修改MSDN上的示例,使之可以通过RSA证书文件加密和解密,中间遇到一个小问题。

Q:执行ExportParameters()方法时,回报CryptographicException:该项不适于在指定状态下使用(Key not valid for use in specified state)。

A:导入带有私钥的证书时,需要使用"X509KeyStorageFlags"参数标记"私钥可导出"。

X509Certificate2 prvcrt = new X509Certificate2(@"X:\path\to\CA.pfx", "***password***", X509KeyStorageFlags.Exportable);

以下为示例程序:

using System;

using System.Collections.Generic;

using System.Linq;

using System.Text;

namespace TeatApp_Crypto

{

    using System;

    using System.Security.Cryptography;

    using System.Security.Cryptography.X509Certificates;

    using System.Text;

    class RSACSPSample

    {

        static void Main()

        {

            try

            {

                //Create a UnicodeEncoder to convert between byte array and string.

                UnicodeEncoding ByteConverter = new UnicodeEncoding();

                //Create byte arrays to hold original, encrypted, and decrypted data.

                byte[] dataToEncrypt = ByteConverter.GetBytes("Data to Encrypt");

                byte[] encryptedData;

                byte[] decryptedData;

                X509Certificate2 pubcrt = new X509Certificate2(@"X:\path\to\CA.crt");

                RSACryptoServiceProvider pubkey = (RSACryptoServiceProvider)pubcrt.PublicKey.Key;

                X509Certificate2 prvcrt = new X509Certificate2(@"X:\path\to\CA.pfx", "***password***", X509KeyStorageFlags.Exportable);

                RSACryptoServiceProvider prvkey = (RSACryptoServiceProvider)prvcrt.PrivateKey;

                //Create a new instance of RSACryptoServiceProvider to generate

                //public and private key data.

                //using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                //{

                    //Console.WriteLine(RSA.ToXmlString(false));

                    //Pass the data to ENCRYPT, the public key information

                    //(using RSACryptoServiceProvider.ExportParameters(false),

                    //and a boolean flag specifying no OAEP padding.

                    encryptedData = RSAEncrypt(dataToEncrypt, pubkey.ExportParameters(false), false);

                    Console.WriteLine("Encrypted plaintext: {0}", Convert.ToBase64String(encryptedData));

                    //Pass the data to DECRYPT, the private key information

                    //(using RSACryptoServiceProvider.ExportParameters(true),

                    //and a boolean flag specifying no OAEP padding.

                    decryptedData = RSADecrypt(encryptedData, prvkey.ExportParameters(true), false); 

                    //Display the decrypted plaintext to the console.

                    Console.WriteLine("Decrypted plaintext: {0}", ByteConverter.GetString(decryptedData));

                //}

                prvkey.Clear();

                pubkey.Clear();

                Console.Read();

            }

            catch (ArgumentNullException)

            {

                //Catch this exception in case the encryption did

                //not succeed.

                Console.WriteLine("Encryption failed.");

            }

        }

        static public byte[] RSAEncrypt(byte[] DataToEncrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] encryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This only needs

                    //toinclude the public key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Encrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    encryptedData = RSA.Encrypt(DataToEncrypt, DoOAEPPadding);

                }

                return encryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.Message);

                return null;

            }

        }

        static public byte[] RSADecrypt(byte[] DataToDecrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] decryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This needs

                    //to include the private key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Decrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    decryptedData = RSA.Decrypt(DataToDecrypt, DoOAEPPadding);

                }

                return decryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.ToString());

                return null;

            }

        }

    }

}
using System;

using System.Collections.Generic;

using System.Linq;

using System.Text;

namespace TeatApp_Crypto

{

    using System;

    using System.Security.Cryptography;

    using System.Security.Cryptography.X509Certificates;

    using System.Text;

    class RSACSPSample

    {

        static void Main()

        {

            try

            {

                //Create a UnicodeEncoder to convert between byte array and string.

                UnicodeEncoding ByteConverter = new UnicodeEncoding();

                //Create byte arrays to hold original, encrypted, and decrypted data.

                byte[] dataToEncrypt = ByteConverter.GetBytes("Data to Encrypt");

                byte[] encryptedData;

                byte[] decryptedData;

                X509Certificate2 pubcrt = new X509Certificate2(@"X:\path\to\CA.crt");

                RSACryptoServiceProvider pubkey = (RSACryptoServiceProvider)pubcrt.PublicKey.Key;

                X509Certificate2 prvcrt = new X509Certificate2(@"X:\path\to\CA.pfx", "***password***", X509KeyStorageFlags.Exportable);

                RSACryptoServiceProvider prvkey = (RSACryptoServiceProvider)prvcrt.PrivateKey;

                //Create a new instance of RSACryptoServiceProvider to generate

                //public and private key data.

                //using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                //{

                    //Console.WriteLine(RSA.ToXmlString(false));

                    //Pass the data to ENCRYPT, the public key information

                    //(using RSACryptoServiceProvider.ExportParameters(false),

                    //and a boolean flag specifying no OAEP padding.

                    encryptedData = RSAEncrypt(dataToEncrypt, pubkey.ExportParameters(false), false);

                    Console.WriteLine("Encrypted plaintext: {0}", Convert.ToBase64String(encryptedData));

                    //Pass the data to DECRYPT, the private key information

                    //(using RSACryptoServiceProvider.ExportParameters(true),

                    //and a boolean flag specifying no OAEP padding.

                    decryptedData = RSADecrypt(encryptedData, prvkey.ExportParameters(true), false); 

                    //Display the decrypted plaintext to the console.

