devbox
小蓝xlanll
这个屌丝很懒,什么也没留下!
关注作者
热门标签
热门文章
当前位置:   article > 正文

Java加密与解密的艺术~AES-GCM-NoPadding实现_aes/gcm/nopadding

作者:小蓝xlanll | 2024-03-01 20:07:54

aes/gcm/nopadding

来源:Java AES加密和解密_一名可爱的技术搬运工-CSDN博客

AES加密

高级加密标准 (AES,Rijndael)是一种分组密码加密和解密算法,是全球使用最广泛的加密算法。 AES使用128、192或256位的密钥来处理128位的块。

本文向您展示了一些Java AES加密和解密示例:

  • AES字符串加密–(加密和解密字符串)。
  • AES基于密码的加密–(密钥将从给定的密码派生)。
  • AES文件加密。 (基于密码)。

在本文中,我们重点介绍通过Galois Counter Mode(GCM)进行的256位AES加密

GCM = CTR + Authentication.

进一步阅读 
阅读本– NIST – Galois /计数器模式(GCM)的建议

不要使用AES电子密码本(ECB)模式 
AES ECB模式或AES/ECB/PKCS5Padding (在Java中)在语义上并不安全 – ECB加密的密文可能泄漏有关纯文本的信息。 这是关于为什么不应该使用ECB加密的讨论

1. Java和AES加密输入。

在AES加密和解密中,我们需要以下输入:

AES加密最佳做法 
不要重复使用具有相同密钥的IV。

1.1 IV(初始值或初始向量),它是随机字节,通常为12个字节或16个字节。 在Java中,我们可以使用SecureRandom生成随机IV。

  1. // 16 bytes IV
  2.   public static byte[] getRandomNonce() {
  3.         byte[] nonce = new byte[16];
  4.         new SecureRandom().nextBytes(nonce);
  5.         return nonce;
  6.   }
  7.  
  8.   // 12 bytes IV
  9.   public static byte[] getRandomNonce() {
  10.         byte[] nonce = new byte[12];
  11.         new SecureRandom().nextBytes(nonce);
  12.         return nonce;
  13.   }

1.2 AES密钥,即AES-128AES-256 。 在Java中,我们可以使用KeyGenerator生成AES密钥。

  1. // 256 bits AES secret key
  2.     public static SecretKey getAESKey() throws NoSuchAlgorithmException {
  3.         KeyGenerator keyGen = KeyGenerator.getInstance("AES");
  4.         keyGen.init(256, SecureRandom.getInstanceStrong());
  5.         return keyGen.generateKey();
  6.     }

1.3从给定密码派生的AES密钥。 在Java中,我们可以使用SecretKeyFactoryPBKDF2WithHmacSHA256从给定的密码生成AES密钥。

  1. // AES key derived from a password
  2.     public static SecretKey getAESKeyFromPassword(char[] password, byte[] salt)
  3.             throws NoSuchAlgorithmException, InvalidKeySpecException {
  4.  
  5.         SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA256");
  6.         // iterationCount = 65536
  7.         // keyLength = 256
  8.         KeySpec spec = new PBEKeySpec(password, salt, 65536, 256);
  9.         SecretKey secret = new SecretKeySpec(factory.generateSecret(spec).getEncoded(), "AES");
  10.         return secret;
  11.     }

