PBE 对称加密

package com.test.security;

import java.io.ByteArrayOutputStream;
import java.security.Key;
import java.util.Random;

import javax.crypto.Cipher;
import javax.crypto.SecretKey;
import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.PBEKeySpec;
import javax.crypto.spec.PBEParameterSpec;

/****
* DESede(TripleDES,就是3DES)、AES、Blowfish、RC2、RC4(ARCFOUR),PBE等多种对称加密方式
* 其特点在于口令由用户自己掌管，不借助任何物理媒体；采用随机数（这里我们叫做盐）杂凑多重加密等方法保证数据的安全性。是一种简便的加密方式。

* @author Administrator
*
*/
public class PBEUtil {
public static final String ALGORITHM = "PBEWITHMD5andDES";

/** */
/**
* 盐初始化
*
* @return
* @throws Exception
*/
public static byte[] initSalt() throws Exception {
byte[] salt = new byte[8];
Random random = new Random();
random.nextBytes(salt);
return salt;
}

/** */
/**
* 转换密钥<br>
*
* @param password
* @return
* @throws Exception
*/
private static Key toKey(String password) throws Exception {
PBEKeySpec keySpec = new PBEKeySpec(password.toCharArray());
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance(ALGORITHM);
SecretKey secretKey = keyFactory.generateSecret(keySpec);

return secretKey;
}

/** */
/**
* 加密
*
* @param data
*            数据
* @param password
*            密码
* @param salt
*            盐
* @return
* @throws Exception
*/
public static byte[] encrypt(byte[] data, String password, byte[] salt)
throws Exception {

Key key = toKey(password);

PBEParameterSpec paramSpec = new PBEParameterSpec(salt, 100);
Cipher cipher = Cipher.getInstance(ALGORITHM);
cipher.init(Cipher.ENCRYPT_MODE, key, paramSpec);

return cipher.doFinal(data);

}

/** */
/**
* 解密
*
* @param data
*            数据
* @param password
*            密码
* @param salt
*            盐
* @return
* @throws Exception
*/
public static byte[] decrypt(byte[] data, String password, byte[] salt)
throws Exception {

Key key = toKey(password);

PBEParameterSpec paramSpec = new PBEParameterSpec(salt, 100);
Cipher cipher = Cipher.getInstance(ALGORITHM);
cipher.init(Cipher.DECRYPT_MODE, key, paramSpec);

return cipher.doFinal(data);

}
public static String byte2hex(byte[] b) {
String hs = "";
String stmp = "";
for (int n = 0; n < b.length; n++) {
stmp = (java.lang.Integer.toHexString(b[n] & 0XFF));
if (stmp.length() == 1)
hs = hs + "0" + stmp;
else
hs = hs + stmp;
// if (n < b.length - 1)
// hs = hs + ":";
}
return hs.toUpperCase();
}
/**
* Deformat byte string to byte array.
*
* @param s
* @return
*/
public static byte[] hex2byte(String s) {
byte[] src = s.toLowerCase().getBytes();
byte[] ret = new byte[src.length / 2];
for (int i = 0; i < src.length; i += 2) {
byte hi = src[i];
byte low = src[i + 1];
hi = (byte) ((hi >= 'a' && hi <= 'f') ? 0x0a + (hi - 'a')
: hi - '0');
low = (byte) ((low >= 'a' && low <= 'f') ? 0x0a + (low - 'a')
: low - '0');
ret[i / 2] = (byte) (hi << 4 | low);
}
return ret;
}
/**
* HEX编码 将形如0x12 0x2A 0x01 转换为122A01
*
* @param data
* @return
*/
public static String hexEncode(byte[] data) {
StringBuffer buffer = new StringBuffer();
for (int i = 0; i < data.length; i++) {
String tmp = Integer.toHexString(data[i] & 0xff);
if (tmp.length() < 2) {
buffer.append('0');
}
buffer.append(tmp);
}
String retStr = buffer.toString().toUpperCase();
return retStr;
}

/**
* HEX解码 将形如122A01 转换为0x12 0x2A 0x01
*
* @param data
* @return
*/
public static byte[] hexDecode(String data) {
ByteArrayOutputStream out = new ByteArrayOutputStream();
for (int i = 0; i < data.length(); i += 2) {
String onebyte = data.substring(i, i + 2);
int b = Integer.parseInt(onebyte, 16) & 0xff;
out.write(b);
}
return out.toByteArray();
}

public static void main(String[] a) {
     try {
byte [] salt=PBEUtil.initSalt();
byte[] out=PBEUtil.encrypt("asdfasdf就是点击付款".getBytes("UTF-8"), "12366", salt);
System.out.println(byte2hex(out));
byte [] aa=PBEUtil.decrypt(out, "12366", salt);
System.out.println(new String(aa,"UTF-8"));
} catch (Exception e) {
e.printStackTrace();
}
    
}

}
转载请注明出处：http://buerkai.iteye.com