修改MSDN上的示例,使之可以通过RSA证书文件加密和解密,中间遇到一个小问题。

Q:执行ExportParameters()方法时,回报CryptographicException:该项不适于在指定状态下使用(Key not valid for use in specified state)。

A:导入带有私钥的证书时,需要使用"X509KeyStorageFlags"参数标记"私钥可导出"。

X509Certificate2 prvcrt = new X509Certificate2(@"X:\path\to\CA.pfx", "***password***", X509KeyStorageFlags.Exportable);

以下为示例程序:

using System;

using System.Collections.Generic;

using System.Linq;

using System.Text;

namespace TeatApp_Crypto

{

    using System;

    using System.Security.Cryptography;

    using System.Security.Cryptography.X509Certificates;

    using System.Text;

    class RSACSPSample

    {

        static void Main()

        {

            try

            {

                //Create a UnicodeEncoder to convert between byte array and string.

                UnicodeEncoding ByteConverter = new UnicodeEncoding();

                //Create byte arrays to hold original, encrypted, and decrypted data.

                byte[] dataToEncrypt = ByteConverter.GetBytes("Data to Encrypt");

                byte[] encryptedData;

                byte[] decryptedData;

                X509Certificate2 pubcrt = new X509Certificate2(@"X:\path\to\CA.crt");

                RSACryptoServiceProvider pubkey = (RSACryptoServiceProvider)pubcrt.PublicKey.Key;

                X509Certificate2 prvcrt = new X509Certificate2(@"X:\path\to\CA.pfx", "***password***", X509KeyStorageFlags.Exportable);

                RSACryptoServiceProvider prvkey = (RSACryptoServiceProvider)prvcrt.PrivateKey;

                //Create a new instance of RSACryptoServiceProvider to generate

                //public and private key data.

                //using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                //{

                    //Console.WriteLine(RSA.ToXmlString(false));

                    //Pass the data to ENCRYPT, the public key information

                    //(using RSACryptoServiceProvider.ExportParameters(false),

                    //and a boolean flag specifying no OAEP padding.

                    encryptedData = RSAEncrypt(dataToEncrypt, pubkey.ExportParameters(false), false);

                    Console.WriteLine("Encrypted plaintext: {0}", Convert.ToBase64String(encryptedData));

                    //Pass the data to DECRYPT, the private key information

                    //(using RSACryptoServiceProvider.ExportParameters(true),

                    //and a boolean flag specifying no OAEP padding.

                    decryptedData = RSADecrypt(encryptedData, prvkey.ExportParameters(true), false); 

                    //Display the decrypted plaintext to the console.

                    Console.WriteLine("Decrypted plaintext: {0}", ByteConverter.GetString(decryptedData));

                //}

                prvkey.Clear();

                pubkey.Clear();

                Console.Read();

            }

            catch (ArgumentNullException)

            {

                //Catch this exception in case the encryption did

                //not succeed.

                Console.WriteLine("Encryption failed.");

            }

        }

        static public byte[] RSAEncrypt(byte[] DataToEncrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] encryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This only needs

                    //toinclude the public key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Encrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    encryptedData = RSA.Encrypt(DataToEncrypt, DoOAEPPadding);

                }

                return encryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.Message);

                return null;

            }

        }

        static public byte[] RSADecrypt(byte[] DataToDecrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] decryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This needs

                    //to include the private key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Decrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    decryptedData = RSA.Decrypt(DataToDecrypt, DoOAEPPadding);

                }

                return decryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.ToString());

                return null;

            }

        }

    }

}
using System;

using System.Collections.Generic;

using System.Linq;

using System.Text;

namespace TeatApp_Crypto

{

    using System;

    using System.Security.Cryptography;

    using System.Security.Cryptography.X509Certificates;

    using System.Text;

    class RSACSPSample

    {

        static void Main()

        {

            try

            {

                //Create a UnicodeEncoder to convert between byte array and string.

                UnicodeEncoding ByteConverter = new UnicodeEncoding();

                //Create byte arrays to hold original, encrypted, and decrypted data.

                byte[] dataToEncrypt = ByteConverter.GetBytes("Data to Encrypt");

                byte[] encryptedData;

                byte[] decryptedData;

                X509Certificate2 pubcrt = new X509Certificate2(@"X:\path\to\CA.crt");

                RSACryptoServiceProvider pubkey = (RSACryptoServiceProvider)pubcrt.PublicKey.Key;

                X509Certificate2 prvcrt = new X509Certificate2(@"X:\path\to\CA.pfx", "***password***", X509KeyStorageFlags.Exportable);

                RSACryptoServiceProvider prvkey = (RSACryptoServiceProvider)prvcrt.PrivateKey;

                //Create a new instance of RSACryptoServiceProvider to generate

                //public and private key data.

                //using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                //{

                    //Console.WriteLine(RSA.ToXmlString(false));

                    //Pass the data to ENCRYPT, the public key information

                    //(using RSACryptoServiceProvider.ExportParameters(false),

                    //and a boolean flag specifying no OAEP padding.

                    encryptedData = RSAEncrypt(dataToEncrypt, pubkey.ExportParameters(false), false);

                    Console.WriteLine("Encrypted plaintext: {0}", Convert.ToBase64String(encryptedData));

                    //Pass the data to DECRYPT, the private key information

                    //(using RSACryptoServiceProvider.ExportParameters(true),

                    //and a boolean flag specifying no OAEP padding.

                    decryptedData = RSADecrypt(encryptedData, prvkey.ExportParameters(true), false); 

                    //Display the decrypted plaintext to the console.