我们使用salt来保护彩虹攻击,它也是一个随机字节,我们可以使用相同的1.1 getRandomNonce生成它。

1.4我们将上述方法分组为一个util类,这样我们就不会一次又一次重复相同的代码。

CryptoUtils.java

  1. package com.mkyong.crypto.utils;
  2.  
  3. import javax.crypto.KeyGenerator;
  4. import javax.crypto.SecretKey;
  5. import javax.crypto.SecretKeyFactory;
  6. import javax.crypto.spec.PBEKeySpec;
  7. import javax.crypto.spec.SecretKeySpec;
  8. import java.security.NoSuchAlgorithmException;
  9. import java.security.SecureRandom;
  10. import java.security.spec.InvalidKeySpecException;
  11. import java.security.spec.KeySpec;
  12. import java.util.ArrayList;
  13. import java.util.List;
  14.  
  15. public class CryptoUtils {
  16.  
  17.     public static byte[] getRandomNonce(int numBytes) {
  18.         byte[] nonce = new byte[numBytes];
  19.         new SecureRandom().nextBytes(nonce);
  20.         return nonce;
  21.     }
  22.  
  23.     // AES secret key
  24.     public static SecretKey getAESKey(int keysize) throws NoSuchAlgorithmException {
  25.         KeyGenerator keyGen = KeyGenerator.getInstance("AES");
  26.         keyGen.init(keysize, SecureRandom.getInstanceStrong());
  27.         return keyGen.generateKey();
  28.     }
  29.  
  30.     // Password derived AES 256 bits secret key
  31.     public static SecretKey getAESKeyFromPassword(char[] password, byte[] salt)
  32.             throws NoSuchAlgorithmException, InvalidKeySpecException {
  33.  
  34.         SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA256");
  35.         // iterationCount = 65536
  36.         // keyLength = 256
  37.         KeySpec spec = new PBEKeySpec(password, salt, 65536, 256);
  38.         SecretKey secret = new SecretKeySpec(factory.generateSecret(spec).getEncoded(), "AES");
  39.         return secret;
  40.  
  41.     }
  42.  
  43.     // hex representation
  44.     public static String hex(byte[] bytes) {
  45.         StringBuilder result = new StringBuilder();
  46.         for (byte b : bytes) {
  47.             result.append(String.format("%02x", b));
  48.         }
  49.         return result.toString();
  50.     }
  51.  
  52.     // print hex with block size split
  53.     public static String hexWithBlockSize(byte[] bytes, int blockSize) {
  54.  
  55.         String hex = hex(bytes);
  56.  
  57.         // one hex = 2 chars
  58.         blockSize = blockSize * 2;
  59.  
  60.         // better idea how to print this?
  61.         List<String> result = new ArrayList<>();
  62.         int index = 0;
  63.         while (index < hex.length()) {
  64.             result.add(hex.substring(index, Math.min(index + blockSize, hex.length())));
  65.             index += blockSize;
  66.         }
  67.  
  68.         return result.toString();
  69.  
  70.     }
  71.  
  72. }

  1. package com.mkyong.crypto.utils;

2. AES加密和解密。

AES-GSM是使用最广泛的认证密码。 本示例将在Galois计数器模式(GCM)中使用256位AES加密和解密字符串。

AES-GCM输入:

  • AES密钥(256位)
  • IV – 96位(12字节)
  • 身份验证标签的长度(以位为单位)– 128位(16字节)

2.1在Java中,我们使用AES/GCM/NoPadding表示AES-GCM算法。 对于加密的输出,我们将16字节的IV前缀到加密的文本(密文)之前,因为解密需要相同的IV。

