RSACryptoServiceProvider加密解密簽名驗簽和DESCryptoServiceProvider加解密
原文:RSACryptoServiceProvider加密解密簽名驗簽和DESCryptoServiceProvider加解密
C#在using System.Security.Cryptography下有 DESCryptoServiceProvider RSACryptoServiceProvider?
DESCryptoServiceProvider 是用于對稱加密 RSACryptoServiceProvider是用于非對稱加密?
對稱加密的意思:有一個密鑰 相當于加密算法,加密用它來加密,解密也需要用到它。因為加密解密都是用同一個密鑰所以叫對稱加密。 對稱加密有一個壞處只要擁有密鑰的人都可以解密。?
非對稱加密:就是有2個密鑰,一個是公鑰,一個是私鑰,私鑰是自己的,不能隨便給人,公鑰隨便給,無所謂。一般是別人用你的公鑰加密,然后把密文給你,你用你的私鑰解密,這樣一樣加密和解密不是同一個密鑰,所以叫非對稱。 非對稱的好處是假如沒有私鑰別人是無法解密的,就算加密的那個人他把數據加密了他也無法解密,加密者把密文和公鑰隨便給那個人都無法解密。?
數字簽名:數字簽名的意義就是這些數據與原文數據比對是否修改過,這個解釋有點麻煩,當初我也搞了好久才理解!一般是用自己的私鑰對數據進行簽名,然后用公鑰去驗證這個數據是否修改過?
-
現在該說說DESCryptoServiceProvider 和RSACryptoServiceProvider 在C#中的具體怎么用:?
-
1、用RSACryptoServiceProvider 加密解密?
?
//加密解密用到的公鑰與私鑰
RSACryptoServiceProvider oRSA =
new RSACryptoServiceProvider();
string privatekey=oRSA.ToXmlString(
true);
//私鑰
string publickey=oRSA.ToXmlString(
false);
//公鑰
//這兩個密鑰需要保存下來
byte[] messagebytes = Encoding.UTF8.GetBytes(
"luo羅");
//需要加密的數據
-
//公鑰加密
RSACryptoServiceProvider oRSA1 =
new RSACryptoServiceProvider();
oRSA1.FromXmlString(publickey); //加密要用到公鑰所以導入公鑰
byte[] AOutput = oRSA1.Encrypt(messagebytes ,
false);
//AOutput 加密以后的數據
-
//私鑰解密
RSACryptoServiceProvider oRSA2 =
new RSACryptoServiceProvider();
oRSA2.FromXmlString(privatekey);
byte[] AInput = oRSA2.Decrypt(AOutput,
false);
string reslut=Encoding.ASCII.GetString(AInput)
?
?
2、用RSACryptoServiceProvider簽名驗簽?
? ?
byte[] messagebytes = Encoding.UTF8.GetBytes(
"luo羅"); RSACryptoServiceProvider oRSA =
new RSACryptoServiceProvider(); string privatekey = oRSA.ToXmlString(
true); string publickey = oRSA.ToXmlString(
false); //私鑰簽名 RSACryptoServiceProvider oRSA3 =
new RSACryptoServiceProvider(); oRSA3.FromXmlString(privatekey); byte[] AOutput = oRSA3.SignData(messagebytes,
"SHA1"); //公鑰驗證 RSACryptoServiceProvider oRSA4 =
new RSACryptoServiceProvider(); oRSA4.FromXmlString(publickey); bool bVerify = oRSA4.VerifyData(messagebytes,
"SHA1", AOutput);
?
3、用證書進行簽名?
? ?
// 因為一般證書的私鑰是不可以導出的所以所以用第2種方法導入私鑰的來進行簽名行不通
byte[] messagebytes = Encoding.UTF8.GetBytes(
"luo羅"); string Path =
@"D:\Certificate\1.P12"; X509Certificate2 x509 =
new X509Certificate2(Path,
"12345678"); SHA1 sha1 =
new SHA1CryptoServiceProvider(); byte[] hashbytes = sha1.ComputeHash(messagebytes);
//對要簽名的數據進行哈希 RSAPKCS1SignatureFormatter signe =
new RSAPKCS1SignatureFormatter(); signe.SetKey(x509.PrivateKey); //設置簽名用到的私鑰 signe.SetHashAlgorithm(
"SHA1");
//設置簽名算法 byte[] reslut =
signe.CreateSignature(hashbytes);
//驗簽:與第2方法相同 RSACryptoServiceProvider oRSA4 =
new RSACryptoServiceProvider(); oRSA4.FromXmlString(x509.PublicKey.Key.ToXmlString(false)); bool bVerify = oRSA4.VerifyData(messagebytes,
"SHA1", reslut);
?
