http://www.jexp.ru/index.php?action=history&feed=atom&title=Java_Tutorial%2FSecurity%2FAdvanced_Encryption_Standard
Java Tutorial/Security/Advanced Encryption Standard - История изменений
2026-04-19T08:30:18Z
История изменений этой страницы в вики
MediaWiki 1.30.0
http://www.jexp.ru/index.php?title=Java_Tutorial/Security/Advanced_Encryption_Standard&diff=4304&oldid=prev
Admin: 1 версия
2010-06-01T05:01:30Z
<p>1 версия</p>
<table class="diff diff-contentalign-left" data-mw="interface">
<tr style="vertical-align: top;" lang="ru">
<td colspan="1" style="background-color: white; color:black; text-align: center;">← Предыдущая</td>
<td colspan="1" style="background-color: white; color:black; text-align: center;">Версия 05:01, 1 июня 2010</td>
</tr><tr><td colspan="2" style="text-align: center;" lang="ru"><div class="mw-diff-empty">(нет различий)</div>
</td></tr></table>
Admin
http://www.jexp.ru/index.php?title=Java_Tutorial/Security/Advanced_Encryption_Standard&diff=4303&oldid=prev
в 17:44, 31 мая 2010
2010-05-31T17:44:27Z
<p></p>
<p><b>Новая страница</b></p><div>== AES Key generator ==<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<!-- start source code --><br />
<br />
<source lang="java"><br />
import java.security.Key;<br />
import java.security.Security;<br />
import javax.crypto.Cipher;<br />
import javax.crypto.KeyGenerator;<br />
public class MainClass {<br />
public static void main(String[] args) throws Exception {<br />
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());<br />
KeyGenerator generator = KeyGenerator.getInstance("AES", "BC");<br />
generator.init(128);<br />
Key keyToBeWrapped = generator.generateKey();<br />
System.out.println("input : " + new String(keyToBeWrapped.getEncoded()));<br />
Cipher cipher = Cipher.getInstance("AESWrap", "BC");<br />
KeyGenerator KeyGen = KeyGenerator.getInstance("AES", "BC");<br />
KeyGen.init(256);<br />
Key wrapKey = KeyGen.generateKey();<br />
cipher.init(Cipher.WRAP_MODE, wrapKey);<br />
byte[] wrappedKey = cipher.wrap(keyToBeWrapped);<br />
System.out.println("wrapped : " + new String(wrappedKey));<br />
cipher.init(Cipher.UNWRAP_MODE, wrapKey);<br />
Key key = cipher.unwrap(wrappedKey, "AES", Cipher.SECRET_KEY);<br />
System.out.println("unwrapped: " + new String(key.getEncoded()));<br />
}<br />
}</source><br />
<br />
<br />
<!-- end source code --><br />
<br />
<br />
<br />
<br />
<br />
== AES wraps RSA ==<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<!-- start source code --><br />
<br />
<source lang="java"><br />
import java.security.Key;<br />
import java.security.KeyPair;<br />
import java.security.KeyPairGenerator;<br />
import java.security.NoSuchAlgorithmException;<br />
import java.security.NoSuchProviderException;<br />
import java.security.SecureRandom;<br />
import java.security.Security;<br />
import javax.crypto.Cipher;<br />
import javax.crypto.KeyGenerator;<br />
import javax.crypto.SecretKey;<br />
public class MainClass {<br />
public static void main(String[] args) throws Exception {<br />
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());<br />
Cipher cipher = Cipher.getInstance("AES/ECB/PKCS7Padding", "BC");<br />
SecureRandom random = new SecureRandom();<br />
KeyPairGenerator fact = KeyPairGenerator.getInstance("RSA", "BC");<br />
fact.initialize(1024, random);<br />
KeyPair keyPair = fact.generateKeyPair();<br />
Key wrapKey = createKeyForAES(256, random);<br />
cipher.init(Cipher.WRAP_MODE, wrapKey);<br />
byte[] wrappedKey = cipher.wrap(keyPair.getPrivate());<br />
cipher.init(Cipher.UNWRAP_MODE, wrapKey);<br />
Key key = cipher.unwrap(wrappedKey, "RSA", Cipher.PRIVATE_KEY);<br />
System.out.println(keyPair.getPrivate().equals(key));<br />
}<br />
public static SecretKey createKeyForAES(int bitLength, SecureRandom random)<br />
throws NoSuchAlgorithmException, NoSuchProviderException {<br />
KeyGenerator generator = KeyGenerator.getInstance("AES", "BC");<br />
generator.init(128, random);<br />
return generator.generateKey();<br />
}<br />
}</source><br />
<br />
<br />
<!-- end source code --><br />
<br />
<br />
<br />
<br />
<br />
== Tampered message, encryption with digest, AES in CTR mode ==<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<!-- start source code --><br />
<br />
<source lang="java"><br />
import java.security.Key;<br />
import java.security.MessageDigest;<br />
import java.security.NoSuchAlgorithmException;<br />
import java.security.NoSuchProviderException;<br />
import java.security.SecureRandom;<br />
