.NET下對二進制文件進行加密解密（C#）

下面的類實現了文件的加密和解密操作，試驗了幾種文件類型均沒有問題，現在和大家共享一下。

namespace MyCryptoHelp
{
 /// <summary>
 /// 異常處理類
 /// </summary>
 public class CryptoHelpException : ApplicationException
 {
  public CryptoHelpException(string msg):base(msg){}
 }

 /// <summary>
 /// CryptHelp
 /// </summary>
 public class CryptoHelp
 {
  private const ulong FC_TAG = 0xFC010203040506CF;

  private const int BUFFER_SIZE = 128*1024;
 
  /// <summary>
  /// 檢驗兩個Byte數組是否相同
  /// </summary>
  /// <param name="b1">Byte數組</param>
  /// <param name="b2">Byte數組</param>
  /// <returns>true－相等</returns>
  private static bool CheckByteArrays(byte[] b1, byte[] b2)
  {
   if(b1.Length == b2.Length)
   {
    for(int i = 0; i < b1.Length; ++i)
    {
     if(b1[i] != b2[i])
      return false;
    }
    return true;
   }
   return false;
  }

  /// <summary>
  /// 創建Rijndael SymmetricAlgorithm
  /// </summary>
  /// <param name="password">密碼</param>
  /// <param name="salt"></param>
  /// <returns>加密對象</returns>
  private static SymmetricAlgorithm CreateRijndael(string password, byte[] salt)
  {
   PasswordDeriveBytes pdb = new PasswordDeriveBytes(password,salt,"SHA256",1000);
  
   SymmetricAlgorithm sma = Rijndael.Create();
   sma.KeySize = 256;
   sma.Key = pdb.GetBytes(32);
   sma.Padding = PaddingMode.PKCS7;
   return sma;
  }

  /// <summary>
  /// 加密文件隨機數生成
  /// </summary>
  private static RandomNumberGenerator rand = new RNGCryptoServiceProvider();

  /// <summary>
  /// 生成指定長度的隨機Byte數組
  /// </summary>
  /// <param name="count">Byte數組長度</param>
  /// <returns>隨機Byte數組</returns>
  private static byte[] GenerateRandomBytes(int count)
  {
   byte[] bytes = new byte[count];
   rand.GetBytes(bytes);
   return bytes;
  }

  /// <summary>
  /// 加密文件
  /// </summary>
  /// <param name="inFile">待加密文件</param>
  /// <param name="outFile">加密後輸入文件</param>
  /// <param name="password">加密密碼</param>
  public static void EncryptFile(string inFile, string outFile, string password)
  {
   using(FileStream fin = File.OpenRead(inFile),
       fout = File.OpenWrite(outFile))
   {
    long lSize = fin.Length; // 輸入文件長度
    int size = (int)lSize;
    byte[] bytes = new byte[BUFFER_SIZE]; // 緩存
    int read = -1; // 輸入文件讀取數量
    int value = 0;
   
    // 獲取IV和salt
    byte[] IV = GenerateRandomBytes(16);
    byte[] salt = GenerateRandomBytes(16);
   
    // 創建加密對象
    SymmetricAlgorithm sma = CryptoHelp.CreateRijndael(password, salt);
    sma.IV = IV;  
   
    // 在輸出文件開始部分寫入IV和salt
    fout.Write(IV,0,IV.Length);
    fout.Write(salt,0,salt.Length);
   
    // 創建散列加密
    HashAlgorithm hasher = SHA256.Create();
    using(CryptoStream cout = new CryptoStream(fout,sma.CreateEncryptor(),CryptoStreamMode.Write),
        chash = new CryptoStream(Stream.Null,hasher,CryptoStreamMode.Write))
    {
     BinaryWriter bw = new BinaryWriter(cout);
     bw.Write(lSize);
    
     bw.Write(FC_TAG);

     // 讀寫字節塊到加密流緩衝區
     while( (read = fin.Read(bytes,0,bytes.Length)) != 0 )
     {
      cout.Write(bytes,0,read);
      chash.Write(bytes,0,read);
      value += read;
     }
     // 關閉加密流
     chash.Flush();
     chash.Close();

     // 讀取散列
     byte[] hash = hasher.Hash;
    
     // 輸入文件寫入散列
     cout.Write(hash,0,hash.Length);

     // 關閉文件流
     cout.Flush();
     cout.Close();
    }
   }
  }

  /// <summary>
  /// 解密文件
  /// </summary>
  /// <param name="inFile">待解密文件</param>
  /// <param name="outFile">解密後輸出文件</param>
  /// <param name="password">解密密碼</param>
  public static void DecryptFile(string inFile, string outFile, string password)
  {
   // 創建打開文件流
   using(FileStream fin = File.OpenRead(inFile),
       fout = File.OpenWrite(outFile))
   {
    int size = (int)fin.Length;
    byte[] bytes = new byte[BUFFER_SIZE];
    int read = -1;
    int value = 0;
    int outValue = 0;

    byte[] IV = new byte[16];
    fin.Read(IV,0,16);
    byte[] salt = new byte[16];
    fin.Read(salt,0,16);
   
    SymmetricAlgorithm sma = CryptoHelp.CreateRijndael(password,salt);
    sma.IV = IV;

    value = 32;
    long lSize = -1;
   
    // 創建散列對象, 校驗文件
    HashAlgorithm hasher = SHA256.Create();

    using(CryptoStream cin = new CryptoStream(fin,sma.CreateDecryptor(),CryptoStreamMode.Read),
        chash = new CryptoStream(Stream.Null,hasher,CryptoStreamMode.Write))
    {
     // 讀取文件長度
     BinaryReader br = new BinaryReader(cin);
     lSize = br.ReadInt64();
     ulong tag = br.ReadUInt64();
    
     if(FC_TAG != tag)
      throw new CryptoHelpException("文件被破壞");
    
     long numReads = lSize / BUFFER_SIZE;

     long slack = (long)lSize % BUFFER_SIZE;
    
     for(int i = 0; i < numReads; ++i)
     {
      read = cin.Read(bytes,0,bytes.Length);
      fout.Write(bytes,0,read);
      chash.Write(bytes,0,read);
      value += read;
      outValue += read;
     }
if(slack > 0)
     {
      read = cin.Read(bytes,0,(int)slack);
      fout.Write(bytes,0,read);
      chash.Write(bytes,0,read);
      value += read;
      outValue += read;
     }

     chash.Flush();
     chash.Close();

     fout.Flush();
     fout.Close();

     byte[] curHash = hasher.Hash;

     // 獲取比較和舊的散列對象
     byte[] oldHash = new byte[hasher.HashSize / 8];
     read = cin.Read(oldHash,0,oldHash.Length);
     if((oldHash.Length != read) || (!CheckByteArrays(oldHash,curHash)))
      throw new CryptoHelpException("文件被破壞");
    }
   
    if(outValue != lSize)
     throw new CryptoHelpException("文件大小不匹配");
   }
  }
 }
}

// 調用

public class TestClass
{
    string myPassword = "TEST_PASSWORD_~!@#";
    string myPlainFile = "test.txt";
    string myEncryptedFile = "test.encrypted";
    string myDecryptedFile = "test.decrypted";

    [STAThread]
    static void Main()
    {
        CryptoHelp.EncryptFile(myPlainFile, myEncryptedFile, myPassword);
        CryptoHelp.DecryptFile(myEncryptedFile,myDecryptedFile, myPassword);
    }
}