4、用證書加密解密?
? ??
string Path =
@"D:\Certificate\1.P12"; X509Certificate2 x509 =
new X509Certificate2(Path,
"12345678"); byte[] data = System.Text.Encoding.UTF8.GetBytes(
"cheshi羅");
-
//證書公鑰加密 RSACryptoServiceProvider oRSA1 =
new RSACryptoServiceProvider(); oRSA1.FromXmlString(x509.PublicKey.Key.ToXmlString(false));
-
byte[] AOutput = oRSA1.Encrypt(data,
false);
-
//證書私鑰解密 RSACryptoServiceProvider rsa2 =
(RSACryptoServiceProvider)x509.PrivateKey; byte[] plainbytes = rsa2.Decrypt(AOutput,
false); string reslut = Encoding.UTF8.GetString(plainbytes);
?
5用證書對文件加密解密,因為文件可能特別大 所以需要用流和buffer的方式來,鄙視把文件全部讀到byte[]里進行加密的人,假如文件5G,那全部讀到byte[]里崩潰掉?
? ?
private void Form1_Load(
object sender, EventArgs e) { x509=
new X509Certificate2(Path,
"12345678"); RSACryptoServiceProvider oRSA1 =
new RSACryptoServiceProvider(); Encrypt(); Decrypt(); } private void Decrypt() { string FilePath =
"2.txt"; string OutFile =
"3.txt"; System.IO.FileStream picfs =
new System.IO.FileStream(FilePath, System.IO.FileMode.Open); System.IO.FileStream fs =
new System.IO.FileStream(OutFile, System.IO.FileMode.OpenOrCreate); oRSA1 =
(RSACryptoServiceProvider)x509.PrivateKey; int blocksize = oRSA1.KeySize/
8;
-
byte[] buffer, buffer1, encryblock; bool Closed =
true; while (Closed) { buffer =
null; buffer =
new byte[blocksize]; int k = picfs.Read(buffer,
0, buffer.Length); if (k >
0) { if (blocksize ==
k) { encryblock = oRSA1.Decrypt(buffer,
false); fs.Write(encryblock, 0, encryblock.Length); } else { buffer1 =
new byte[k]; for (
int i =
0; i < k; i++
) { buffer1[i] =
buffer[i]; } encryblock = oRSA1.Decrypt(buffer1,
false); fs.Write(encryblock, 0, encryblock.Length); } } else { picfs.Close(); fs.Close(); Closed =
false; } }
-
} private void Encrypt() { string FilePath =
"1.txt"; string OutFile =
"2.txt"; //證書公鑰加密
-
oRSA1.FromXmlString(x509.PublicKey.Key.ToXmlString(false)); System.IO.FileStream picfs =
new System.IO.FileStream(FilePath, System.IO.FileMode.Open); System.IO.FileStream fs =
new System.IO.FileStream(OutFile, System.IO.FileMode.OpenOrCreate); int blocksize =
0; if (oRSA1.KeySize ==
1024) { blocksize =
16; } else { blocksize =
8; } byte[] buffer, buffer1, encryblock; bool Closed =
true; while (Closed) { buffer =
null; buffer =
new byte[blocksize]; int k = picfs.Read(buffer,
0, buffer.Length); if (k >
0) { if (blocksize ==
k) { encryblock = oRSA1.Encrypt(buffer,
false); fs.Write(encryblock, 0, encryblock.Length); } else { buffer1 =
new byte[k]; for (
int i =
0; i < k; i++
) { buffer1[i] =
buffer[i]; } encryblock = oRSA1.Encrypt(buffer1,
false); fs.Write(encryblock, 0, encryblock.Length); } } else { picfs.Close(); fs.Close(); Closed =
false; } } } ?
6用證書對文件進行簽名驗簽,因為文件可能特別大 所以需要用流和buffer的方式來??
private void Form1_Load(
object sender, EventArgs e){x509 =
new X509Certificate2(Path,
"12345678");SignFile("1.txt",
"11.txt");VerifyFile("1.txt",
"11.txt");}private bool VerifyFile(
string FileName,
string SignedFileName){bool reslut =
true;System.IO.StreamReader objread =
new System.IO.StreamReader(FileName);System.IO.StreamReader objreadSigned =
new System.IO.StreamReader(SignedFileName);RSACryptoServiceProvider VeryRsa =
new RSACryptoServiceProvider();VeryRsa.FromXmlString(x509.PublicKey.Key.ToXmlString(false));int Inblocksize =
0;int Signedblocksize =
0;if (VeryRsa.KeySize ==
1024){Inblocksize =
16;}else{Inblocksize =
8;}Signedblocksize = VeryRsa.KeySize /
8;bool Closed =
true;byte[] Buffer;
//原文緩存區byte[] InBuffer;
//原文緩存區byte[] Buffer1;
//簽名文件緩存區while (Closed){Buffer =
null;Buffer =
new byte[Inblocksize];int k = objread.BaseStream.Read(Buffer,
0, Buffer.Length);if (k >
0){if (Inblocksize == k)
//讀出來的長度和緩存區一樣大
{Buffer1 =
new byte[Signedblocksize];objreadSigned.BaseStream.Read(Buffer1, 0, Buffer1.Length);reslut = VeryRsa.VerifyData(Buffer,
"SHA1",Buffer1);if (!
