using?System;
using?System.Security.Cryptography;
using?System.IO;
using?System.Text;

namespace?EIP.Framework
{
?/**////?
?///?Security?的摘要說(shuō)明。
?///?Security類(lèi)實(shí)現(xiàn).NET框架下的加密和解密。
?///?CopyRight?KangSoft@Hotmail.com@Hotmail.com@hotmail.com
?///?
?public?class?Security
?{
??string?_QueryStringKey?=?"abcdefgh";?//URL傳輸參數(shù)加密Key
??string?_PassWordKey?=?"hgfedcba";??//PassWord加密Key

??public?Security()
??{
???//
???//?TODO:?在此處添加構(gòu)造函數(shù)邏輯
???//
??}

??/**////?
??///?加密URL傳輸?shù)淖址?br />??///?
??///?
??///?
??public?string?EncryptQueryString(string?QueryString)
??{
???return?Encrypt(QueryString,_QueryStringKey);
??}

??/**////?
??///?解密URL傳輸?shù)淖址?br />??///?
??///?
??///?
??public?string?DecryptQueryString(string?QueryString)
??{
???return?Decrypt(QueryString,_QueryStringKey);
??}

??/**////?
??///?加密帳號(hào)口令
??///?
??///?
??///?
??public?string?EncryptPassWord(string?PassWord)
??{
???return?Encrypt(PassWord,_PassWordKey);
??}

??/**////?
??///?解密帳號(hào)口令
??///?
??///?
??///?
??public?string?DecryptPassWord(string?PassWord)
??{
???return?Decrypt(PassWord,_PassWordKey);
??}
??
??/**////?
??///?DEC?加密過(guò)程
??///?
??///?
??///?
??///?
??public?string?Encrypt(string?pToEncrypt,string?sKey)??
??{??
???DESCryptoServiceProvider?des?=?new?DESCryptoServiceProvider();??//把字符串放到byte數(shù)組中??
???
???byte[]?inputByteArray?=?Encoding.Default.GetBytes(pToEncrypt);??
???//byte[]??inputByteArray=Encoding.Unicode.GetBytes(pToEncrypt);??
??
???des.Key?=?ASCIIEncoding.ASCII.GetBytes(sKey);??//建立加密對(duì)象的密鑰和偏移量
???des.IV?=?ASCIIEncoding.ASCII.GetBytes(sKey);???//原文使用ASCIIEncoding.ASCII方法的GetBytes方法?
???MemoryStream?ms?=?new?MemoryStream();?????//使得輸入密碼必須輸入英文文本
???CryptoStream?cs?=?new?CryptoStream(ms,des.CreateEncryptor(),CryptoStreamMode.Write);??
?
???cs.Write(inputByteArray,?0,?inputByteArray.Length);??
???cs.FlushFinalBlock();??

???StringBuilder?ret?=?new??StringBuilder();??
???foreach(byte?b?in?ms.ToArray())??
???{??
????ret.AppendFormat("{0:X2}",?b);??
???}??
???ret.ToString();??
???return??ret.ToString();??
??}??

??/**////?
??///?DEC?解密過(guò)程
??///?
??///?
??///?
??///?
??public?string?Decrypt(string?pToDecrypt,?string?sKey)??
??{??
???DESCryptoServiceProvider?des?=?new?DESCryptoServiceProvider();??
?
???byte[]?inputByteArray?=?new?byte[pToDecrypt.Length?/?2];??
???for(int?x?=?0;?x?<?pToDecrypt.Length?/?2;?x++)??
???{??
????int?i?=?(Convert.ToInt32(pToDecrypt.Substring(x?*?2,?2),?16));??
????inputByteArray[x]??=??(byte)i;??
???}??
?
???des.Key?=?ASCIIEncoding.ASCII.GetBytes(sKey);??//建立加密對(duì)象的密鑰和偏移量，此值重要，不能修改??
???des.IV??=?ASCIIEncoding.ASCII.GetBytes(sKey);??
???MemoryStream?ms?=?new?MemoryStream();??
???CryptoStream?cs?=?new?CryptoStream(ms,?des.CreateDecryptor(),CryptoStreamMode.Write);??
???
???cs.Write(inputByteArray,?0,?inputByteArray.Length);??
???cs.FlushFinalBlock();??