import java.security.Security;<br />
import javax.crypto.Cipher;<br />
import javax.crypto.KeyGenerator;<br />
import javax.crypto.SecretKey;<br />
import javax.crypto.spec.IvParameterSpec;<br />
public class MainClass {<br />
public static void main(String[] args) throws Exception {<br />
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());<br />
SecureRandom random = new SecureRandom();<br />
IvParameterSpec ivSpec = createCtrIvForAES(1, random);<br />
Key key = createKeyForAES(256, random);<br />
Cipher cipher = Cipher.getInstance("AES/CTR/NoPadding", "BC");<br />
String input = "12345678";<br />
MessageDigest hash = MessageDigest.getInstance("SHA-1", "BC");<br />
cipher.init(Cipher.ENCRYPT_MODE, key, ivSpec);<br />
byte[] cipherText = new byte[cipher.getOutputSize(input.length() + hash.getDigestLength())];<br />
int ctLength = cipher.update(input.getBytes(), 0, input.length(), cipherText, 0);<br />
hash.update(input.getBytes());<br />
ctLength += cipher.doFinal(hash.digest(), 0, hash.getDigestLength(), cipherText, ctLength);<br />
cipherText[9] ^= "0" ^ "9";<br />
cipher.init(Cipher.DECRYPT_MODE, key, ivSpec);<br />
byte[] plainText = cipher.doFinal(cipherText, 0, ctLength);<br />
int messageLength = plainText.length - hash.getDigestLength();<br />
hash.update(plainText, 0, messageLength);<br />
byte[] messageHash = new byte[hash.getDigestLength()];<br />
System.arraycopy(plainText, messageLength, messageHash, 0, messageHash.length);<br />
System.out.println("plain : " + new String(plainText) + " verified: "<br />
+ MessageDigest.isEqual(hash.digest(), messageHash));<br />
}<br />
public static SecretKey createKeyForAES(int bitLength, SecureRandom random)<br />
throws NoSuchAlgorithmException, NoSuchProviderException {<br />
KeyGenerator generator = KeyGenerator.getInstance("AES", "BC");<br />
generator.init(128, random);<br />
return generator.generateKey();<br />
}<br />
public static IvParameterSpec createCtrIvForAES(int messageNumber, SecureRandom random) {<br />
byte[] ivBytes = new byte[16];<br />
random.nextBytes(ivBytes);<br />
ivBytes[0] = 1;<br />
ivBytes[1] = 2;<br />
ivBytes[2] = 3;<br />
ivBytes[3] = 4;<br />
for (int i = 0; i != 7; i++) {<br />
ivBytes[8 + i] = 0;<br />
}<br />
ivBytes[15] = 1;<br />
return new IvParameterSpec(ivBytes);<br />
}<br />
}</source><br />
<br />
<br />
<!-- end source code --><br />
<br />
<br />
<br />
<br />
<br />
== Tampered message, plain encryption, AES in CTR mode ==<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<!-- start source code --><br />
<br />
<source lang="java"><br />
import java.security.Key;<br />
import java.security.NoSuchAlgorithmException;<br />
import java.security.NoSuchProviderException;<br />
import java.security.SecureRandom;<br />
import java.security.Security;<br />
import javax.crypto.Cipher;<br />
import javax.crypto.KeyGenerator;<br />
import javax.crypto.SecretKey;<br />
import javax.crypto.spec.IvParameterSpec;<br />
public class MainClass {<br />
public static void main(String[] args) throws Exception {<br />
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());<br />
SecureRandom random = new SecureRandom();<br />
IvParameterSpec ivSpec = createCtrIvForAES(1, random);<br />
Key key = createKeyForAES(256, random);<br />
Cipher cipher = Cipher.getInstance("AES/CTR/NoPadding", "BC");<br />
String input = "input1234567";<br />
cipher.init(Cipher.ENCRYPT_MODE, key, ivSpec);<br />
byte[] cipherText = cipher.doFinal(input.getBytes());<br />
cipherText[9] ^= "0" ^ "9";<br />
cipher.init(Cipher.DECRYPT_MODE, key, ivSpec);<br />
byte[] plainText = cipher.doFinal(cipherText);<br />
System.out.println("plain : " + new String(plainText));<br />
}<br />
public static SecretKey createKeyForAES(int bitLength, SecureRandom random)<br />
throws NoSuchAlgorithmException, NoSuchProviderException {<br />
KeyGenerator generator = KeyGenerator.getInstance("AES", "BC");<br />
generator.init(128, random);<br />
return generator.generateKey();<br />
}<br />
public static IvParameterSpec createCtrIvForAES(int messageNumber, SecureRandom random) {<br />
byte[] ivBytes = new byte[16];<br />
random.nextBytes(ivBytes);<br />
ivBytes[0] = 1;<br />
ivBytes[1] = 2;<br />
ivBytes[2] = 3;<br />
ivBytes[3] = 4;<br />
for (int i = 0; i != 7; i++) {<br />
ivBytes[8 + i] = 0;<br />
}<br />
ivBytes[15] = 1;<br />
return new IvParameterSpec(ivBytes);<br />
}<br />
}</source><br />
<br />
<br />
<!-- end source code --><br />
<br />
<br />
<br />
<br />
<br />