如果IV是众所周知的,可以吗? 
IV公开是可以的,唯一的秘诀就是密钥,对它保密并保密。

本示例将使用AES加密纯文本Hello World AES-GCM ,然后将其解密回原始纯文本。

EncryptorAesGcm.java

  1. package com.mkyong.crypto.encryptor;
  2.  
  3. import com.mkyong.crypto.utils.CryptoUtils;
  4.  
  5. import javax.crypto.Cipher;
  6. import javax.crypto.SecretKey;
  7. import javax.crypto.spec.GCMParameterSpec;
  8. import java.nio.ByteBuffer;
  9. import java.nio.charset.Charset;
  10. import java.nio.charset.StandardCharsets;
  11.  
  12. /**
  13.  * AES-GCM inputs - 12 bytes IV, need the same IV and secret keys for encryption and decryption.
  14.  * <p>
  15.  * The output consist of iv, encrypted content, and auth tag in the following format:
  16.  * output = byte[] {i i i c c c c c c ...}
  17.  * <p>
  18.  * i = IV bytes
  19.  * c = content bytes (encrypted content, auth tag)
  20.  */
  21. public class EncryptorAesGcm {
  22.  
  23.     private static final String ENCRYPT_ALGO = "AES/GCM/NoPadding";
  24.     private static final int TAG_LENGTH_BIT = 128;
  25.     private static final int IV_LENGTH_BYTE = 12;
  26.     private static final int AES_KEY_BIT = 256;
  27.  
  28.     private static final Charset UTF_8 = StandardCharsets.UTF_8;
  29.  
  30.     // AES-GCM needs GCMParameterSpec
  31.     public static byte[] encrypt(byte[] pText, SecretKey secret, byte[] iv) throws Exception {
  32.  
  33.         Cipher cipher = Cipher.getInstance(ENCRYPT_ALGO);
  34.         cipher.init(Cipher.ENCRYPT_MODE, secret, new GCMParameterSpec(TAG_LENGTH_BIT, iv));
  35.         byte[] encryptedText = cipher.doFinal(pText);
  36.         return encryptedText;
  37.  
  38.     }
  39.  
  40.     // prefix IV length + IV bytes to cipher text
  41.     public static byte[] encryptWithPrefixIV(byte[] pText, SecretKey secret, byte[] iv) throws Exception {
  42.  
  43.         byte[] cipherText = encrypt(pText, secret, iv);
  44.  
  45.         byte[] cipherTextWithIv = ByteBuffer.allocate(iv.length + cipherText.length)
  46.                 .put(iv)
  47.                 .put(cipherText)
  48.                 .array();
  49.         return cipherTextWithIv;
  50.  
  51.     }
  52.  
  53.     public static String decrypt(byte[] cText, SecretKey secret, byte[] iv) throws Exception {
  54.  
  55.         Cipher cipher = Cipher.getInstance(ENCRYPT_ALGO);
  56.         cipher.init(Cipher.DECRYPT_MODE, secret, new GCMParameterSpec(TAG_LENGTH_BIT, iv));
  57.         byte[] plainText = cipher.doFinal(cText);
  58.         return new String(plainText, UTF_8);
  59.  
  60.     }
  61.  
  62.     public static String decryptWithPrefixIV(byte[] cText, SecretKey secret) throws Exception {
  63.  
  64.         ByteBuffer bb = ByteBuffer.wrap(cText);
  65.  
  66.         byte[] iv = new byte[IV_LENGTH_BYTE];
  67.         bb.get(iv);
  68.         //bb.get(iv, 0, iv.length);
  69.  
  70.         byte[] cipherText = new byte[bb.remaining()];
  71.         bb.get(cipherText);
  72.  
  73.         String plainText = decrypt(cipherText, secret, iv);
  74.         return plainText;
  75.  
  76.     }
  77.  
  78.     public static void main(String[] args) throws Exception {
  79.  
  80.         String OUTPUT_FORMAT = "%-30s:%s";
  81.  
  82.         String pText = "Hello World AES-GCM, Welcome to Cryptography!";
  83.  
  84.         // encrypt and decrypt need the same key.
  85.         // get AES 256 bits (32 bytes) key
  86.         SecretKey secretKey = CryptoUtils.getAESKey(AES_KEY_BIT);
  87.  
  88.         // encrypt and decrypt need the same IV.
  89.         // AES-GCM needs IV 96-bit (12 bytes)
  90.         byte[] iv = CryptoUtils.getRandomNonce(IV_LENGTH_BYTE);
  91.  
  92.         byte[] encryptedText = EncryptorAesGcm.encryptWithPrefixIV(pText.getBytes(UTF_8), secretKey, iv);
  93.  
  94.         System.out.println("\n------ AES GCM Encryption ------");
  95.         System.out.println(String.format(OUTPUT_FORMAT, "Input (plain text)", pText));
  96.         System.out.println(String.format(OUTPUT_FORMAT, "Key (hex)", CryptoUtils.hex(secretKey.getEncoded())));
  97.         System.out.println(String.format(OUTPUT_FORMAT, "IV  (hex)", CryptoUtils.hex(iv)));
  98.         System.out.println(String.format(OUTPUT_FORMAT, "Encrypted (hex) ", CryptoUtils.hex(encryptedText)));
  99.         System.out.println(String.format(OUTPUT_FORMAT, "Encrypted (hex) (block = 16)", CryptoUtils.hexWithBlockSize(encryptedText, 16)));
  100.  
  101.         System.out.println("\n------ AES GCM Decryption ------");
  102.         System.out.println(String.format(OUTPUT_FORMAT, "Input (hex)", CryptoUtils.hex(encryptedText)));
  103.         System.out.println(String.format(OUTPUT_FORMAT, "Input (hex) (block = 16)", CryptoUtils.hexWithBlockSize(encryptedText, 16)));
  104.         System.out.println(String.format(OUTPUT_FORMAT, "Key (hex)", CryptoUtils.hex(secretKey.getEncoded())));
  105.  
  106.         String decryptedText = EncryptorAesGcm.decryptWithPrefixIV(encryptedText, secretKey);
  107.  
  108.         System.out.println(String.format(OUTPUT_FORMAT, "Decrypted (plain text)", decryptedText));
  109.  
  110.     }
  111.  
  112. }

