devbox
喵喵爱编程
这个屌丝很懒,什么也没留下!
关注作者
热门标签
热门文章
当前位置:   article > 正文

使用rsa对用户名,密码加解密传输(js前端加密,java后台解密)_javascript 用户名 传输 加密

作者:喵喵爱编程 | 2024-08-08 13:26:59

javascript 用户名 传输 加密

由于安全原因,需要对用户名密码做加密传输,,考虑几种方式,md5,base64,rsa,由于md5加密不可逆,为了减小代码的改动放弃,base64加密严格来说并不是用来加密的主要是用来方便数据传输的,所以采用rsa非对称加密的方式!

贴代码

java

  1. public class Test {
  2.    
  3.    public static void main(String[] args) throws Exception {
  4.  
  5.       //生产秘钥对
  6.       //bouncy castle(轻量级密码术包)是一种用于 Java 平台的开放源码的轻量级密码术包
  7.       Provider provider = new BouncyCastleProvider();
  8.       KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance("RSA", provider);
  9.       keyPairGen.initialize(1024, new SecureRandom());
  10.       KeyPair keyPair = keyPairGen.generateKeyPair();
  11.       //打印公钥
  12.       System.out.println(keyPair.getPublic());
  13.       //打印私钥
  14.       System.out.println(keyPair.getPrivate());

执行以上代码得到如下

其中private exponent是私钥用户后台解密不能泄露出去

RSA Public Key 中的modulus和public exponent 公钥用于交给前段js加密

 

前端:引入js文件     security.js

附上security.js地址       https://download.csdn.net/download/zuoyigehaizei/11329183

html页面中导入此js,以下为js加密代码

  1.  //rsa 私钥
  2.         var password = 'ceshi';
  3.         var username = 'user_01';
  4.         var key = RSAUtils.getKeyPair('10001', '', '9a12794abc04faa6f78350fe0e73403994eb58199d030477f97d6acd9825e9fc13b230edcb68741d1f87b257506e909df0926ad9c12ab99b40c40087222ed0686c133bf2f7f01c005c9b9f01a9891527afc41364e0d24ce8924237f0868fc87770397f0c4386dbfe178de40273adcf6a3de05d60dc4abd945a14ed257af6e033');
  5. //加密后的密码
  6.         password = RSAUtils.encryptedString(key, password);
  7.         console.log("password:" + password);
  8. //加密后的用户名
  9.         username = RSAUtils.encryptedString(key,username);
  10.         console.log("username" + username);

 

java后台解密

  1. public static void main(String[] args) throws Exception {
  2.  
  3.    //rsa js加密,后台java解密
  4.    //RSA Private CRT Key的modulus
  5.    String hexModulus = "9a12794abc04faa6f78350fe0e73403994eb58199d030477f97d6acd9825e9fc13b230edcb68741d1f87b257506e909df0926ad9c12ab99b40c40087222ed0686c133bf2f7f01c005c9b9f01a9891527afc41364e0d24ce8924237f0868fc87770397f0c4386dbfe178de40273adcf6a3de05d60dc4abd945a14ed257af6e033";
  6.    //RSA Private CRT Key的private exponent
  7.    String hexPrivateExponent = "5131951bee53cd67ba1e48cb6a00108387d832786507170ec6baf252e070728b7631bc99444d8a8b62775763ae2e6625e586b3aa87a2a5678cccfdde390464ad1d4e2ef44be958238f3fae52ee988b3190a6e61c62512de90393ee599fb528726d74d987eb174732224245de0dc3701ccf3596d9ad9ecb919fbbf41c8241b781";
  8.    // js页面加密后的密码和用户名
  9.    String passwrod = "03f87bada52fc13c892b39498cb06d4641eb0aefb92d7e243cdd7683c0aab29424954cb18cc53e92c589f9a1096cc8dbe5a75429321ba177f1804a5e23fd966d73dbfa5a6bbcdc6dc0cc231c342fec317c27c72cf7396677da2a424e808b30eaa173bf5c7247cefda4b98fb89e13d53f44e432f6e30948877616240bfbb647c6";
  10.    String username = "5354f3480cce53432b29fd212577951dd8b0fc6a002e440f96d7519a5233e4040fe9ad2d27d0fe8b20dfe390a1d21b0cf362818df9706c5f7f49dada15bc032aab11aa86a8d99ed41a21796936cea7e8391e5712fe64e6ccc5d66e4f1f4d3f811975615f0272eb7434f196bcf9740e389af74b0ef9ff88b14d71251f38be5234";
  11.    Provider provider = new BouncyCastleProvider();
  12.  
  13.    KeyFactory keyFac = KeyFactory.getInstance("RSA", provider);
  14.    RSAPrivateKeySpec priKeySpec = new RSAPrivateKeySpec(new BigInteger(hexModulus, 16), new BigInteger(hexPrivateExponent, 16));
  15.    // 生成用于解密的私钥
  16.    RSAPrivateKey pk = (RSAPrivateKey) keyFac.generatePrivate(priKeySpec);
  17.    // 解密
  18.    Cipher cipher = Cipher.getInstance("RSA", provider);
  19.    cipher.init(2, pk);
  20.    byte[] pwd = cipher.doFinal(Hex.decodeHex(passwrod.toCharArray()));
  21.    byte[] usn = cipher.doFinal(Hex.decodeHex(username.toCharArray()));
  22.    System.out.println(StringUtils.reverse(new String(pwd)));
  23.    System.out.println(StringUtils.reverse(new String(usn)));

 

运行结果,解密成功

 

 

题外话:rsa加解密效率比较慢,可以做一些小改动来提升效率,上代码,测试过户解密大概在3毫秒,改动之前解密一次需要200毫秒左右!

