式
|
|
|
+ cipher.init(Cipher.DECRYPT_MODE, secretKeySpec);
|
|
|
+
|
|
|
+ // 将Base64编码的字符串转换为字节数组
|
|
|
+ byte[] encryptedBytes = Base64.getDecoder().decode(encryptedData);
|
|
|
+
|
|
|
+ // 执行解密操作
|
|
|
+ byte[] decryptedBytes = cipher.doFinal(encryptedBytes);
|
|
|
+
|
|
|
+ // 将解密后的字节数组转换为字符串
|
|
|
+ String decryptedData = new String(decryptedBytes);
|
|
|
+
|
|
|
+ return decryptedData;
|
|
|
+ }
|
|
|
+
|
|
|
+ private static String encrypt3DES(String data, String key) throws Exception {
|
|
|
+ // 创建3DES加密算法实例
|
|
|
+ Cipher cipher = Cipher.getInstance("DESede/ECB/PKCS5Padding");
|
|
|
+
|
|
|
+ // 创建密钥工厂
|
|
|
+ SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("DESede");
|
|
|
+
|
|
|
+ // 创建密钥规则
|
|
|
+ DESedeKeySpec keySpec = new DESedeKeySpec(key.getBytes());
|
|
|
+
|
|
|
+ // 生成密钥
|
|
|
+ SecretKey secretKey = keyFactory.generateSecret(keySpec);
|
|
|
+
|
|
|
+ // 初始化加密模式
|
|
|
+ cipher.init(Cipher.ENCRYPT_MODE, secretKey);
|
|
|
+
|
|
|
+ // 执行加密操作
|
|
|
+ byte[] encryptedBytes = cipher.doFinal(data.getBytes());
|
|
|
+
|
|
|
+ // 将加密后的字节数组转换为Base64编码的字符串
|
|
|
+ String encryptedData = Base64.getEncoder().encodeToString(encryptedBytes);
|
|
|
+
|
|
|
+ return encryptedData;
|
|
|
+ }
|
|
|
+
|
|
|
+ private static String decrypt3DES(String encryptedData, String key) throws Exception {
|
|
|
+ // 创建3DES解密算法实例
|
|
|
+ Cipher cipher = Cipher.getInstance("DESede/ECB/PKCS5Padding");
|
|
|
+
|
|
|
+ // 创建密钥工厂
|
|
|
+ SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("DESede");
|
|
|
+
|
|
|
+ // 创建密钥规则
|
|
|
+ DESedeKeySpec keySpec = new DESedeKeySpec(key.getBytes());
|
|
|
+
|
|
|
+ // 生成密钥
|
|
|
+ SecretKey secretKey = keyFactory.generateSecret(keySpec);
|
|
|
+
|
|
|
+ // 初始化解密模式
|
|
|
+ cipher.init(Cipher.DECRYPT_MODE, secretKey);
|
|
|
+
|
|
|
+ // 将Base64编码的字符串转换为字节数组
|
|
|
+ byte[] encryptedBytes = Base64.getDecoder().decode(encryptedData);
|
|
|
+
|
|
|
+ // 执行解密操作
|
|
|
+ byte[] decryptedBytes = cipher.doFinal(encryptedBytes);
|
|
|
+
|
|
|
+ // 将解密后的字节数组转换为字符串
|
|
|
+ String decryptedData = new String(decryptedBytes);
|
|
|
+
|
|
|
+ return decryptedData;
|
|
|
+ }
|
|
|
+
|
|
|
+ /**
|
|
|
+ * 公钥加密(用于数据加密)
|
|
|
+ *
|
|
|
+ * @param data 加密前的字符串
|
|
|
+ * @param publicKeyStr base64编码后的公钥
|
|
|
+ * @return base64编码后的字符串
|
|
|
+ * @throws Exception
|
|
|
+ */
|
|
|
+ public static String encryptByPublicKey(String data, String publicKeyStr,String type,String algorithm) throws Exception {
|
|
|
+ //根据X509编码密钥规范产生公钥对象
|
|
|