  1. package com.mkyong.crypto.encryptor;

输出量

纯文本: Hello World AES-GCM

Terminal

  1. ------ AES GCM Encryption ------
  2. Input (plain text)            :Hello World AES-GCM
  3. Key (hex)                     :603d87185bf855532f14a77a91ec7b025c004bf664e9f5c6e95613ee9577f436
  4. IV  (hex)                     :bdb271ce5235996a0709e09c
  5. Encrypted (hex)               :bdb271ce5235996a0709e09c2d03eefe319e9329768724755c56291aecaef88cd1e6bdf72b8c7b54d75a94e66b0cd3
  6. Encrypted (hex) (block = 16)  :[bdb271ce5235996a0709e09c2d03eefe, 319e9329768724755c56291aecaef88c, d1e6bdf72b8c7b54d75a94e66b0cd3]
  7.  
  8. ------ AES GCM Decryption ------
  9. Input (hex)                   :bdb271ce5235996a0709e09c2d03eefe319e9329768724755c56291aecaef88cd1e6bdf72b8c7b54d75a94e66b0cd3
  10. Input (hex) (block = 16)      :[bdb271ce5235996a0709e09c2d03eefe, 319e9329768724755c56291aecaef88c, d1e6bdf72b8c7b54d75a94e66b0cd3]
  11. Key (hex)                     :603d87185bf855532f14a77a91ec7b025c004bf664e9f5c6e95613ee9577f436
  12. Decrypted (plain text)        :Hello World AES-GCM

  1. ------ AES GCM Encryption ------

纯文本: Hello World AES-GCM, Welcome to Cryptography!

Terminal

  1. ------ AES GCM Encryption ------
  2. Input (plain text)            :Hello World AES-GCM, Welcome to Cryptography!
  3. Key (hex)                     :ddc24663d104e1c2f81f11aef98156503dafdc435f81e3ac3d705015ebab095c
  4. IV  (hex)                     :b05d6aedf023f73b9e1e2d11
  5. Encrypted (hex)               :b05d6aedf023f73b9e1e2d11f6f5137d971aea8c5cdd5b045e0960eb4408e0ee4635cccc2dfeec2c13a89bd400f659be82dc2329e9c36e3b032f38bd42296a8495ac840b0625c097d9
  6. Encrypted (hex) (block = 16)  :[b05d6aedf023f73b9e1e2d11f6f5137d, 971aea8c5cdd5b045e0960eb4408e0ee, 4635cccc2dfeec2c13a89bd400f659be, 82dc2329e9c36e3b032f38bd42296a84, 95ac840b0625c097d9]
  7.  
  8. ------ AES GCM Decryption ------
  9. Input (hex)                   :b05d6aedf023f73b9e1e2d11f6f5137d971aea8c5cdd5b045e0960eb4408e0ee4635cccc2dfeec2c13a89bd400f659be82dc2329e9c36e3b032f38bd42296a8495ac840b0625c097d9
  10. Input (hex) (block = 16)      :[b05d6aedf023f73b9e1e2d11f6f5137d, 971aea8c5cdd5b045e0960eb4408e0ee, 4635cccc2dfeec2c13a89bd400f659be, 82dc2329e9c36e3b032f38bd42296a84, 95ac840b0625c097d9]
  11. Key (hex)                     :ddc24663d104e1c2f81f11aef98156503dafdc435f81e3ac3d705015ebab095c
  12. Decrypted (plain text)        :Hello World AES-GCM, Welcome to Cryptography!

  1. ------ AES GCM Encryption ------

3.基于AES密码的加密和解密。

对于基于密码的加密,我们可以使用定义为RFC 8018的基于密码的密码规范(PKCS)从给定的密码生成密钥。

对于PKCS输入:

  • 密码,您提供。
  • 盐–至少64位(8字节)随机字节。
  • 迭代计数–建议最小迭代计数为1,000。

什么是盐和迭代计数?

