import java.security.Security;
import java.util.Random;
import javax.crypto.Cipher;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import sun.misc.BASE64Decoder;
import sun.misc.BASE64Encoder;
public class AES128Util {
public static void main(String[] args) throws Exception {
/*
* 加密用的Key 可以用26個字母和數字組成,最好不要用保留字符,雖然不會錯,至於怎麼裁決,個人看情況而定
* 此處使用AES-128-CBC加密模式,key需要爲16位。
*/
String iv = getRandomIVHexString();
String cKey = "T5DFG58SFETGD2ET";
// 需要加密的字串
String cSrc = "q";
System.out.println(cSrc);
System.out.println(iv);
// 加密
String enString = Encrypt(cSrc, cKey, iv);
System.out.println("加密後的字串是:" + enString);
// 解密
String DeString = Decrypt(enString, cKey, iv);
System.out.println("解密後的字串是:" + DeString);
}
/**
* 128安全隨機數(16位偏移量)
*
* @return
* @throws Exception
*/
public static String getRandomIVHexString() throws Exception {
String base = "0123456789abcdef";
Random random = new Random();
StringBuffer code = new StringBuffer();
for (int i = 0; i < 16; i++) {
int number = random.nextInt(base.length());
code.append(base.charAt(number));
}
return code.toString();
}
/**
* 加密:獲得一個24位密文
*
* @param sSrc
* 加密字符串
* @param sKey
* 密鑰
* @param sIv
* 加密字符偏移量
* @return
* @throws Exception
*/
public static String Encrypt(String sKey, String sSrc, String sIv) throws Exception {
byte[] raw = sKey.getBytes();
byte[] ivbyte = sIv.getBytes();
SecretKeySpec skeySpec = new SecretKeySpec(raw, "AES");
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS7Padding");// "算法/模式/補碼方式"
// IvParameterSpec iv = new
// IvParameterSpec("0102030405060708".getBytes());
// 使用CBC模式,需要一個向量iv,可增加加密算法的強度
cipher.init(Cipher.ENCRYPT_MODE, skeySpec, new IvParameterSpec(ivbyte));
byte[] encrypted = cipher.doFinal(sSrc.getBytes());
return new BASE64Encoder().encode(encrypted);// 此處使用BASE64做轉碼功能,同時能起到2次加密的作用。
}
/**
* 解密
*
* @param sSrc
* @param sKey
* @return
* @throws Exception
*/
public static String Decrypt(String sSrc, String sKey, String sIv) throws Exception {
try {
byte[] raw = sKey.getBytes("ASCII");
byte[] ivbyte = sIv.getBytes();
SecretKeySpec skeySpec = new SecretKeySpec(raw, "AES");
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS7Padding");
cipher.init(Cipher.DECRYPT_MODE, skeySpec, new IvParameterSpec(ivbyte));
byte[] encrypted1 = new BASE64Decoder().decodeBuffer(sSrc);// 先用base64解密
try {
byte[] original = cipher.doFinal(encrypted1);
String originalString = new String(original);
return originalString;
} catch (Exception e) {
System.out.println(e.toString());
return null;
}
} catch (Exception ex) {
System.out.println(ex.toString());
return null;
}
}
}
import java.io.UnsupportedEncodingException;
import java.security.Security;
import java.util.Arrays;
import java.util.Random;
import javax.crypto.Cipher;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
/**
* Description: AES128-CBC模式加密
*/
public class AESUtil{
/**
* 256安全隨機數(32位偏移量)
* @return
* @throws Exception
*/
public static String getRandomIVHexString() throws Exception
{
String base = "0123456789abcdef";
Random random = new Random();
StringBuffer code = new StringBuffer();
for (int i = 0; i < 32; i++)
{
int number = random.nextInt(base.length());
code.append(base.charAt(number));
}
return code.toString();
/*logger.info("start getRandomIVHexString...");
KeyGenerator kgen = KeyGenerator.getInstance("AES");
logger.info("start getRandomIVHexString... 1");
SecureRandom sr = SecureRandom.getInstance("SHA1PRNG");
logger.info("start getRandomIVHexString... 2");
sr.setSeed(SecureRandom.getInstance("SHA1PRNG").generateSeed(128));
logger.info("start getRandomIVHexString... 3");
kgen.init(128, sr); // 192 and 256 bits may not be available
logger.info("start getRandomIVHexString... 4");
SecretKey skey = kgen.generateKey();
logger.info("start getRandomIVHexString... 5");
byte[] raw = skey.getEncoded();
logger.info("start getRandomIVHexString... 6");
return toHex(raw);// 十六進制表示
*/ }
/**
* 描述:加密接口(32位偏移量)獲得一個64位密文
*
* @param sSrc
* :加密字符串
* @param sKey
* :密鑰
* @param sIv
* 加密字符偏移量
* @return:密文,十六進制表示
* @throws Exception
*/
public static String encrypt(String sSrc, String sKey,
String sIv) throws Exception
{
byte[] srcByte = sSrc.getBytes();
byte[] ivByte = toByte(sIv);
byte[] result = encrypt(sKey, srcByte, ivByte);
return toHex(result);// 轉化爲十六進制傳輸
}
// android自帶的加密流程
private static byte[] encrypt(String sKey, byte[] srcByte, byte[] ivByte)
throws Exception
{
SecretKeySpec skeySpec = getKey(sKey);
Security.addProvider(new com.sun.crypto.provider.SunJCE());
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS7Padding");
cipher.init(Cipher.ENCRYPT_MODE, skeySpec, new IvParameterSpec(ivByte));
byte[] encrypted = cipher.doFinal(srcByte);
return encrypted;
}
private static SecretKeySpec getKey(String sKey)
throws UnsupportedEncodingException
{
int keyLength = 128;
byte[] keyBytes = new byte[keyLength / 8];
Arrays.fill(keyBytes, (byte) 0x0);
byte[] sKeyBytes = sKey.getBytes();
// Log.d(TAG, "sKeyBytes: " + sKeyBytes.length + ", keyBytes: "
// + keyBytes.length);
int length = sKeyBytes.length < keyBytes.length ?sKeyBytes.length
: keyBytes.length;
System.arraycopy(sKeyBytes, 0, keyBytes, 0, length);
SecretKeySpec key = new SecretKeySpec(keyBytes, "AES");
return key;
}
private static byte[] toByte(String hexString)
{
int len = hexString.length() / 2;
byte[] result = new byte[len];
for (int i = 0; i < len; i++)
{
result[i] = Integer.valueOf(hexString.substring(2 * i, 2 * i + 2),
16).byteValue();
}
return result;
}
private static String toHex(byte[] buf)
{
if (buf == null)
{
return "";
}
StringBuffer result = new StringBuffer(2 * buf.length);
for (int i = 0; i < buf.length; i++)
{
appendHex(result, buf[i]);
}
return result.toString();
}
private static void appendHex(StringBuffer result, int b)
{
if (b < 0)
{
b += 256;
}
if (b < 16)
{
result.append("0");
}
result.append(Integer.toHexString(b));
}
}