作者:郭嘉
邮箱:allenwells@163.com
博客:http://blog.csdn.net/allenwells
github:https://github.com/AllenWell
使用MD5计算消息摘要
try
{
MessageDigest md5 = MessageDigest.getInstance("MD5");
byte[] testdata = { 1, 2, 3, 4, 5 };
md5.update(testdata);
byte[] myhash = md5.digest();
}
catch (NoSuchAlgorithmException e)
{
}使用SHA-1计算消息摘要
try
{
MessageDigest sha = MessageDigest.getInstance("SHA-1");
byte[] testdata = { 1, 2, 3, 4, 5 };
sha.update(testdata);
byte[] myhash = sha.digest();
}
catch (NoSuchAlgorithmException e)
{
}密钥用接口java.security.Key表示,该接口提供了3种方法:
DSA算法和DH算法生成公私钥对
try
{
// 1024一bit Digital Signature Algorithm(DSA) key pairs
KeyPairGenerator keyGen = KeyPairGenerator.getInstance("DSA");
keyGen.initialize(1024);
KeyPair keypair = keyGen.genKeyPair();
PrivateKey privateKey = keypair.getPrivate();
PublicKey publicKey = keypair.getPublic();
// 576-bit DiffieHellman key pair
keyGen = KeyPairGenerator.getInstance("DH");
keyGen.initialize(576);
keypair = keyGen.genKeyPair();
privateKey = keypair.getPrivate();
publicKey = keypair.getPublic();
}
catch (java.security.NoSuchAlgorithmException e)
{
}
数字签名技术是使用公钥加密技术生成的,发送方用私钥对消息签名,而接收方用公钥对消息进行解密,从而接收方能验证消息的来源或签名者,从而确保消息的完整性和真实性。
私钥签名
try
{
byte[] testdata = { 1, 2, 3, 4, 5 };
Signature dsig = Signature.getInstance(privateKey
.getAlgorithm());
dsig.initSign(privateKey);
dsig.update(testdata);
byte[] signedData = dsig.sign();
}
catch (SignatureException e)
{
}
catch (InvalidKeyException e)
{
}
catch (NoSuchAlgorithmException e)
{
}公钥验证
try
{
Signature publicDsig = Signature.getInstance(publicKey.getAlgorithm());
publicDsig.initVerify(publicKey);
publicDsig.update(signedData);
boolean result = publicDsig.verify(signatureToVerify);
}
catch(SignatureException e)
{
}
catch (InvalidKeyException e)
{
}
catch (NoSuchAlgorithmException e)
{
}【Java安全技术探索之路系列:Java可扩展安全架构】之四:JCA(三):JCA编程模型
原文地址:http://blog.csdn.net/allenwells/article/details/46504875
