问题描述
|
互联网上有很多关于加密的答案,但是我一直无法找到我想要的东西:使用c#提供的用于加密字符串和文本文件的工具进行简单的强加密。
我的主要问题是我不知道如何将IV保存到文本文件的开头或如何创建随机IV。我有一个关于加密流的例子,我也看到了一个关于DES的例子,但是它们使用相同的IV和密钥,这(按我所知)并不是一件好事。
解决方法
您是对的,使用相同的IV是一个不好的做法,尤其是如果Key或IV是硬编码的。我建议使用
AesManaged
var aes = new AesManaged(); //Set your KeySize if you will generate a key too.
aes.GenerateIV();
var iv = aes.IV;
using (AesManaged aes = new AesManaged())
{
//Set the Key here.
aes.GenerateIV();
using (var transform = aes.CreateEncryptor())
{
using (var fileStream = new FileStream(\"C:\\\\in.txt\",FileMode.Open))
{
using (var saveTo = new FileStream(\"C:\\\\out.txt\",FileMode.Create))
{
using (var cryptoStream = new CryptoStream(saveTo,transform,CryptoStreamMode.Write))
{
var iv = aes.IV;
cryptoStream.Write(iv,iv.Length);
fileStream.CopyTo(cryptoStream);
}
}
}
}
}
using System;
using System.Collections.Generic;
using System.ComponentModel;
using System.Data;
using System.Drawing;
using System.IO;
using System.Linq;
using System.Security.Cryptography;
using System.Text;
using System.Threading.Tasks;
using System.Windows.Forms;
namespace EncryptDecrypt
{
public partial class Form1 : Form
{
static readonly string PasswordHash = \"P!!Sw0rd~\";
static readonly string SaltKey = \"Sa~LT~KEY\";
static readonly string VIKey = \"@1B2c3D4@e5F6<7H8<.\";
public Form1()
{
InitializeComponent();
}
private void btn_Process_Click(object sender,EventArgs e)
{
try
{
lbl_Error.Text = \"\";
if (chb_Decrypt.Checked == true)
txt_Result.Text = Decrypt(txt_Value.Text);
else
txt_Result.Text = Encrypt(txt_Value.Text);
}
catch (Exception ex)
{
lbl_Error.Text = ex.Message;
}
}
public static string Encrypt(string plainText)
{
byte[] plainTextBytes = Encoding.UTF8.GetBytes(plainText);
byte[] keyBytes = new Rfc2898DeriveBytes(PasswordHash,Encoding.ASCII.GetBytes(SaltKey)).GetBytes(256 / 8);
var symmetricKey = new RijndaelManaged() { Mode = CipherMode.CBC,Padding = PaddingMode.Zeros };
var encryptor = symmetricKey.CreateEncryptor(keyBytes,Encoding.ASCII.GetBytes(VIKey));
byte[] cipherTextBytes;
using (var memoryStream = new MemoryStream())
{
using (var cryptoStream = new CryptoStream(memoryStream,encryptor,CryptoStreamMode.Write))
{
cryptoStream.Write(plainTextBytes,plainTextBytes.Length);
cryptoStream.FlushFinalBlock();
cipherTextBytes = memoryStream.ToArray();
cryptoStream.Close();
}
memoryStream.Close();
}
return Convert.ToBase64String(cipherTextBytes);
}
public static string Decrypt(string encryptedText)
{
byte[] cipherTextBytes = Convert.FromBase64String(encryptedText);
byte[] keyBytes = new Rfc2898DeriveBytes(PasswordHash,Padding = PaddingMode.None };
var decryptor = symmetricKey.CreateDecryptor(keyBytes,Encoding.ASCII.GetBytes(VIKey));
var memoryStream = new MemoryStream(cipherTextBytes);
var cryptoStream = new CryptoStream(memoryStream,decryptor,CryptoStreamMode.Read);
byte[] plainTextBytes = new byte[cipherTextBytes.Length];
int decryptedByteCount = cryptoStream.Read(plainTextBytes,plainTextBytes.Length);
memoryStream.Close();
cryptoStream.Close();
return Encoding.UTF8.GetString(plainTextBytes,decryptedByteCount).TrimEnd(\"\\0\".ToCharArray());
}
}
}