AES加解密

代码整理之AES加解密,用于处理安全漏洞 "服务器返回过多不必要的敏感信息"

话不多说,上干货:

import java.io.UnsupportedEncodingException;
import java.security.InvalidKeyException;
import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;

import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.KeyGenerator;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

public class AESUtil {
    private static final Logger log = LoggerFactory.getLogger(AESUtil.class);
    private static final String ALGORITHM = "AES";
    private static final String PASSWORD = "1111111";

    /**
     * 加密
     * 
     * @param content 需要加密的内容
     * @return
     */
    public static byte[] encrypt(String content) {
        try {
            SecureRandom random = SecureRandom.getInstance("SHA1PRNG");
            random.setSeed(PASSWORD.getBytes());
            
            KeyGenerator kgen = KeyGenerator.getInstance(ALGORITHM);
            kgen.init(128, random);
            SecretKey secretKey = kgen.generateKey();
            byte[] enCodeFormat = secretKey.getEncoded();
            SecretKeySpec key = new SecretKeySpec(enCodeFormat, ALGORITHM);
            Cipher cipher = Cipher.getInstance(ALGORITHM);// 创建密码器
            byte[] byteContent = content.getBytes("utf-8");
            cipher.init(Cipher.ENCRYPT_MODE, key);// 初始化
            byte[] result = cipher.doFinal(byteContent);
            return result; // 加密
        } catch (NoSuchAlgorithmException e) {
            e.printStackTrace();
        } catch (NoSuchPaddingException e) {
            e.printStackTrace();
        } catch (InvalidKeyException e) {
            e.printStackTrace();
        } catch (UnsupportedEncodingException e) {
            e.printStackTrace();
        } catch (IllegalBlockSizeException e) {
            e.printStackTrace();
        } catch (BadPaddingException e) {
            e.printStackTrace();
        }
        return null;
    }

    /**
     * 解密
     * 
     * @param content 待解密内容
     * @return
     */
    public static byte[] decrypt(byte[] content) {
        try {
             SecureRandom random = SecureRandom.getInstance("SHA1PRNG");
             random.setSeed(PASSWORD.getBytes());
            
            KeyGenerator kgen = KeyGenerator.getInstance(ALGORITHM);
            kgen.init(128, random);
            SecretKey secretKey = kgen.generateKey();
            byte[] enCodeFormat = secretKey.getEncoded();
            SecretKeySpec key = new SecretKeySpec(enCodeFormat, ALGORITHM);
            Cipher cipher = Cipher.getInstance(ALGORITHM);// 创建密码器
            cipher.init(Cipher.DECRYPT_MODE, key);// 初始化
            byte[] result = cipher.doFinal(content);
            return result; // 加密
        } catch (NoSuchAlgorithmException e) {
            log.info("--11--NoSuchAlgorithmException:{}",e);
        } catch (NoSuchPaddingException e) {
            log.info("--22--NoSuchPaddingException:{}",e);
        } catch (InvalidKeyException e) {
            log.info("--33--InvalidKeyException:{}",e);
        } catch (IllegalBlockSizeException e) {
            log.info("--44--IllegalBlockSizeException:{}",e);
        } catch (BadPaddingException e) {
            log.info("--55--BadPaddingException:{}",e);
        }
        return null;
    }

    /**
     * 将二进制转换成16进制
     * 
     * @param buf
     * @return
     */
    public static String parseByte2HexStr(byte buf[]) {
        StringBuffer sb = new StringBuffer();
        for (int i = 0; i < buf.length; i++) {
            String hex = Integer.toHexString(buf[i] & 0xFF);
            if (hex.length() == 1) {
                hex = '0' + hex;
            }
            sb.append(hex.toUpperCase());
        }
        return sb.toString();
    }

    /**
     * 将16进制转换为二进制
     * 
     * @param hexStr
     * @return
     */
    public static byte[] parseHexStr2Byte(String hexStr) {
        if (hexStr.length() < 1)
            return null;
        byte[] result = new byte[hexStr.length() / 2];
        for (int i = 0; i < hexStr.length() / 2; i++) {
            int high = Integer.parseInt(hexStr.substring(i * 2, i * 2 + 1), 16);
            int low = Integer.parseInt(hexStr.substring(i * 2 + 1, i * 2 + 2), 16);
            result[i] = (byte) (high * 16 + low);
        }
        return result;
    }

    /**
     * 加密
     *
     * @param content  需要加密的内容
     * @return
     */
    public static byte[] encrypt2(String content, String PASSWORD) {
        try {
            SecretKeySpec key = new SecretKeySpec(PASSWORD.getBytes(), ALGORITHM);
            Cipher cipher = Cipher.getInstance("AES/ECB/NoPadding");
            byte[] byteContent = content.getBytes("utf-8");
            cipher.init(Cipher.ENCRYPT_MODE, key);// 初始化
            byte[] result = cipher.doFinal(byteContent);
            return result; // 加密
        } catch (Exception e) {
            e.printStackTrace();
        } 
        return null;
    }

//    public static void main(String[] args) throws UnsupportedEncodingException {
//        String content = "我是shoneworn";
//        // 加密
//        System.out.println("加密前：" + content);
//        byte[] encode = encrypt(content);
//        
//        //传输过程,不转成16进制的字符串，就等着程序崩溃掉吧
//        String code = parseByte2HexStr(encode);
//        System.out.println("密文字符串：" + code);
//        byte[] decode = parseHexStr2Byte(code);
//        // 解密
//        byte[] decryptResult = decrypt(decode);
//        System.out.println("解密后：" + new String(decryptResult, "UTF-8")); //不转码会乱码
//    }
}