  • salt会为给定的密码生成广泛的密钥集。 例如,如果盐是128位,则每个密码将有多达2 ^ 128个密钥。 因此,它增加了彩虹攻击的难度。 此外,攻击者为一个用户的密码构建的彩虹表对于另一用户变得毫无用处。
  • iteration count增加了从密码生成密钥的成本,因此增加了难度并减慢了攻击速度。

3.1对于加密的输出,我们在密文前面加上12 bytes IVpassword salt ,因为我们需要相同的IV和密码盐(用于密钥)进行解密。 此外,我们使用Base64编码器将加密的文本编码为字符串表示形式,以便我们可以以字符串格式(字节数组)发送加密的文本或密文。

如果密码盐是众所周知的,可以吗? 
与IV相同,并且可以公开知道密码盐,唯一的秘诀就是密钥,并对其进行保密和保密。

EncryptorAesGcmPassword.java

  1. package com.mkyong.crypto.encryptor;
  2.  
  3. import com.mkyong.crypto.utils.CryptoUtils;
  4.  
  5. import javax.crypto.Cipher;
  6. import javax.crypto.SecretKey;
  7. import javax.crypto.spec.GCMParameterSpec;
  8. import java.nio.ByteBuffer;
  9. import java.nio.charset.Charset;
  10. import java.nio.charset.StandardCharsets;
  11. import java.util.Base64;
  12.  
  13. /**
  14.  * AES-GCM inputs - 12 bytes IV, need the same IV and secret keys for encryption and decryption.
  15.  * <p>
  16.  * The output consist of iv, password's salt, encrypted content and auth tag in the following format:
  17.  * output = byte[] {i i i s s s c c c c c c ...}
  18.  * <p>
  19.  * i = IV bytes
  20.  * s = Salt bytes
  21.  * c = content bytes (encrypted content)
  22.  */
  23. public class EncryptorAesGcmPassword {
  24.  
  25.     private static final String ENCRYPT_ALGO = "AES/GCM/NoPadding";
  26.  
  27.     private static final int TAG_LENGTH_BIT = 128; // must be one of {128, 120, 112, 104, 96}
  28.     private static final int IV_LENGTH_BYTE = 12;
  29.     private static final int SALT_LENGTH_BYTE = 16;
  30.     private static final Charset UTF_8 = StandardCharsets.UTF_8;
  31.  
  32.     // return a base64 encoded AES encrypted text
  33.     public static String encrypt(byte[] pText, String password) throws Exception {
  34.  
  35.         // 16 bytes salt
  36.         byte[] salt = CryptoUtils.getRandomNonce(SALT_LENGTH_BYTE);
  37.  
  38.         // GCM recommended 12 bytes iv?
  39.         byte[] iv = CryptoUtils.getRandomNonce(IV_LENGTH_BYTE);
  40.  
  41.         // secret key from password
  42.         SecretKey aesKeyFromPassword = CryptoUtils.getAESKeyFromPassword(password.toCharArray(), salt);
  43.  
  44.         Cipher cipher = Cipher.getInstance(ENCRYPT_ALGO);
  45.  
  46.         // ASE-GCM needs GCMParameterSpec
  47.         cipher.init(Cipher.ENCRYPT_MODE, aesKeyFromPassword, new GCMParameterSpec(TAG_LENGTH_BIT, iv));
  48.  
  49.         byte[] cipherText = cipher.doFinal(pText);
  50.  
  51.         // prefix IV and Salt to cipher text
  52.         byte[] cipherTextWithIvSalt = ByteBuffer.allocate(iv.length + salt.length + cipherText.length)
  53.                 .put(iv)
  54.                 .put(salt)
  55.                 .put(cipherText)
  56.                 .array();
  57.  
  58.         // string representation, base64, send this string to other for decryption.
  59.         return Base64.getEncoder().encodeToString(cipherTextWithIvSalt);
  60.  
  61.     }
  62.  
  63.     // we need the same password, salt and iv to decrypt it
  64.     private static String decrypt(String cText, String password) throws Exception {
  65.  
  66.         byte[] decode = Base64.getDecoder().decode(cText.getBytes(UTF_8));
  67.  
  68.         // get back the iv and salt from the cipher text
  69.         ByteBuffer bb = ByteBuffer.wrap(decode);
  70.  
  71.         byte[] iv = new byte[IV_LENGTH_BYTE];
  72.         bb.get(iv);
  73.  
  74.         byte[] salt = new byte[SALT_LENGTH_BYTE];
  75.         bb.get(salt);
  76.  
  77.         byte[] cipherText = new byte[bb.remaining()];
  78.         bb.get(cipherText);
  79.  
  80.         // get back the aes key from the same password and salt
  81.         SecretKey aesKeyFromPassword = CryptoUtils.getAESKeyFromPassword(password.toCharArray(), salt);
  82.  
  83.         Cipher cipher = Cipher.getInstance(ENCRYPT_ALGO);
  84.  
  85.         cipher.init(Cipher.DECRYPT_MODE, aesKeyFromPassword, new GCMParameterSpec(TAG_LENGTH_BIT, iv));
  86.  
  87.         byte[] plainText = cipher.doFinal(cipherText);
  88.  
  89.         return new String(plainText, UTF_8);
  90.  
  91.     }
  92.  
  93.     public static void main(String[] args) throws Exception {
  94.  
  95.         String OUTPUT_FORMAT = "%-30s:%s";
  96.         String PASSWORD = "this is a password";
  97.         String pText = "AES-GSM Password-Bases encryption!";
  98.  
  99.         String encryptedTextBase64 = EncryptorAesGcmPassword.encrypt(pText.getBytes(UTF_8), PASSWORD);
  100.  
  101.         System.out.println("\n------ AES GCM Password-based Encryption ------");
  102.         System.out.println(String.format(OUTPUT_FORMAT, "Input (plain text)", pText));
  103.         System.out.println(String.format(OUTPUT_FORMAT, "Encrypted (base64) ", encryptedTextBase64));
  104.  
  105.         System.out.println("\n------ AES GCM Password-based Decryption ------");
  106.         System.out.println(String.format(OUTPUT_FORMAT, "Input (base64)", encryptedTextBase64));
  107.  
  108.         String decryptedText = EncryptorAesGcmPassword.decrypt(encryptedTextBase64, PASSWORD);
  109.         System.out.println(String.format(OUTPUT_FORMAT, "Decrypted (plain text)", decryptedText));
  110.  
  111.     }
  112.  
  113. }