+ PublicKey publicKey = getPublicKey(publicKeyStr, type);
|
|
|
+ //根据转换的名称获取密码对象Cipher(转换的名称:算法/工作模式/填充模式)
|
|
|
+ Cipher cipher = Cipher.getInstance(algorithm);
|
|
|
+ //用公钥初始化此Cipher对象(加密模式)
|
|
|
+ cipher.init(Cipher.ENCRYPT_MODE, publicKey);
|
|
|
+ //对数据加密
|
|
|
+ byte[] encrypt = cipher.doFinal(data.getBytes());
|
|
|
+ //返回base64编码后的字符串
|
|
|
+ return Base64.getEncoder().encodeToString(encrypt);
|
|
|
+ }
|
|
|
+ /**
|
|
|
+ * 私钥加密(用于数据加密)
|
|
|
+ *
|
|
|
+ * @param data 加密前的字符串
|
|
|
+ * @param privateKeyStr base64编码后的私钥
|
|
|
+ * @return base64编码后的字符串
|
|
|
+ * @throws Exception
|
|
|
+ */
|
|
|
+ public static String encryptByPrivateKey(String data, String privateKeyStr,String type,String algorithm) throws Exception {
|
|
|
+ //根据X509编码密钥规范产生公钥对象
|
|
|
+ PrivateKey privateKey = getPrivateKey(privateKeyStr, type);
|
|
|
+ //根据转换的名称获取密码对象Cipher(转换的名称:算法/工作模式/填充模式)
|
|
|
+ Cipher cipher = Cipher.getInstance(algorithm);
|
|
|
+ //用公钥初始化此Cipher对象(加密模式)
|
|
|
+ cipher.init(Cipher.ENCRYPT_MODE, privateKey);
|
|
|
+ //对数据加密
|
|
|
+ byte[] encrypt = cipher.doFinal(data.getBytes());
|
|
|
+ //返回base64编码后的字符串
|
|
|
+ return Base64.getEncoder().encodeToString(encrypt);
|
|
|
+ }
|
|
|
+
|
|
|
+ /**
|
|
|
+ * 私钥解密(用于数据解密)
|
|
|
+ *
|
|
|
+ * @param data 解密前的字符串
|
|
|
+ * @param privateKeyStr 私钥
|
|
|
+ * @return 解密后的字符串
|
|
|
+ * @throws Exception
|
|
|
+ */
|
|
|
+ public static String decryptByPrivateKey(String data, String privateKeyStr,String type,String algorithm) throws Exception {
|
|
|
+
|
|
|
+ //根据PKCS8编码密钥规范产生私钥对象
|
|
|
+ PrivateKey privateKey = getPrivateKey(privateKeyStr, type);
|
|
|
+ //根据转换的名称获取密码对象Cipher(转换的名称:算法/工作模式/填充模式)
|
|
|
+ Cipher cipher = Cipher.getInstance(algorithm);
|
|
|
+ //用私钥初始化此Cipher对象(解密模式)
|
|
|
+ cipher.init(Cipher.DECRYPT_MODE, privateKey);
|
|
|
+ //对数据解密
|
|
|
+ byte[] decrypt = cipher.doFinal(Base64.getDecoder().decode(data));
|
|
|
+ //返回字符串
|
|
|
+ return new String(decrypt);
|
|
|
+ }
|
|
|
+ /**
|
|
|
+ * 公钥解密(用于数据解密)
|
|
|
+ *
|
|
|
+ * @param data 解密前的字符串
|
|
|
+ * @param publicKeyStr 公钥
|
|
|
+ * @return 解密后的字符串
|
|
|
+ * @throws Exception
|
|
|
+ */
|
|
|
+ public static String decryptByPublicKey(String data, String publicKeyStr,String type,String algorithm) throws Exception {
|
|
|
+
|
|
|
+ //根据PKCS8编码密钥规范产生私钥对象
|
|
|
+ PublicKey publicKey = getPublicKey(publicKeyStr, type);
|
|
|
+ //根据转换的名称获取密码对象Cipher(转换的名称:算法/工作模式/填充模式)
|
|
|
+ Cipher cipher = Cipher.getInstance(algorithm);
|
|
|
+ //用私钥初始化此Cipher对象(解密模式)
