我正在开发客户端-服务器应用程序。我必须使用非对称密码学。客户端对其消息进行加密并创建数字签名。
我将消息和签名存储在 vector 中,并将该 vector 发送到服务器。 服务器接收这个 vector 。
在服务器端,首先我检查签名以查看服务器是否与正确的客户端通信,当签名良好时,我尝试解密消息,但解密的结果不好。 问题仅涉及加密/解密,其余代码没有问题。
客户端:
private void payActionPerformed(java.awt.event.ActionEvent evt) {
DataInputStream dis = new DataInputStream(s.getInputStream());
ObjectOutputStream dos = new ObjectOutputStream(s.getOutputStream());
Cipher encryptCipher = Cipher.getInstance("RSA");
encryptCipher.init(Cipher.ENCRYPT_MODE, publicKey);
byte[] message = concatMess.getBytes("UTF-8");
cipherText = encryptCipher.doFinal(message);
texteCrypteStr= Base64.getEncoder().encodeToString(cipherText);
System.out.println("MESSAGE: "+cipherText);
//SIGNATURE DU MESSAGE
Signature signature = Signature.getInstance("SHA1withRSA","BC");
System.out.println("Initialisation de la signature");
signature.initSign(keyPri);
System.out.println("Hachage du message");
signature.update(cipherText);
System.out.println("Generation des bytes");
bytesign = signature.sign();
String texteSignStr= Base64.getEncoder().encodeToString(bytesign);
System.out.println("CLIENT SIGNATURE: "+texteSignStr);
Vector vecByte = new Vector();
vecByte.add(bytesign);
vecByte.add(cipherText);
dos.writeObject(vecByte);
received = dis.readUTF();
}
服务器端:
public class PaiementHandler{
Vector<byte[]> receivedVec = new Vector<byte[]>();
String toreturn;
receivedVec = ((Vector)disr.readObject());
System.out.println("v1 "+receivedVec.get(0));
System.out.println("v2 "+receivedVec.get(1));
Vector<String> received = null;
//RECUPERATION CLE PUBLIQUE
KeyStore ksv = null;
ksv = KeyStore.getInstance("PKCS12", "BC");
ksv.load(new FileInputStream("C:\\Users\\user\\Desktop\\KEYSTORE\\keystore.p12"),"gogo".toCharArray());
System.out.println("Recuperation du certificat");
X509Certificate certif = (X509Certificate)ksv.getCertificate("toto");
System.out.println("Recuperation de la cle publique");
PublicKey publicKey = certif.getPublicKey();
//VERIFICATION DE LA SIGNATURE
System.out.println("\nVérification de la signature");
System.out.println("*** Cle publique recuperee = "+publicKey.toString());
System.out.println("Debut de verification de la signature construite");
Signature signature = Signature.getInstance("SHA1withRSA", "BC");
signature.initVerify(publicKey);
signature.update(receivedVec.get(1));
System.out.println("Verification de la signature construite");
boolean ok = signature.verify(receivedVec.get(0));
if(ok){
System.out.println("signature verified with success");
//DECHIFFREMENT DU MESSAGE
try{
Cipher dechiffrement = Cipher.getInstance("RSA", "BC");
dechiffrement.init(Cipher.DECRYPT_MODE,publicKey);
System.out.println("AVANT DECH");
byte[] texteDecode = dechiffrement.doFinal(receivedVec.get(1));
String texteDecodeStr = new String(texteDecode, "UTF-8");
System.out.println("Vecteur: "+texteDecodeStr);
}
}
这是客户端发送到服务器的消息:“2222-2222-2222.30 3 1 1 2019-07-30 2019-07-31 90 40”。因此,该消息被加密并与客户端签名一起以 vector 形式发送到服务器(它们都是 byte[])。
服务器接收到这个 vector ,它首先检查签名,如果没问题则解密消息。 这是翻译成字符串后的解密结果:
��u�5�&�]��{��^��S?u2_��l��i������������b#��fCA�5��Ri,&P �T��3�4��:���Rm���~�W���DG��ga�i���vR
我不明白为什么我会得到这个结果...... 我正在尝试像这个网站那样编码 https://www.devglan.com/online-tools/rsa-encryption-decryption但不知道问题出在哪里
最佳答案
我找到了解决方案:https://gist.github.com/nielsutrecht/855f3bef0cf559d8d23e94e2aecd4ede
我必须将加密消息的结果编码为 Base64 并在解密之前对其进行解码。
客户端:
Cipher encryptCipher = Cipher.getInstance("RSA/ECB/OAEPWithSHA-1AndMGF1Padding");
encryptCipher.init(Cipher.ENCRYPT_MODE, publicKey);
String concatMess="";
int k = 0;
while(k<vec.size()){
concatMess+=vec.get(k);
if(k+1<vec.size())
concatMess+="!";
k+=1;
}
System.out.println("VECTOR:"+concatMess);
byte[] message = concatMess.getBytes(StandardCharsets.UTF_8);
cipherText = encryptCipher.doFinal(message);
System.out.println("MESSAGE byte: "+cipherText);
cipherTextString = Base64.getEncoder().encodeToString(cipherText);
服务器端:
Cipher dechiffrement = Cipher.getInstance("RSA/ECB/OAEPWithSHA-1AndMGF1Padding", "BC");
dechiffrement.init(Cipher.DECRYPT_MODE,keyPri);
System.out.println("AVANT DECH");
byte[] texteDecode = dechiffrement.doFinal(Base64.getDecoder().decode((String)receivedVec.get(1)));
String texteDecodeStr = new String(texteDecode, StandardCharsets.UTF_8);
感谢这个解决方案,我得到了正确的消息。 感谢您的建议和解释。
关于java - 在服务器端解密加密消息,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/57261530/