Java RSA AES解密失败-InvalidKeyException
我已经能够使用该算法对文件进行加密和解密,但当我尝试将一个文件从Android发送到WAS服务器时,它失败了。这是加密的一面Java RSA AES解密失败-InvalidKeyException,java,android,encryption,rsa,Java,Android,Encryption,Rsa,我已经能够使用该算法对文件进行加密和解密,但当我尝试将一个文件从Android发送到WAS服务器时,它失败了。这是加密的一面 Security.addProvider(new BouncyCastleProvider()); KeyGenerator keygen = KeyGenerator.getInstance("AES"); SecureRandom random = new SecureRandom(); keygen.init(random);
Security.addProvider(new BouncyCastleProvider());
KeyGenerator keygen = KeyGenerator.getInstance("AES");
SecureRandom random = new SecureRandom();
keygen.init(random);
SecretKey key = keygen.generateKey();
// wrap with RSA public key
ObjectInputStream keyIn = new ObjectInputStream(new FileInputStream (getFileLocation(PUBLIC_KEY, localTest)));
Key publicKey = (Key) keyIn.readObject();
keyIn.close();
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.WRAP_MODE, publicKey);
byte[] wrappedKey = cipher.wrap(key);
DataOutputStream out = new DataOutputStream(new FileOutputStream(getFileLocation(SIGN_FILE, localTest)));
out.writeInt(wrappedKey.length);
out.write(wrappedKey);
InputStream in = new ByteArrayInputStream(message.getBytes());
cipher = Cipher.getInstance("AES");
cipher.init(Cipher.ENCRYPT_MODE, key);
crypt(in, out, cipher);
in.close();
out.close();
FileInputStream fis = new FileInputStream(getFileLocation(SIGN_FILE, localTest));
byte[] buffer = new byte[fis.available()];
int i =0;
while (i< buffer.length ){
buffer[i]= (byte)fis.read();
i++;
}
String ss = encodeMsg(buffer);
return ss;
Security.addProvider(new BouncyCastleProvider());
byte[] arr = decodeMsg(encrypted);
DataInputStream in = new DataInputStream(new ByteArrayInputStream(arr));
int length = in.readInt();
byte[] wrappedKey = new byte[length];
in.read(wrappedKey, 0, length);
// unwrap with RSA private key
ObjectInputStream keyIn = new ObjectInputStream(new FileInputStream (getFileLocation(PRIVATE_KEY, localTest)));
Key privateKey = (Key) keyIn.readObject();
keyIn.close();
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.UNWRAP_MODE, privateKey);
Key key = cipher.unwrap(wrappedKey, "AES", Cipher.SECRET_KEY);
OutputStream out = new FileOutputStream(getFileLocation(DECRYPTED, localTest));
cipher = Cipher.getInstance("AES");
cipher.init(Cipher.DECRYPT_MODE, key);
crypt(in, out, cipher);
in.close();
out.close();
FileInputStream fis = new FileInputStream(getFileLocation(DECRYPTED, localTest));
byte[] buffer = new byte[fis.available()];
int i =0;
while (i< buffer.length ){//!= 0) {
buffer[i]= (byte)fis.read();
i++;
}
String ss = new String(buffer);
return ss;
必须更新WAS环境才能处理此问题吗?思想?
更新密钥大小设置为2048这可能是由于密钥策略设置,您是否在两台计算机上都安装了无限强度的法律策略?可以在本页底部找到它们:
否则,您如何将数据发送到服务器?无限权限策略可能会起作用,但我尝试使用IBMJCE也没有成功。然后,我转而使用SunJCE提供程序(Java1.6版),现在我可以在Android和Websphere中进行加密和解密。我正在让管理员查看策略文件,看看是否可以启用BouncyCastle,但我同意使用Sun提供程序文件 看起来服务器使用的是IBMs JVM,所以我认为Oracle策略文件不适用。我不知道服务器是否设置了该策略文件,但我会问,我不知道这是否是问题所在,但请去掉所有默认值,并用显式值替换它们。不要使用
getInstance(“RSA”)
使用getInstance(“RSA/ECB/PKCS1PADDING”)
。不要使用getBytes()
使用getBytes(“UTF-8”)
。
java.security.InvalidKeyException com.ibm.crypto.provider.RSA.engineUnwrap(Unknown Source)
javax.crypto.Cipher.unwrap(Unknown Source)
com.webapp.web.security.RSAEncrypt.decrypt(RSAEncrypt.java:161)
com.webapp.web.MobileRequest.doPost(MobileRequest.java:81)
javax.servlet.http.HttpServlet.service(HttpServlet.java:738)
javax.servlet.http.HttpServlet.service(HttpServlet.java:831)