初始化向量异常

时间:2013-03-12 22:24:22

标签: android security exception encryption

我想按此顺序使用这些元素构建一个字节数组:

  • 对称加密AES密钥(AES 128的随机密钥,AES 128的随机初始化矢量。在CBC模式下使用AES 128加密和PKCS5填充。加密前文本编码为UTF-8)
  • AES IV
  • 加密消息(在ECB模式下使用RSA算法和PKCS1填充,以前生成的密钥和消息接收者的公钥)

我正在做的是获取每个参数的长度,以便创建新的byte []。然后在for循环中,我尝试按顺序添加这三个元素。

public void encrypt(String original)
{
    SecureRandom sr = new SecureRandom();

    byte [] key = new byte[16];
    byte [] iv = new byte[16];

    sr.nextBytes(key);
    sr.nextBytes(iv);

    Cipher cipher;

    try 
    {
        cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
        IvParameterSpec IV=new IvParameterSpec(iv);
        cipher.init(Cipher.ENCRYPT_MODE, new SecretKeySpec(key,"AES"), IV);
        byte[] utf8 = original.getBytes("UTF-8");
        byte []encryptedAES = cipher.doFinal(utf8);

        KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA");
        kpg.initialize(128);//128 bits
        KeyPair kp = kpg.genKeyPair();

        Cipher publicKeyCipher = Cipher.getInstance("RSA/ECB/PKCS1PADDING");
        publicKeyCipher.init(Cipher.ENCRYPT_MODE, kp.getPublic());
        byte [] encryptedRSA = publicKeyCipher.doFinal(encryptedAES); //error here

        int length1=encryptedAES.length;
        int length2=IV.getIV().length;
        int length3=encryptedRSA.length;
        int length=length1+length2+length3;
        byte [] result= new byte[length];

        int l=0,m=0;

        for (int i=0; i<length; i++)
        {
            if(i<length1)
            {
                result[i] = encryptedAES[i];
            }
            else if(i>=length1 && i<length2)
            {
                result[i] = IV.getIV()[l];
                l++;
            }
            else if(i>=length2)
            {
                result[i] = encryptedRSA[m];
                m++;
            }
        }
        Log.i("Encrypted", "done");
        this.encryptedMessage=Base64.encodeToString(result, false);
        Log.i("Encrypted Message:", this.encryptedMessage);

    } catch (NoSuchAlgorithmException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    } catch (NoSuchPaddingException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    } catch (InvalidKeyException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    } catch (InvalidAlgorithmParameterException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    } catch (IllegalBlockSizeException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    } catch (BadPaddingException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    } catch (UnsupportedEncodingException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    } catch (IOException e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    }
}

我得到的例外是:

java.lang.ArrayIndexOutOfBoundsException: too much data for RSA block

1 个答案:

答案 0 :(得分:2)

显然你的IV必须是16个字节,而不是128个字节。 (128位= 16字节)

相关问题
最新问题