三方只要在編碼方式,key,vi中設置同樣,就能夠進行跨語言加密解密,java
首先是java ,Base64我這裏是使用的org.apache.commons算法
- package com.jueyue.crypto;
-
- import javax.crypto.Cipher;
- import javax.crypto.spec.IvParameterSpec;
- import javax.crypto.spec.SecretKeySpec;
-
- import org.apache.commons.codec.binary.BAES64;
-
-
-
- public class AES {
-
-
- public static String Encrypt(String sSrc, String sKey) throws Exception {
- if (sKey == null) {
- System.out.print("Key爲空null");
- return null;
- }
-
- if (sKey.length() != 16) {
- System.out.print("Key長度不是16位");
- return null;
- }
- byte[] raw = sKey.getBytes();
- SecretKeySpec skeySpec = new SecretKeySpec(raw, "AES");
- Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
- IvParameterSpec iv = new IvParameterSpec("0102030405060708".getBytes());
- cipher.init(Cipher.ENCRYPT_MODE, skeySpec, iv);
- byte[] encrypted = cipher.doFinal(sSrc.getBytes());
-
- return BAES64.encodeBAES64String(encrypted);
- }
-
-
- public static String Decrypt(String sSrc, String sKey) throws Exception {
- try {
-
- if (sKey == null) {
- System.out.print("Key爲空null");
- return null;
- }
-
- if (sKey.length() != 16) {
- System.out.print("Key長度不是16位");
- return null;
- }
- byte[] raw = sKey.getBytes("ASCII");
- SecretKeySpec skeySpec = new SecretKeySpec(raw, "AES");
- Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
- IvParameterSpec iv = new IvParameterSpec("0102030405060708"
- .getBytes());
- cipher.init(Cipher.DECRYPT_MODE, skeySpec, iv);
- byte[] encrypted1 = BAES64.decodeBAES64(sSrc);
- try {
- byte[] original = cipher.doFinal(encrypted1);
- String originalString = new String(original);
- return originalString;
- } catch (Exception e) {
- System.out.println(e.toString());
- return null;
- }
- } catch (Exception ex) {
- System.out.println(ex.toString());
- return null;
- }
- }
-
-
- }
接着是as的加密實現,是使用的as3crypto.swc的架包apache
代碼以下:session
- package util
- {
- import com.hurlant.crypto.symmetric.CBCMode;
- import com.hurlant.crypto.symmetric.DESKey;
-
- import flash.utils.ByteArray;
-
- import mx.utils.Base64Decoder;
- import mx.utils.Base64Encoder;
-
-
- public class EncryptionUtil
- {
- public function EncryptionUtil()
- {
- }
-
- static public function encryption(str:String):String{
- if(!str||str.length==0){return "";}
- var key:ByteArray= new ByteArray();
- key.writeUTFBytes("0102030405060708");
- var iv:ByteArray= new ByteArray();
- iv.writeUTFBytes("0102030405060708");
- var des:DESKey=new DESKey(key);
- var cbc:CBCMode = new CBCMode(des);
- cbc.IV = iv;
- var tmpByteArray:ByteArray=convertStringToByteArray(str);
- cbc.encrypt(tmpByteArray);
- var $base64:Base64Encoder = new Base64Encoder();
- $base64.insertNewLines = false;
- $base64.encodeBytes(tmpByteArray);
- return $base64.toString();
- }
-
- static public function decryption(str:String):String{
- if(!str||str.length==0){return "";}
- var key:ByteArray= new ByteArray();
- key.writeUTFBytes("0102030405060708");
- var iv:ByteArray= new ByteArray();
- iv.writeUTFBytes("0102030405060708");
- var des:DESKey=new DESKey(key);
- var cbc:CBCMode = new CBCMode(des);
- cbc.IV = iv;
- var $base64D:Base64Decoder = new Base64Decoder();
- $base64D.decode(str);
- var tmpByteArray:ByteArray =$base64D.toByteArray();
- cbc.decrypt(tmpByteArray);
- return convertByteArrayToString(tmpByteArray);
- }
- static private function convertStringToByteArray(str:String):ByteArray
- {
- var bytes:ByteArray;
- if (str)
- {
- bytes=new ByteArray();
- bytes.writeUTFBytes(str);
- }
- return bytes;
- }
- static private function convertByteArrayToString(bytes:ByteArray):String
- {
- var str:String;
- if (bytes)
- {
- bytes.position=0;
- str=bytes.readUTFBytes(bytes.length);
- }
- return str;
- }
- }
- }
最後是js的實現,js是用的CryptoJS這個包,這個搞了很久,就由於srcs沒有轉碼,仍是要細心 呀 編碼
- function Encrypt(word){
- var key = CryptoJS.enc.Utf8.parse("0102030405060708");
- var iv = CryptoJS.enc.Utf8.parse('0102030405060708');
- var srcs = CryptoJS.enc.Utf8.parse(word);
- var encrypted = CryptoJS.AES.encrypt(srcs, key, { iv: iv,mode:CryptoJS.mode.CBC});
- return encrypted.toString();
- }
- function Decrypt(word){
- var key = CryptoJS.enc.Utf8.parse("0102030405060708");
- var iv = CryptoJS.enc.Utf8.parse('0102030405060708');
- var decrypt = CryptoJS.AES.decrypt(word, key, { iv: iv,mode:CryptoJS.mode.CBC});
- return CryptoJS.enc.Utf8.stringify(decrypt).toString();
- }
本身也想了很久,這個key如何設置,若是設置簡單的,固定的那麼就和沒有加密同樣,由於本身基本上沒有涉及過這個領域,想了一個就是session來做爲key,緣由是key是單一的,並且不是固定的,這樣給破解就加了必定的困難,可是session,能不能在流中被截取,因此可使用session中的某些值,在即這添加一些,做爲key就能夠基本上保證,在半路不會被破解了加密
轉自:http://jueyue.iteye.com/blog/1830792url