|
|
|
+ cipher.init(Cipher.DECRYPT_MODE, publicKey);
|
|
|
+ //对数据解密
|
|
|
+ byte[] decrypt = cipher.doFinal(Base64.getDecoder().decode(data));
|
|
|
+ //返回字符串
|
|
|
+ return new String(decrypt);
|
|
|
+ }
|
|
|
+
|
|
|
+
|
|
|
+ public static String signatureSHA(String data, String algorithm) throws NoSuchAlgorithmException {
|
|
|
+ // 创建MessageDigest对象,指定使用SHA算法
|
|
|
+ MessageDigest md = MessageDigest.getInstance(algorithm);
|
|
|
+
|
|
|
+ // 将数据转换为字节数组
|
|
|
+ byte[] dataBytes = data.getBytes();
|
|
|
+
|
|
|
+ // 执行加密操作
|
|
|
+ byte[] encryptedBytes = md.digest(dataBytes);
|
|
|
+
|
|
|
+ // 将加密后的字节数组转换为十六进制字符串
|
|
|
+ StringBuilder sb = new StringBuilder();
|
|
|
+ for (byte b : encryptedBytes) {
|
|
|
+ sb.append(String.format("%02x", b));
|
|
|
+ }
|
|
|
+
|
|
|
+ return sb.toString();
|
|
|
+ }
|
|
|
+
|
|
|
+
|
|
|
+ public static boolean verifySHA(String encryptedData, String algorithm, String sourceData) throws Exception {
|
|
|
+ return signatureSHA(sourceData, algorithm).equals(encryptedData);
|
|
|
+ }
|
|
|
+
|
|
|
+
|
|
|
+ public static String signatureMD5(String data) throws NoSuchAlgorithmException {
|
|
|
+ // 创建MessageDigest对象,指定使用MD5算法
|
|
|
+ MessageDigest md = MessageDigest.getInstance("MD5");
|
|
|
+
|
|
|
+ // 将数据转换为字节数组
|
|
|
+ byte[] dataBytes = data.getBytes();
|
|
|
+
|
|
|
+ // 执行加密操作
|
|
|
+ byte[] encryptedBytes = md.digest(dataBytes);
|
|
|
+
|
|
|
+ // 将加密后的字节数组转换为十六进制字符串
|
|
|
+ StringBuilder sb = new StringBuilder();
|
|
|
+ for (byte b : encryptedBytes) {
|
|
|
+ sb.append(String.format("%02x", b));
|
|
|
+ }
|
|
|
+
|
|
|
+ return sb.toString();
|
|
|
+ }
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+ private static PublicKey getPublicKey(String publicKeyStr, String type) throws NoSuchAlgorithmException, InvalidKeySpecException {
|
|
|
+ X509EncodedKeySpec keySpec = new X509EncodedKeySpec(Base64.getDecoder().decode(publicKeyStr.getBytes()));
|
|
|
+ KeyFactory keyFactory = KeyFactory.getInstance(type);
|
|
|
+ return keyFactory.generatePublic(keySpec);
|
|
|
+ }
|
|
|
+
|
|
|
+ private static PrivateKey getPrivateKey(String privateKeyStr, String type) throws NoSuchAlgorithmException, InvalidKeySpecException {
|
|
|
+ PKCS8EncodedKeySpec keySpec = new PKCS8EncodedKeySpec(Base64.getDecoder().decode(privateKeyStr.getBytes()));
|
|
|
+ KeyFactory keyFactory = KeyFactory.getInstance(type);
|
|
|
+ return keyFactory.generatePrivate(keySpec);
|
|
|
+ }
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+}
|
