0

我是 ECIES 新手,使用 ECIES 算法进行加密和解密。下面是我用于加密和解密机制的代码片段。

    public static void main(String[] args) throws Exception {

      // Server Side Generates KeyPair
      KeyPair keyPair = serverSideKeyGeneration();

      // Client receives the KeyPair or Public Key before sending actual call to server
      String originalString = "Hello";
      byte[] ecryptedBase64Data = clientSideCodeToGenerateEncryptedData(originalString, keyPair);
      System.out.println("Encrypted Data" + ecryptedBase64Data);

      // Server receives the encrypted Data and decrypt using Private Key
      String originalValue = decryptEncodedString(keyPair, ecryptedBase64Data);
      System.out.println(originalValue);

    }

    private static byte[] clientSideCodeToGenerateEncryptedData(String originalString, KeyPair keyPair) throws Exception{
       Cipher cipher = Cipher.getInstance("ECIES");
       cipher.init(Cipher.ENCRYPT_MODE, keyPair.getPublic());
       byte[] ecryptedBase64Data = Base64.encode(cipher.doFinal(originalString.getBytes("UTF-8")));
       return ecryptedBase64Data;

    }

   private static KeyPair serverSideKeyGeneration() throws Exception {
       Security.addProvider(new BouncyCastleProvider());

       KeyPairGenerator kpg = KeyPairGenerator.getInstance("ECIES");
       kpg.initialize(new ECGenParameterSpec("secp256r1"));

       // Key pair to store public and private key
       KeyPair keyPair = kpg.generateKeyPair();

       // System.out.println(keyPair.getPublic());
       // System.out.println(keyPair.getPrivate());

       return keyPair;

   }

   private static String decryptEncodedString(KeyPair keyPair, byte[] ret) throws Exception {
       Cipher iesCipherServer = Cipher.getInstance("ECIES");
       iesCipherServer.init(Cipher.DECRYPT_MODE, keyPair.getPrivate());
       String originalValue = new String(iesCipherServer.doFinal(Base64.decode(ret)));
       return originalValue;

   }

上面的代码片段工作正常,但我想要的是在客户端和服务器之间进行任何通信之前,客户端将发送一个启动请求并在其末尾接收公钥。然后将使用公钥加密有效负载并将其发送到服务器,并在接收到后,服务器将使用之前生成的私钥解密数据。

当我使用以下代码段将 keyPair 存储为 JSON 对象时,它会引发异常:

    MobileData data = new MobileData();
    data.setKeyPair(keyPair);

    ObjectMapper mapper = new ObjectMapper();
    String jsonString = mapper.writeValueAsString(data);

例外:

org.codehaus.jackson.map.JsonMappingException: No serializer found for class org.bouncycastle.math.ec.WNafL2RMultiplier 并且没有发现创建 BeanSerializer 的属性(为避免异常,禁用 SerializationConfig.Feature.FAIL_ON_EMPTY_BEANS))(通过参考链:MobileData ["keyPair"]->java.security.KeyPair["public"]->org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPublicKey["parameters"]->org.bouncycastle.jce.spec.ECParameterSpec["曲线"]->org.bouncycastle.math.ec.custom.sec.SecP256R1Curve["乘数"])

如何将公钥发送给客户端?

4

1 回答 1

2

问题是KeyPair不能序列化为json。您只需发送公钥内容

 public class MobileData{
        byte publicKeyEncoded[];
 }

MobileData data = new MobileData();
data.setPublicKeyEncoded(keyPair.getPublic().getEncoded());

ObjectMapper mapper = new ObjectMapper();
String jsonString = mapper.writeValueAsString(data);

公钥将被编码为 base64 到 json 字符串中

于 2017-07-10T08:55:43.127 回答