                    Console.WriteLine("Decrypted plaintext: {0}", ByteConverter.GetString(decryptedData));

                //}

                prvkey.Clear();

                pubkey.Clear();

                Console.Read();

            }

            catch (ArgumentNullException)

            {

                //Catch this exception in case the encryption did

                //not succeed.

                Console.WriteLine("Encryption failed.");

            }

        }

        static public byte[] RSAEncrypt(byte[] DataToEncrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] encryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This only needs

                    //toinclude the public key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Encrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    encryptedData = RSA.Encrypt(DataToEncrypt, DoOAEPPadding);

                }

                return encryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.Message);

                return null;

            }

        }

        static public byte[] RSADecrypt(byte[] DataToDecrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] decryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This needs

                    //to include the private key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Decrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    decryptedData = RSA.Decrypt(DataToDecrypt, DoOAEPPadding);

                }

                return decryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.ToString());

                return null;

            }

        }

    }

}

C#使用RSA证书文件加密和解密示例的更多相关文章

  1. C#使用RSA证书文件加密和解密

    public class EncrypHelp { static public byte[] RSAEncrypt(byte[] DataToEncrypt, RSAParameters RSAKey ...

  2. Angular+Ionic+RSA实现后端加密前端解密功能

    因业务需要,需要给android应用安装证书,通过读取证书文件内容实现某些功能的控制: 流程:后台通过publicKey对指定内容的文件进行加密,生成文件共客户下载,客户下载后选择该证书文件读取到应用 ...

  3. 使用PHP实现RSA算法的加密和解密

    本文提供使用RSA算法加密解密数据的PHP程序类(签名和验签的实现方式可以查看使用PHP实现RSA算法的签名和验签 这篇文章),封装了格式化公钥和私钥文件的方法,这样无论使用什么格式的公钥或者私钥都可 ...

  4. RSA加密算法的加密与解密

    转发原文链接:RSA加密算法加密与解密过程解析 1.加密算法概述 加密算法根据内容是否可以还原分为可逆加密和非可逆加密. 可逆加密根据其加密解密是否使用的同一个密钥而可以分为对称加密和非对称加密. 所 ...

  5. TEA加密算法的文件加密和解密的实现

    一.TEA加密算法简介 TEA加密算法是由英国剑桥大学计算机实验室提出的一种对称分组加密算法.它采用扩散和混乱方法,对64位的明文数据块,用128位密钥分组进行加密,产生64位的密文数据块,其循环轮数 ...

  6. RSA算法 JS加密 JAVA解密

    有这样一个需求,前端登录的usernamepassword,password必需加密.但不可使用MD5,由于后台要检測password的复杂度,那么在保证安全的前提下将password传到后台呢,答案 ...

  7. RSA生成、加密、解密、签名。

    首先,要会生成RSA密码对. https://app.alipay.com/market/document.htm?name=saomazhifu#page-23    (事例中的密钥对好像有问题,最 ...

  8. Android中文件加密和解密的实现

    最近项目中需要用到加解密功能,言外之意就是不想让人家在反编译后通过不走心就能获取文件里一些看似有用的信息,但考虑到加解密的简单实现,这里并不使用AES或DES加解密 为了对android中assets ...

  9. RSA非对称性前端加密后端解密

    前端加密代码 <!DOCTYPE html> <html xmlns="http://www.w3.org/1999/xhtml"> <head> ...

随机推荐

  1. Python 新手常犯错误(第一部分)

    转载自:http://blog.jobbole.com/42706/ 在之前几个月里,我教一些不了解Python的孩子来慢慢熟悉这门语言.渐渐地,我发现了一些几乎所有Python初学者都会犯的错误,所 ...

  2. 创建数据库时报"FILESTREAM 功能被禁用"

    问题,创建含有FileStream数据库时报"FILESTREAM 功能被禁用" 解决方式 修改数据库属性 打开管理配置工具,右键打开sql server的属性,查看FILESTR ...

  3. Centos搭建openvpn+mysql数据库认证

    服务器环境说明 1.系统版本 CentOS release 5.10 (Final) 64bits 2.软件版本 openvpn-2.3.6-1.el5 lzo-2.02-2.el5.1 lzo-d ...

  4. 高效而轻松的sed命令

    sed(stream editor)是一款高效的流编辑器,它一次只处理一行内容,处理时,把当前处理的行存储在临时缓冲区中,称为“模式空间”(pattern space),接着用sed命令处理缓冲区中的 ...

  5. 自己写getElementsByClass()方法

    // 根据类名获取元素 function getElementsByClass(oParent,sClass){ var aResult = []; var aNode = oParent.getEl ...

  6. coreseek(sphinx)安装2(mysql数据源配置和测试)

    Windows操作系统下 mysql数据源配置: 主要步骤:  配置mysql数据源配置文件->生成索引->开启索引   (三步) coreseek\etc\csft_mysql.conf ...

  7. 230. Kth Smallest Element in a BST

    Given a binary search tree, write a function kthSmallest to find the kth smallest element in it. Not ...

  8. RelativeLayout用到的一些重要的属性

    第一类:属性值为true或false android:layout_centerHrizontal                                           水平居中    ...

  9. C++ Primer : 第九章 : 顺序容器的定义、迭代器以及赋值与swap

    顺序容器属于C++ STL的一部分,也是非常重要的一部分. 顺序容器包括: std::vector,包含在头文件<vector>中 std::string, 包含在头文件<strin ...

  10. Android开源项目大全之工具库

    http://www.neast.cn/forum.php?mod=viewthread&tid=5487&fromuid=5