AES+base64实现双重加密

来源：互联网发布：不可逆矩阵qr分解编辑：程序博客网时间：2024/05/17 08:20

以前没写过文档之类的东西，决定从现在开始整理相关代码。便于以后翻看吧！

因为现在做的项目数据需要进行加密，使其在数据库中看到的是密文，所以先通过网上的资料写了一个加密工具类。

package com.iwork.platform.util;import java.security.SecureRandom;import javax.crypto.Cipher;import javax.crypto.KeyGenerator;import javax.crypto.spec.SecretKeySpec;import sun.misc.BASE64Decoder;import sun.misc.BASE64Encoder;/** * 加密解密工具 *  * @author ykc * */public class EncryptAndDecrypt {// 加密长度private final static int LENGTH = 128;// 编码方式private final static String ENCODE = "UTF-8";// 秘钥private final static String defaultKey = "sdit606.";// 前缀private final static String defaultPrefix = "SDITENCRYPT";public static void main(String[] args) {String mes = "测试数据";String e = encrypt(mes);System.out.println("加密后：" + e);System.out.println("解密后：" + decrypt(e));}/** * AES加密后再使用BASE64加密 * 增加前缀 * 1.辨识正常数据，使其不进行解密 * 2.提高安全度 * @param content * @return * @throws Exception */public static String encrypt(String content) {String value = "";try {                    if(!isEmpty(content)){value = defaultPrefix + base64Encode(aesEncryptToBytes(content));                    }} catch (Exception e) {System.out.println("EncryptAndDecrypt（加密错误）");e.printStackTrace();}return value;}/** * AES解密后再使用BASE64解密 * 增加前缀 * 1.辨识正常数据，使其不进行解密 * 2.提高安全度 * @param encryptStr * @return * @throws Exception */public static String decrypt(String encryptStr) {String value = "";try {int length = defaultPrefix.length();if (encryptStr.length() > length) {String val = encryptStr.substring(0, length);if (val.equals(defaultPrefix)) {value = aesDecryptByBytes(base64Decode(encryptStr.substring(length)));} else {value = encryptStr;}} else {value = encryptStr;}} catch (Exception e) {System.out.println("EncryptAndDecrypt（解密错误）");e.printStackTrace();}return value;}/** * AES加密 *  * @param content * @return * @throws Exception */public static byte[] aesEncryptToBytes(String content) throws Exception {KeyGenerator kgen = KeyGenerator.getInstance("AES");kgen.init(LENGTH, new SecureRandom(defaultKey.getBytes()));Cipher cipher = Cipher.getInstance("AES");SecretKeySpec sks = new SecretKeySpec(kgen.generateKey().getEncoded(), "AES");cipher.init(Cipher.ENCRYPT_MODE, sks);return cipher.doFinal(content.getBytes(ENCODE));}/** * AES解密 *  * @param encryptBytes * @return * @throws Exception */public static String aesDecryptByBytes(byte[] encryptBytes) throws Exception {KeyGenerator kgen = KeyGenerator.getInstance("AES");kgen.init(LENGTH, new SecureRandom(defaultKey.getBytes()));Cipher cipher = Cipher.getInstance("AES");SecretKeySpec sks = new SecretKeySpec(kgen.generateKey().getEncoded(), "AES");cipher.init(Cipher.DECRYPT_MODE, sks);byte[] decryptBytes = cipher.doFinal(encryptBytes);return new String(decryptBytes);}/** * BASE64 加密 *  * @param content * @return * @throws Exception */public static String base64Encode(byte[] bytes) {return new BASE64Encoder().encode(bytes);}/** * BASE64 解密 *  * @param content * @return * @throws Exception */public static byte[] base64Decode(String base64Code) throws Exception {return isEmpty(base64Code) ? null : new BASE64Decoder().decodeBuffer(base64Code);}public static boolean isEmpty(String str) {return null == str || "".equals(str.trim());}}

测试结果如下

加密后：SDITENCRYPTTMidf05lpkkSrHpX2nVKHA==解密后：测试数据

大体就是这个样子，后续还要研究一下如何把解密方法放到项目中。初步想的是放在model的get set 中！

PS：加前缀是因为项目中已存在大量数据，加上前缀既能判断是否为原始数据，还能增加一点安全性（虽然并没什么卵用。）

阅读全文

0 0