                    Console.WriteLine("Decrypted plaintext: {0}", ByteConverter.GetString(decryptedData));

                //}

                prvkey.Clear();

                pubkey.Clear();

                Console.Read();

            }

            catch (ArgumentNullException)

            {

                //Catch this exception in case the encryption did

                //not succeed.

                Console.WriteLine("Encryption failed.");

            }

        }

        static public byte[] RSAEncrypt(byte[] DataToEncrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] encryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This only needs

                    //toinclude the public key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Encrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    encryptedData = RSA.Encrypt(DataToEncrypt, DoOAEPPadding);

                }

                return encryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.Message);

                return null;

            }

        }

        static public byte[] RSADecrypt(byte[] DataToDecrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] decryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This needs

                    //to include the private key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Decrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    decryptedData = RSA.Decrypt(DataToDecrypt, DoOAEPPadding);

                }

                return decryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.ToString());

                return null;

            }

        }

    }

}

C#使用RSA证书文件加密和解密示例的更多相关文章

  1. C#使用RSA证书文件加密和解密

    public class EncrypHelp { static public byte[] RSAEncrypt(byte[] DataToEncrypt, RSAParameters RSAKey ...

  2. Angular+Ionic+RSA实现后端加密前端解密功能

    因业务需要,需要给android应用安装证书,通过读取证书文件内容实现某些功能的控制: 流程:后台通过publicKey对指定内容的文件进行加密,生成文件共客户下载,客户下载后选择该证书文件读取到应用 ...

  3. 使用PHP实现RSA算法的加密和解密

    本文提供使用RSA算法加密解密数据的PHP程序类(签名和验签的实现方式可以查看使用PHP实现RSA算法的签名和验签 这篇文章),封装了格式化公钥和私钥文件的方法,这样无论使用什么格式的公钥或者私钥都可 ...

  4. RSA加密算法的加密与解密

    转发原文链接:RSA加密算法加密与解密过程解析 1.加密算法概述 加密算法根据内容是否可以还原分为可逆加密和非可逆加密. 可逆加密根据其加密解密是否使用的同一个密钥而可以分为对称加密和非对称加密. 所 ...

  5. TEA加密算法的文件加密和解密的实现

    一.TEA加密算法简介 TEA加密算法是由英国剑桥大学计算机实验室提出的一种对称分组加密算法.它采用扩散和混乱方法,对64位的明文数据块,用128位密钥分组进行加密,产生64位的密文数据块,其循环轮数 ...

  6. RSA算法 JS加密 JAVA解密

    有这样一个需求,前端登录的usernamepassword,password必需加密.但不可使用MD5,由于后台要检測password的复杂度,那么在保证安全的前提下将password传到后台呢,答案 ...

  7. RSA生成、加密、解密、签名。

    首先,要会生成RSA密码对. https://app.alipay.com/market/document.htm?name=saomazhifu#page-23    (事例中的密钥对好像有问题,最 ...

  8. Android中文件加密和解密的实现

    最近项目中需要用到加解密功能,言外之意就是不想让人家在反编译后通过不走心就能获取文件里一些看似有用的信息,但考虑到加解密的简单实现,这里并不使用AES或DES加解密 为了对android中assets ...

  9. RSA非对称性前端加密后端解密

    前端加密代码 <!DOCTYPE html> <html xmlns="http://www.w3.org/1999/xhtml"> <head> ...

随机推荐

  1. LeetCode Implement Stack using Queues (数据结构)

    题意: 用队列来实现栈. 思路: 没有什么捷径,纯粹模拟.但是用一个队列就够了. class Stack { /* // Push element x onto stack. void push(in ...

  2. chromium 安装 pepper flash player

    打开终端,输入以下命令即可安装: 1. sudo apt-get update 2. sudo apt-get install chromium-browser 3. sudo apt-get ins ...

  3. 跟开涛老师学shiro -- shiro简介

    1.1  简介 Apache Shiro是Java的一个安全框架.目前,使用Apache Shiro的人越来越多,因为它相当简单,对比Spring Security,可能没有Spring Securi ...

  4. 光流算法:Brox算法(转载)

    参考论文:1. High Accuracy Optical Flow Estimation Based on a Theory for Warping, Thomas Box, ECCV20042. ...

  5. java的getClass()函数

    Java反射学习 所谓反射,可以理解为在运行时期获取对象类型信息的操作.传统的编程方法要求程序员在编译阶段决定使用的类型,但是在反射的帮助下,编程人员可以动态获取这些信息,从而编写更加具有可移植性的代 ...

  6. 最短路径--SPFA 算法

    适用范围:给定的图存在负权边,这时类似Dijkstra等算法便没有了用武之地,而Bellman-Ford算法的复杂度又过高,SPFA算法便派上用场了. 我们约定有向加权图G不存在负权回路,即最短路径一 ...

  7. 分享"狼用"API一個

    API People that are interested in using our service for automated caching of their newly created .to ...

  8. gradle默认路径

    C:\Users\wango\.gradle\wrapper\dists\gradle-2.2.1-all\c64ydeuardnfqctvr1gm30w53

  9. mysql修改root密码和设置权限

    整理了以下四种在MySQL中修改root密码的方法,可能对大家有所帮助! 方法1: 用SET PASSWORD命令 mysql -u root mysql> SET PASSWORD FOR ' ...

  10. Quailty and Binary Operation

    Quailty and Binary Operation 题意 分别给\(N,M(N,M \le 50000)\)两个数组\(A\)和\(B\),满足\(0 \le A_i,B_i \le 50000 ...