== Tampered message with HMac, encryption with AES in CTR mode ==<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<!-- start source code --><br />
<br />
<source lang="java"><br />
import java.security.Key;<br />
import java.security.MessageDigest;<br />
import java.security.NoSuchAlgorithmException;<br />
import java.security.NoSuchProviderException;<br />
import java.security.SecureRandom;<br />
import java.security.Security;<br />
import javax.crypto.Cipher;<br />
import javax.crypto.KeyGenerator;<br />
import javax.crypto.Mac;<br />
import javax.crypto.SecretKey;<br />
import javax.crypto.spec.IvParameterSpec;<br />
import javax.crypto.spec.SecretKeySpec;<br />
public class MainClass {<br />
public static void main(String[] args) throws Exception {<br />
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());<br />
SecureRandom random = new SecureRandom();<br />
IvParameterSpec ivSpec = createCtrIvForAES();<br />
Key key = createKeyForAES(256, random);<br />
Cipher cipher = Cipher.getInstance("AES/CTR/NoPadding", "BC");<br />
String input = "12345678";<br />
Mac hMac = Mac.getInstance("HmacSHA1", "BC");<br />
Key hMacKey = new SecretKeySpec(key.getEncoded(), "HmacSHA1");<br />
System.out.println("input : " + input);<br />
cipher.init(Cipher.ENCRYPT_MODE, key, ivSpec);<br />
byte[] cipherText = new byte[cipher.getOutputSize(input.length() + hMac.getMacLength())];<br />
int ctLength = cipher.update(input.getBytes(), 0, input.length(), cipherText, 0);<br />
hMac.init(hMacKey);<br />
hMac.update(input.getBytes());<br />
ctLength += cipher.doFinal(hMac.doFinal(), 0, hMac.getMacLength(), cipherText, ctLength);<br />
cipherText[9] ^= "0" ^ "9";<br />
cipher.init(Cipher.DECRYPT_MODE, key, ivSpec);<br />
byte[] plainText = cipher.doFinal(cipherText, 0, ctLength);<br />
int messageLength = plainText.length - hMac.getMacLength();<br />
hMac.init(hMacKey);<br />
hMac.update(plainText, 0, messageLength);<br />
byte[] messageHash = new byte[hMac.getMacLength()];<br />
System.arraycopy(plainText, messageLength, messageHash, 0, messageHash.length);<br />
System.out.println("plain : " + new String(plainText) + " verified: "<br />
+ MessageDigest.isEqual(hMac.doFinal(), messageHash));<br />
}<br />
public static SecretKey createKeyForAES(int bitLength, SecureRandom random)<br />
throws NoSuchAlgorithmException, NoSuchProviderException {<br />
KeyGenerator generator = KeyGenerator.getInstance("AES", "BC");<br />
generator.init(128, random);<br />
return generator.generateKey();<br />
}<br />
public static IvParameterSpec createCtrIvForAES() {<br />
return new IvParameterSpec("1234567812345678".getBytes());<br />
}<br />
}</source><br />
<br />
<br />
<!-- end source code --><br />
<br />
<br />
<br />
<br />
<br />
== using the KeyGenerator class and showing how to create a SecretKeySpec from an encoded key. ==<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<!-- start source code --><br />
<br />
<source lang="java"><br />
import java.security.Key;<br />
import java.security.Security;<br />
import javax.crypto.Cipher;<br />
import javax.crypto.KeyGenerator;<br />
import javax.crypto.spec.IvParameterSpec;<br />
import javax.crypto.spec.SecretKeySpec;<br />
public class MainClass {<br />
public static void main(String[] args) throws Exception {<br />
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());<br />
byte[] input = "input".getBytes();<br />
byte[] ivBytes = "1234567812345678".getBytes();<br />
Cipher cipher = Cipher.getInstance("AES/CTR/NoPadding", "BC");<br />
KeyGenerator generator = KeyGenerator.getInstance("AES", "BC");<br />
generator.init(128);<br />
Key encryptionKey = generator.generateKey();<br />
System.out.println("key : " + new String(encryptionKey.getEncoded()));<br />
cipher.init(Cipher.ENCRYPT_MODE, encryptionKey, new IvParameterSpec(ivBytes));<br />
byte[] cipherText = new byte[cipher.getOutputSize(input.length)];<br />
int ctLength = cipher.update(input, 0, input.length, cipherText, 0);<br />
ctLength += cipher.doFinal(cipherText, ctLength);<br />
Key decryptionKey = new SecretKeySpec(encryptionKey.getEncoded(), encryptionKey.getAlgorithm());<br />
cipher.init(Cipher.DECRYPT_MODE, decryptionKey, new IvParameterSpec(ivBytes));<br />
byte[] plainText = new byte[cipher.getOutputSize(ctLength)];<br />
int ptLength = cipher.update(cipherText, 0, ctLength, plainText, 0);<br />
ptLength += cipher.doFinal(plainText, ptLength);<br />
System.out.println("plain : " + new String(plainText));<br />
}<br />
}</source><br />
<br />
<br />
<!-- end source code --></div>