对称加密算法:DES、AES、IDEA、RC2、RC4、SKIPJACK……
加解密使用相同密钥,这个是对称加密。对称加密优点是速度快
非对称加密算法:RSA、DSA、DH、ECC、EL GAMAL……
公钥加密数据,然后私钥解密的情况被称为加密解密;
因为公钥加密的数据只有它相对应的私钥可以解开,所以你可以把公钥给人和人,让他加密他想要传送给你的数据,这个数据只有到了有私钥的你这里,才可以解开成有用的数据,其他人就是得到了,也看懂内容
实际应用中,一般都是和对方交换公钥,然后你要发给对方的数据,用他的公钥加密,他得到后用他的私钥解密,他要发给你的数据,用你的公钥加密,你得到后用你的私钥解密,这样最大程度保证了安全性.
缺点速度慢
Hash算法:MD5、SHA1、SHA256……
无论消息有多长,计算出的摘要长度都是固定的,MD5没有SHA算法安全
数字签名:
私钥签名和公钥验证签名;RSA可以用来做签名、验签
如果你用你的私钥对数据进行签名,那这个数据就只有配对的公钥可以解开,有这个私钥的只有你,所以如果配对的公钥解开了数据,就说明这数据是你发的,相反,则不是.这个被称为签名。数字签名的意义就是这些数据与原文数据比对是否修改过。
CA证书如何保证网站数据安全:
网站向CA机构申请证书,网站方提供网站信息及公钥给CA机构,CA机构使用自己的私钥对公钥签名,以防篡改。
网站服务器安装CA证书
浏览器发起请求,先请求CA证书,浏览器端保存了CA机构的公钥,对证书验签,验证通过,取出证书中的公钥
使用公钥对http请求信息加密,发起http请求
网站服务器接收到http请求后使用私钥解密。这样就可以防止http请求中的重要信息被拦截者看到,如密码等信息
如果网站没有安装CA证书,也可以在客户端使用RSA加密,公钥保存在浏览器端就可以,我有一篇文章对此有介绍。
DES助手类:
1 /// <summary> 2 /// 可逆对称加密 密钥长度8 3 /// </summary> 4 public class DesEncrypt 5 { 6 private static string _key = "fanfanfanfanfan"; 7 private static byte[] _rgbKey = ASCIIEncoding.ASCII.GetBytes(_key.Substring(0, 8)); 8 private static byte[] _rgbIV = ASCIIEncoding.ASCII.GetBytes(_key.Insert(0, "w").Substring(0, 8)); 9 10 /// <summary> 11 /// DES 加密 12 /// </summary> 13 /// <param name="text">需要加密的值</param> 14 /// <returns>加密后的结果</returns> 15 public static string Encrypt(string text) 16 { 17 DESCryptoServiceProvider dsp = new DESCryptoServiceProvider(); 18 using (MemoryStream memStream = new MemoryStream()) 19 { 20 CryptoStream crypStream = new CryptoStream(memStream, dsp.CreateEncryptor(_rgbKey, _rgbIV), CryptoStreamMode.Write); 21 StreamWriter sWriter = new StreamWriter(crypStream); 22 sWriter.Write(text); 23 sWriter.Flush(); 24 crypStream.FlushFinalBlock(); 25 memStream.Flush(); 26 return Convert.ToBase64String(memStream.GetBuffer(), 0, (int)memStream.Length); 27 } 28 } 29 30 /// <summary> 31 /// DES 解密 32 /// </summary> 33 /// <param name="encryptText"></param> 34 /// <returns>解密后的结果</returns> 35 public static string Decrypt(string encryptText) 36 { 37 DESCryptoServiceProvider dsp = new DESCryptoServiceProvider(); 38 byte[] buffer = Convert.FromBase64String(encryptText); 39 40 using (MemoryStream memStream = new MemoryStream()) 41 { 42 CryptoStream crypStream = new CryptoStream(memStream, dsp.CreateDecryptor(_rgbKey, _rgbIV), CryptoStreamMode.Write); 43 crypStream.Write(buffer, 0, buffer.Length); 44 crypStream.FlushFinalBlock(); 45 return ASCIIEncoding.UTF8.GetString(memStream.ToArray()); 46 } 47 } 48 }
AES助手类:
1 /// <summary> 2 /// AES加密解密 4 /// 密码必须是16位,否则会报错哈 5 /// </summary> 6 public class AESCryptoHelper 7 { 8 /// <summary> 9 /// APP默认加密Key 10 /// </summary> 11 public static string Default_AESKey = "1111111111111111";//必须是十六位 12 13 /// <summary> 14 /// AES 加密 15 /// </summary> 16 /// <param name="plainText">明文</param> 17 /// <param name="key">密码必须是16位,否则会报错哈</param> 18 /// <returns>密文</returns> 19 public static string Encrypt(string plainText, string key) 20 { 21 string result = null; 22 if (string.IsNullOrEmpty(plainText)) 23 { 24 return result; 25 } 26 byte[] plainTextArray = Encoding.UTF8.GetBytes(plainText); 27 using (RijndaelManaged rijndaelManaged = new RijndaelManaged 28 { 29 Key = Encoding.UTF8.GetBytes(key), 30 Mode = CipherMode.ECB, 31 Padding = PaddingMode.PKCS7 32 }) 33 { 34 using (ICryptoTransform cryptoTransform = rijndaelManaged.CreateEncryptor()) 35 { 36 byte[] resultArray = cryptoTransform.TransformFinalBlock(plainTextArray, 0, plainTextArray.Length); 37 result = Convert.ToBase64String(resultArray, 0, resultArray.Length); 38 Array.Clear(resultArray, 0, resultArray.Length); 39 resultArray = null; 40 } 41 } 42 Array.Clear(plainTextArray, 0, plainTextArray.Length); 43 plainTextArray = null; 44 return result; 45 } 46 47 /// <summary> 48 /// AES 解密 49 /// </summary> 50 /// <param name="encryptText">密文</param> 51 /// <param name="key">密码必须是16位,否则会报错哈</param> 52 /// <returns>明文</returns> 53 public static string Decrypt(string encryptText, string key) 54 { 55 string result = null; 56 if (string.IsNullOrEmpty(encryptText)) 57 { 58 return result; 59 } 60 byte[] encryptTextArray = Convert.FromBase64String(encryptText); 61 using (RijndaelManaged rijndaelManaged = new RijndaelManaged 62 { 63 Key = Encoding.UTF8.GetBytes(key), 64 Mode = CipherMode.ECB, 65 Padding = PaddingMode.PKCS7 66 }) 67 { 68 using (ICryptoTransform cryptoTransform = rijndaelManaged.CreateDecryptor()) 69 { 70 byte[] resultArray = cryptoTransform.TransformFinalBlock(encryptTextArray, 0, encryptTextArray.Length); 71 result = Encoding.UTF8.GetString(resultArray); 72 Array.Clear(resultArray, 0, resultArray.Length); 73 resultArray = null; 74 } 75 } 76 Array.Clear(encryptTextArray, 0, encryptTextArray.Length); 77 encryptTextArray = null; 78 return result; 79 } 80 81 /// <summary> 82 /// AES 加密(URL传参数加密) 83 /// </summary> 84 /// <param name="plainText">明文</param> 85 /// <param name="key"></param> 86 /// <returns>加密之后URL编码</returns> 87 public static string UrlEncrypt(string plainText, string key) 88 { 89 string encryptText = Encrypt(plainText, key); 90 return HttpUtilityHelper.UrlEncode(encryptText); 91 } 92 93 /// <summary> 94 /// AES 解密(URL传参数解密) 95 /// </summary> 96 /// <param name="encodeEncryptText">URL编码之后的密文</param> 97 /// <param name="key"></param> 98 /// <returns>明文</returns> 99 public static string UrlDecrypt(string encodeEncryptText, string key) 100 { 101 if (!string.IsNullOrEmpty(encodeEncryptText)) 102 { 103 string encodeText = HttpUtilityHelper.UrlDecode(encodeEncryptText); 104 return Decrypt(encodeText, key); 105 } 106 return ""; 107 } 108 }
MD5助手类:
1 /// <summary> 2 /// MD5 3 /// </summary> 4 public class MD5Encrypt 5 { 6 #region MD5 7 /// <summary> 8 /// MD5加密,和动网上的16/32位MD5加密结果相同, 9 /// 使用的UTF8编码 10 /// </summary> 11 /// <param name="source">待加密字串</param> 12 /// <param name="length">16或32值之一,其它则采用.net默认MD5加密算法</param> 13 /// <returns>加密后的字串</returns> 14 public static string Encrypt(string source, int length = 32)//默认参数 15 { 16 if (string.IsNullOrEmpty(source)) return string.Empty; 17 HashAlgorithm provider = CryptoConfig.CreateFromName("MD5") as HashAlgorithm; 18 byte[] bytes = Encoding.UTF8.GetBytes(source);//这里需要区别编码的 19 byte[] hashValue = provider.ComputeHash(bytes); 20 StringBuilder sb = new StringBuilder(); 21 switch (length) 22 { 23 case 16://16位密文是32位密文的9到24位字符 24 for (int i = 4; i < 12; i++) 25 { 26 sb.Append(hashValue[i].ToString("x2")); 27 } 28 break; 29 case 32: 30 for (int i = 0; i < 16; i++) 31 { 32 sb.Append(hashValue[i].ToString("x2")); 33 } 34 break; 35 default: 36 for (int i = 0; i < hashValue.Length; i++) 37 { 38 sb.Append(hashValue[i].ToString("x2")); 39 } 40 break; 41 } 42 return sb.ToString(); 43 } 44 #endregion MD5 45 46 #region MD5摘要 47 /// <summary> 48 /// 获取文件的MD5摘要 49 /// </summary> 50 /// <param name="fileName"></param> 51 /// <returns></returns> 52 public static string AbstractFile(string fileName) 53 { 54 using (FileStream file = new FileStream(fileName, FileMode.Open)) 55 { 56 return AbstractFile(file); 57 } 58 } 59 60 /// <summary> 61 /// 根据stream获取文件摘要 62 /// </summary> 63 /// <param name="stream"></param> 64 /// <returns></returns> 65 public static string AbstractFile(Stream stream) 66 { 67 MD5 md5 = new MD5CryptoServiceProvider(); 68 byte[] retVal = md5.ComputeHash(stream); 69 70 StringBuilder sb = new StringBuilder(); 71 for (int i = 0; i < retVal.Length; i++) 72 { 73 sb.Append(retVal[i].ToString("x2")); 74 } 75 return sb.ToString(); 76 } 77 #endregion 78 }
RSA助手类:
1 /// <summary> 2 /// RSA 3 /// </summary> 4 public class RsaEncrypt 5 { 6 /// <summary> 7 /// 生成公钥、私钥 8 /// </summary> 9 /// <returns>Encrypt Decrypt</returns> 10 public static KeyValuePair<string, string> GetKeyPair() 11 { 12 RSACryptoServiceProvider RSA = new RSACryptoServiceProvider(); 13 string publicKey = RSA.ToXmlString(false); 14 string privateKey = RSA.ToXmlString(true); 15 return new KeyValuePair<string, string>(publicKey, privateKey); 16 } 17 18 /// <summary> 19 /// 加密:内容+加密key 20 /// </summary> 21 /// <param name="content"></param> 22 /// <param name="publicKey">加密key</param> 23 /// <returns></returns> 24 public static string Encrypt(string content, string publicKey) 25 { 26 RSACryptoServiceProvider rsa = new RSACryptoServiceProvider(); 27 rsa.FromXmlString(publicKey); 28 UnicodeEncoding ByteConverter = new UnicodeEncoding(); 29 byte[] DataToEncrypt = ByteConverter.GetBytes(content); 30 byte[] resultBytes = rsa.Encrypt(DataToEncrypt, false); 31 return Convert.ToBase64String(resultBytes); 32 } 33 34 /// <summary> 35 /// 解密 内容+解密key 36 /// </summary> 37 /// <param name="content"></param> 38 /// <param name="privateKey">解密key</param> 39 /// <returns></returns> 40 public static string Decrypt(string content, string privateKey) 41 { 42 byte[] dataToDecrypt = Convert.FromBase64String(content); 43 RSACryptoServiceProvider RSA = new RSACryptoServiceProvider(); 44 RSA.FromXmlString(privateKey); 45 byte[] resultBytes = RSA.Decrypt(dataToDecrypt, false); 46 UnicodeEncoding ByteConverter = new UnicodeEncoding(); 47 return ByteConverter.GetString(resultBytes); 48 } 49 50 51 /// <summary> 52 /// 可以合并在一起的,,每次产生一组新的密钥 53 /// </summary> 54 /// <param name="content"></param> 55 /// <param name="encryptKey">加密key</param> 56 /// <param name="decryptKey">解密key</param> 57 /// <returns>加密后结果</returns> 58 private static string Encrypt(string content, out string publicKey, out string privateKey) 59 { 60 RSACryptoServiceProvider rsaProvider = new RSACryptoServiceProvider(); 61 publicKey = rsaProvider.ToXmlString(false); 62 privateKey = rsaProvider.ToXmlString(true); 63 64 UnicodeEncoding ByteConverter = new UnicodeEncoding(); 65 byte[] DataToEncrypt = ByteConverter.GetBytes(content); 66 byte[] resultBytes = rsaProvider.Encrypt(DataToEncrypt, false); 67 return Convert.ToBase64String(resultBytes); 68 } 69 }