  1. package com.mkyong.crypto.encryptor;

输出量

Terminal

  1. ------ AES GCM Password-based Encryption ------
  2. Input (plain text)            :AES-GSM Password-Bases encryption!
  3. Encrypted (base64)            :KmrvjnMusJTQo/hB7T5BvlQpvi3bVbdjpZP51NT7I/enrIfSQuDfSK6iXgdPzvUP2IE54mwrKiyHqMkG8224lRZ9tXHcclmdh98I8b3B
  4.  
  5. ------ AES GCM Password-based Decryption ------
  6. Input (base64)                :KmrvjnMusJTQo/hB7T5BvlQpvi3bVbdjpZP51NT7I/enrIfSQuDfSK6iXgdPzvUP2IE54mwrKiyHqMkG8224lRZ9tXHcclmdh98I8b3B
  7. Decrypted (plain text)        :AES-GSM Password-Bases encryption!

  1. ------ AES GCM Password-based Encryption ------

3.2如果密码不匹配,Java会抛出AEADBadTagException: Tag mismatch!

  1. // change the password to something else
  2.   String decryptedText = EncryptorAesGcmPassword.decrypt(encryptedTextBase64, "other password");
  3.   System.out.println(String.format(OUTPUT_FORMAT, "Decrypted (plain text)", decryptedText));

  1. // change the password to something else

输出量

Terminal

  1. Exception in thread "main" javax.crypto.AEADBadTagException: Tag mismatch!
  2.   at java.base/com.sun.crypto.provider.GaloisCounterMode.decryptFinal(GaloisCounterMode.java:623)
  3.   at java.base/com.sun.crypto.provider.CipherCore.finalNoPadding(CipherCore.java:1118)
  4.   at java.base/com.sun.crypto.provider.CipherCore.fillOutputBuffer(CipherCore.java:1055)
  5.   at java.base/com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:855)
  6.   at java.base/com.sun.crypto.provider.AESCipher.engineDoFinal(AESCipher.java:446)
  7.   at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2207)
  8.   at com.mkyong.crypto.encryptor.EncryptorAesGcmPassword.decrypt(EncryptorAesGcmPassword.java:88)
  9.   at com.mkyong.crypto.encryptor.EncryptorAesGcmPassword.main(EncryptorAesGcmPassword.java:109)