  1. static Cipher cipher;
  2. static RSAPrivateKey pk;
  3. static org.slf4j.Logger log = LoggerFactory.getLogger(LogonAction.class);
  4.  
  5. //传入加密后的密码,进行解密     pwOrUn加密后的密码
  6. public String passwordAndUsernameRsaDecode(String pwOrUn) {
  7.    try {
  8.       long l = System.currentTimeMillis();
  9.       pk = getPk();
  10.       // 解密
  11.       cipher = getCipher();
  12.       cipher.init(2, LogonAction.pk);
  13.       byte[] rawPasswordByte = cipher.doFinal(Hex.decodeHex(pwOrUn.toCharArray()));
  14.       pwOrUn = StringUtils.reverse(new String(rawPasswordByte));
  15.       long l1 = System.currentTimeMillis();
  16.       log.info("解密成功,用时" + (l1-l));
  17.    }catch (Exception e){
  18.       throw new RuntimeException("Rsa密码解密失败");
  19.    }
  20.    return pwOrUn;
  21. }
  22.  
  23. public static synchronized RSAPrivateKey getPk()
  24.       throws Exception{
  25.    if(pk == null){
  26.       log.info("私钥为空,生成私钥");
  27.       String hexModulus = "c6e442535e1dd6968e4ccd7735299278d989cb938a2f97c1081c4e6796895a3063510592e2e90ed427d5a604428ce46391dcb2ba6b5f4a86af1347237d1de489a0dc2f68a1f9a265d1ec350fccd8a76be5004211cee5bf05a083afa17cf335871b141e5c4329f69d1a3546613e0fa7833b7a253c460e5bb0c075dacfccfd6d0d";
  28.       String hexPrivateExponent = "1ce625c15c66146a983d82cd493c95242ae35603ba73b4f810682c838d0f4bbb242d5c2bc9cee12b41bff1108b369885fadaa05f0f68bafeb915445e5cd006645eb816d9a8d89b155aeb8478a60325cf4d7e69c12b3076a4cf31b8c24530e7f13533826bc7e87ddf65b7ccc65951bd7c34238b9f08a1e8a1c2c4dd762c50309";
  29.       // 这就是上面html输出的密文
  30.       Provider provider = new BouncyCastleProvider();
  31.  
  32.       KeyFactory keyFac = KeyFactory.getInstance("RSA", provider);
  33.       RSAPrivateKeySpec priKeySpec = new RSAPrivateKeySpec(new BigInteger(hexModulus, 16), new BigInteger(hexPrivateExponent, 16));
  34.       // 生成用于解密的私钥
  35.       pk = (RSAPrivateKey) keyFac.generatePrivate(priKeySpec);
  36.    }
  37.    return pk;
  38. }
  39.  
  40. public static synchronized Cipher getCipher()
  41.       throws NoSuchAlgorithmException, NoSuchPaddingException {
  42.    if (cipher == null) {
  43.       cipher = Cipher.getInstance("RSA", new BouncyCastleProvider());
  44.    }
  45.    return cipher;
  46. }

以上改动后的方法经过线上测试存在问题:问题如下 :

 java.lang.ArrayIndexOutOfBoundsException: too much data for RSA block

问题描述:加密后的密码,进行解密,会出现同样的加密密码有时会解密成功,有时解密失败的情况!解密失败时报以上错误!

查阅资料,出现此错误有两种可能性

1,加密的密码过长导致

2,多线程引起的

分析之后排除1,那么就是多线程引起的问题

原因:javax.crypto.Cipher 是有状态的,不要把 Cipher 当做一个静态变量,除非你的程序是单线程的,也就是说你能够保证同一时刻只有一个线程在调用 Cipher。否则你可能会遇到 java.lang.ArrayIndexOutOfBoundsException: too much data for RSA block 异常。

解决方法:

public  synchronized String passwordAndUsernameRsaDecode(String pwOrUn) {
   try {
      long l = System.currentTimeMillis();
      pk = getPk();
      // 解密
      cipher = getCipher();
      cipher.init(2, LogonAction.pk);
      byte[] rawPasswordByte = cipher.doFinal(Hex.decodeHex(pwOrUn.toCharArray()));
      pwOrUn = StringUtils.reverse(new String(rawPasswordByte));
      long l1 = System.currentTimeMillis();
      log.info("解密成功,用时" + (l1-l));
   }catch (Exception e){
      throw new RuntimeException("Rsa密码解密失败");
   }
   return pwOrUn;
}

在此方法上加上同步,解决问题。

声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/喵喵爱编程/article/detail/948479
推荐阅读
相关标签

Copyright © 2003-2013 www.wpsshop.cn 版权所有,并保留所有权利。

  

闽ICP备14008679号