???StringBuilder?ret?=?new?StringBuilder();??//建立StringBuild對(duì)象，CreateDecrypt使用的是流對(duì)象，必須把解密后的文本變成流對(duì)象??
?????????????
???return?System.Text.Encoding.Default.GetString(ms.ToArray());??
??}?

??/**////?
??///?檢查己加密的字符串是否與原文相同
??///?
??///?
??///?
??///?
??///?
??public?bool?ValidateString(string?EnString,?string?FoString,?int?Mode)
??{
???switch?(Mode)
???{
????default:
????case?1:
?????if?(Decrypt(EnString,_QueryStringKey)?==?FoString.ToString())
?????{
??????return?true;
?????}
?????else
?????{
??????return?false;
?????}
????case?2:
?????if?(Decrypt(EnString,_PassWordKey)?==?FoString.ToString())
?????{
??????return?true;
?????}
?????else
?????{
??????return?false;
?????}
???}
??}
?}
}

http://blog.csdn.net/hemudu/archive/2005/05/13/374294.aspx

網(wǎng)上很多人在問(wèn)怎么實(shí)現(xiàn)Web系統(tǒng)URL傳輸(表單提交)參數(shù)加密。例如：要進(jìn)行一個(gè)用戶(hù)帳號(hào)編輯，要傳遞用戶(hù)的ID，URL如下：http://localhost/mysystem/editAccounts.aspx?ID=2
但又不想讓別人知道這個(gè)用戶(hù)的ID為2，惡意的使用者可能還會(huì)將2修改，改為別的用戶(hù)ID。
加密傳遞的參數(shù)值可以解決問(wèn)題。
以下是自己寫(xiě)的DEC加密、解密的基類(lèi)。

文件名：Security.CS

using System;
using System.Security.Cryptography;
using System.IO;
using System.Text;

namespace EIP.Framework
{
?///
?/// Security 的摘要說(shuō)明。
?/// Security類(lèi)實(shí)現(xiàn).NET框架下的加密和解密。
?/// CopyRight KangSoft@Hotmail.com@Hotmail.com@hotmail.com
?///
?public class Security
?{
? string _QueryStringKey = "abcdefgh"; //URL傳輸參數(shù)加密Key
? string _PassWordKey = "hgfedcba";? //PassWord加密Key

? public Security()
? {
?? //
?? // TODO: 在此處添加構(gòu)造函數(shù)邏輯
?? //
? }

? ///
? /// 加密URL傳輸?shù)淖址?br />? ///
? ///
? ///
? public string EncryptQueryString(string QueryString)
? {
?? return Encrypt(QueryString,_QueryStringKey);
? }

? ///
? /// 解密URL傳輸?shù)淖址?br />? ///
? ///
? ///
? public string DecryptQueryString(string QueryString)
? {
?? return Decrypt(QueryString,_QueryStringKey);
? }

? ///
? /// 加密帳號(hào)口令
? ///
? ///
? ///
? public string EncryptPassWord(string PassWord)
? {
?? return Encrypt(PassWord,_PassWordKey);
? }