  1. Exception in thread "main" javax.crypto.AEADBadTagException: Tag mismatch!

4. AES文件加密和解密。

此示例是基于AES密码的文件加密。 想法是相同的,但是我们需要一些IO类来处理资源或文件。

这是resources文件夹中的文本文件。

readme.txt

  1. This is line 1.
  2. This is line 2.
  3. This is line 3.
  4. This is line 4.
  5. This is line 5.
  6. This is line 9.
  7. This is line 10.

  1. This is line 1.

4.1此示例类似于3.1 EncryptorAesGcmPassword.java ,但有一些小的更改,例如返回byte[]而不是base64编码的字符串。

  1. public static byte[] encrypt(byte[] pText, String password) throws Exception {
  2.  
  3.         //...
  4.  
  5.         // prefix IV and Salt to cipher text
  6.         byte[] cipherTextWithIvSalt = ByteBuffer.allocate(iv.length + salt.length + cipherText.length)
  7.                 .put(iv)
  8.                 .put(salt)
  9.                 .put(cipherText)
  10.                 .array();
  11.  
  12.         // it works, even if we save the based64 encoded string into a file.
  13.         // return Base64.getEncoder().encodeToString(cipherTextWithIvSalt);
  14.  
  15.         // we save the byte[] into a file.
  16.         return cipherTextWithIvSalt;
  17.  
  18.     }

  1. public static byte[] encrypt(byte[] pText, String password) throws Exception {

添加encryptFiledecryptFile工作与文件。

  1. public static void encryptFile(String fromFile, String toFile, String password) throws Exception {
  2.  
  3.         // read a normal txt file
  4.         byte[] fileContent = Files.readAllBytes(Paths.get(ClassLoader.getSystemResource(fromFile).toURI()));
  5.  
  6.         // encrypt with a password
  7.         byte[] encryptedText = EncryptorAesGcmPasswordFile.encrypt(fileContent, password);
  8.  
  9.         // save a file
  10.         Path path = Paths.get(toFile);
  11.  
  12.         Files.write(path, encryptedText);
  13.  
  14.     }
  15.  
  16.     public static byte[] decryptFile(String fromEncryptedFile, String password) throws Exception {
  17.  
  18.         // read a file
  19.         byte[] fileContent = Files.readAllBytes(Paths.get(fromEncryptedFile));
  20.  
  21.         return EncryptorAesGcmPasswordFile.decrypt(fileContent, password);
  22.  
  23.     }

  1. public static void encryptFile(

4.2从类路径中读取以上readme.txt文件,对其进行加密,然后将加密的数据保存到新文件c:\test\readme.encrypted.txt 。

  1. String password = "password123";
  2.   String fromFile = "readme.txt"; // from resources folder
  3.   String toFile = "c:\\test\\readme.encrypted.txt";
  4.  
  5.   // encrypt file
  6.   EncryptorAesGcmPasswordFile.encryptFile(fromFile, toFile, password);

  1. String password = "password123";

输出量

AES文件加密

4.3读取加密的文件,解密并打印输出。

  1. String password = "password123";
  2.   String toFile = "c:\\test\\readme.encrypted.txt";
  3.  
  4.   // decrypt file
  5.   byte[] decryptedText = EncryptorAesGcmPasswordFile.decryptFile(toFile, password);
  6.   String pText = new String(decryptedText, UTF_8);
  7.   System.out.println(pText);

  1. String password = "password123";

输出量

Terminal

  1. This is line 1.
  2. This is line 2.
  3. This is line 3.
  4. This is line 4.
  5. This is line 5.
  6. This is line 9.
  7. This is line 10.

  1. This is line 1.

PS AES图像加密是相同的概念。

下载源代码

$ git clone https://github.com/mkyong/core-java

$ cd java-crypto

让我知道文章是否需要改进。 谢谢。

参考文献

翻译自: Java AES encryption and decryption - Mkyong.com 

声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/小蓝xlanll/article/detail/176597?site
推荐阅读
相关标签

Copyright © 2003-2013 www.wpsshop.cn 版权所有,并保留所有权利。

  

闽ICP备14008679号