reslut){Closed =
false;}}else{ //意思是Buffer沒滿,只有k個字節,k字節后面全是空所以不需要驗簽InBuffer =
new byte[k];for (
int i =
0; i < k; i++
){InBuffer[i] =
Buffer[i];}Buffer1 =
new byte[Signedblocksize];objreadSigned.BaseStream.Read(Buffer1, 0, Buffer1.Length);reslut = VeryRsa.VerifyData(InBuffer,
"SHA1", Buffer1);if (!
reslut){Closed =
false;}}}else{//這里的意思是原文已經讀完畢了,并且已經和簽名文件對應驗簽成功,那么//簽名文件也必須讀完畢了。if (objreadSigned.BaseStream.Position!=
objreadSigned.BaseStream.Length){reslut =
false;}objreadSigned.Close();objread.Close();Closed =
false;}}return reslut;}private void SignFile(
string InFileName,
string OutFileName){RSACryptoServiceProvider SignRsa =
(RSACryptoServiceProvider)x509.PrivateKey;System.IO.StreamReader objread =
new System.IO.StreamReader(InFileName);System.IO.StreamWriter objwrite =
new System.IO.StreamWriter(OutFileName,
false);int blocksize =
0;if (SignRsa.KeySize ==
1024){blocksize =
16;}else{blocksize =
8;}bool Closed =
true;byte[] Buffer =
new byte[blocksize];byte[] buffer1, SignBytes;while (Closed){int k = objread.BaseStream.Read(Buffer,
0, Buffer.Length);if (k >
0){if (k ==
blocksize){SignBytes = SignRsa.SignData(Buffer,
"SHA1");objwrite.BaseStream.Write(SignBytes, 0, SignBytes.Length);}else{buffer1 =
new byte[k];for (
int i =
0; i < k; i++
){buffer1[i] =
Buffer[i];}SignBytes = SignRsa.SignData(buffer1,
"SHA1");objwrite.BaseStream.Write(SignBytes, 0, SignBytes.Length);}}else{Closed =
false;objread.Close();objwrite.Close();}}} ?
7、用DESCryptoServiceProvider 進行對稱加密?
?
byte[] messagebytes = Encoding.UTF8.GetBytes(
"LUO羅"); //需要用的對稱密鑰 DESCryptoServiceProvider Des =
new DESCryptoServiceProvider(); byte[] key =
Des.Key; //加密 DESCryptoServiceProvider tdesProvider =
new DESCryptoServiceProvider(); tdesProvider.Key =
key; tdesProvider.Mode =
CipherMode.ECB; byte[] encrypted = tdesProvider.CreateEncryptor().TransformFinalBlock(messagebytes,
0, messagebytes.Length); //解密 DESCryptoServiceProvider tdesProvider2 =
new DESCryptoServiceProvider(); tdesProvider.Key =
key1; tdesProvider.Mode =
CipherMode.ECB; byte[] outputdata = tdesProvider.CreateDecryptor().TransformFinalBlock(encrypted,
0, encrypted.Length); string reslut =
Encoding.UTF8.GetString(outputdata);
//7用DESCryptoServiceProvider 加解密 流
CryptoStream csDecrypt =
new CryptoStream(Stream, Des.CreateEncryptor(), CryptoStreamMode.Write);CryptoStream csDecrypt =
new CryptoStream(Stream, Des.CreateDecryptor(), CryptoStreamMode.Write);
?
posted on
2018-04-11 12:07 NET未來之路 閱讀(
...) 評論() 編輯 收藏
轉載于:https://www.cnblogs.com/lonelyxmas/p/8794920.html
總結
以上是生活随笔為你收集整理的RSACryptoServiceProvider加密解密签名验签和DESCryptoServiceProvider加解密的全部內容,希望文章能夠幫你解決所遇到的問題。
如果覺得生活随笔網站內容還不錯,歡迎將生活随笔推薦給好友。