? ///
? /// 解密帳號(hào)口令
? ///
? ///
? ///
? public string DecryptPassWord(string PassWord)
? {
?? return Decrypt(PassWord,_PassWordKey);
? }
?
? ///
? /// DEC 加密過(guò)程
? ///
? ///
? ///
? ///
? public string Encrypt(string pToEncrypt,string sKey)?
? {?
?? DESCryptoServiceProvider des = new DESCryptoServiceProvider();? //把字符串放到byte數(shù)組中?
??
?? byte[] inputByteArray = Encoding.Default.GetBytes(pToEncrypt);?
?? //byte[]? inputByteArray=Encoding.Unicode.GetBytes(pToEncrypt);?
?
?? des.Key = ASCIIEncoding.ASCII.GetBytes(sKey);? //建立加密對(duì)象的密鑰和偏移量
?? des.IV = ASCIIEncoding.ASCII.GetBytes(sKey);?? //原文使用ASCIIEncoding.ASCII方法的GetBytes方法
?? MemoryStream ms = new MemoryStream();???? //使得輸入密碼必須輸入英文文本
?? CryptoStream cs = new CryptoStream(ms,des.CreateEncryptor(),CryptoStreamMode.Write);?
?
?? cs.Write(inputByteArray, 0, inputByteArray.Length);?
?? cs.FlushFinalBlock();?

?? StringBuilder ret = new? StringBuilder();?
?? foreach(byte b in ms.ToArray())?
?? {?
??? ret.AppendFormat("{0:X2}", b);?
?? }?
?? ret.ToString();?
?? return? ret.ToString();?
? }?

? ///
? /// DEC 解密過(guò)程
? ///
? ///
? ///
? ///
? public string Decrypt(string pToDecrypt, string sKey)?
? {?
?? DESCryptoServiceProvider des = new DESCryptoServiceProvider();?
?
?? byte[] inputByteArray = new byte[pToDecrypt.Length / 2];?
?? for(int x = 0; x < pToDecrypt.Length / 2; x++)?
?? {?
??? int i = (Convert.ToInt32(pToDecrypt.Substring(x * 2, 2), 16));?
??? inputByteArray[x]? =? (byte)i;?
?? }?
?
?? des.Key = ASCIIEncoding.ASCII.GetBytes(sKey);? //建立加密對(duì)象的密鑰和偏移量，此值重要，不能修改?
?? des.IV? = ASCIIEncoding.ASCII.GetBytes(sKey);?
?? MemoryStream ms = new MemoryStream();?
?? CryptoStream cs = new CryptoStream(ms, des.CreateDecryptor(),CryptoStreamMode.Write);?
??
?? cs.Write(inputByteArray, 0, inputByteArray.Length);?
?? cs.FlushFinalBlock();?

?? StringBuilder ret = new StringBuilder();? //建立StringBuild對(duì)象，CreateDecrypt使用的是流對(duì)象，必須把解密后的文本變成流對(duì)象?
????????????
?? return System.Text.Encoding.Default.GetString(ms.ToArray());?
? }

? ///
? /// 檢查己加密的字符串是否與原文相同
? ///
? ///
? ///
? ///
? ///
? public bool ValidateString(string EnString, string FoString, int Mode)
? {
?? switch (Mode)
?? {
??? default:
??? case 1:
???? if (Decrypt(EnString,_QueryStringKey) == FoString.ToString())
???? {
????? return true;
???? }
???? else
???? {
????? return false;
???? }
??? case 2:
???? if (Decrypt(EnString,_PassWordKey) == FoString.ToString())
???? {
????? return true;
???? }
???? else
???? {
????? return false;
???? }
?? }
? }
?}
}

類(lèi)中URL及帳號(hào)加密使用了不同的KEY。調(diào)用URL加密過(guò)程如下：
EIP.Framework.Security objSecurity = new EIP.Framework.Security();
objSecurity.EncryptQueryString(''待加密的字符串'');

解密:objSecurity.DecryptQueryString(''傳遞過(guò)來(lái)的參數(shù));

轉(zhuǎn)載于:https://www.cnblogs.com/Nina-piaoye/archive/2006/09/13/502694.html

總結(jié)

以上是生活随笔為你收集整理的怎么实现Web系统URL传输(表单提交)参数加密-zhuan的全部?jī)?nèi)容，希望文章能夠幫你解決所遇到的問(wèn)題。

如果覺(jué)得生活随笔網(wǎng)站內(nèi)容還不錯(cuò)，歡迎將生活随笔推薦給好友。