修改MSDN上的示例,使之可以通过RSA证书文件加密和解密,中间遇到一个小问题。

Q:执行ExportParameters()方法时,回报CryptographicException:该项不适于在指定状态下使用(Key not valid for use in specified state)。

A:导入带有私钥的证书时,需要使用"X509KeyStorageFlags"参数标记"私钥可导出"。

X509Certificate2 prvcrt = new X509Certificate2(@"X:\path\to\CA.pfx", "***password***", X509KeyStorageFlags.Exportable);

以下为示例程序:

using System;

using System.Collections.Generic;

using System.Linq;

using System.Text;

namespace TeatApp_Crypto

{

    using System;

    using System.Security.Cryptography;

    using System.Security.Cryptography.X509Certificates;

    using System.Text;

    class RSACSPSample

    {

        static void Main()

        {

            try

            {

                //Create a UnicodeEncoder to convert between byte array and string.

                UnicodeEncoding ByteConverter = new UnicodeEncoding();

                //Create byte arrays to hold original, encrypted, and decrypted data.

                byte[] dataToEncrypt = ByteConverter.GetBytes("Data to Encrypt");

                byte[] encryptedData;

                byte[] decryptedData;

                X509Certificate2 pubcrt = new X509Certificate2(@"X:\path\to\CA.crt");

                RSACryptoServiceProvider pubkey = (RSACryptoServiceProvider)pubcrt.PublicKey.Key;

                X509Certificate2 prvcrt = new X509Certificate2(@"X:\path\to\CA.pfx", "***password***", X509KeyStorageFlags.Exportable);

                RSACryptoServiceProvider prvkey = (RSACryptoServiceProvider)prvcrt.PrivateKey;

                //Create a new instance of RSACryptoServiceProvider to generate

                //public and private key data.

                //using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                //{

                    //Console.WriteLine(RSA.ToXmlString(false));

                    //Pass the data to ENCRYPT, the public key information

                    //(using RSACryptoServiceProvider.ExportParameters(false),

                    //and a boolean flag specifying no OAEP padding.

                    encryptedData = RSAEncrypt(dataToEncrypt, pubkey.ExportParameters(false), false);

                    Console.WriteLine("Encrypted plaintext: {0}", Convert.ToBase64String(encryptedData));

                    //Pass the data to DECRYPT, the private key information

                    //(using RSACryptoServiceProvider.ExportParameters(true),

                    //and a boolean flag specifying no OAEP padding.

                    decryptedData = RSADecrypt(encryptedData, prvkey.ExportParameters(true), false); 

                    //Display the decrypted plaintext to the console.

                    Console.WriteLine("Decrypted plaintext: {0}", ByteConverter.GetString(decryptedData));

                //}

                prvkey.Clear();

                pubkey.Clear();

                Console.Read();

            }

            catch (ArgumentNullException)

            {

                //Catch this exception in case the encryption did

                //not succeed.

                Console.WriteLine("Encryption failed.");

            }

        }

        static public byte[] RSAEncrypt(byte[] DataToEncrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] encryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This only needs

                    //toinclude the public key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Encrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    encryptedData = RSA.Encrypt(DataToEncrypt, DoOAEPPadding);

                }

                return encryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.Message);

                return null;

            }

        }

        static public byte[] RSADecrypt(byte[] DataToDecrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] decryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This needs

                    //to include the private key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Decrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    decryptedData = RSA.Decrypt(DataToDecrypt, DoOAEPPadding);

                }

                return decryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.ToString());

                return null;

            }

        }

    }

}
using System;

using System.Collections.Generic;

using System.Linq;

using System.Text;

namespace TeatApp_Crypto

{

    using System;

    using System.Security.Cryptography;

    using System.Security.Cryptography.X509Certificates;

    using System.Text;

    class RSACSPSample

    {

        static void Main()

        {

            try

            {

                //Create a UnicodeEncoder to convert between byte array and string.

                UnicodeEncoding ByteConverter = new UnicodeEncoding();

                //Create byte arrays to hold original, encrypted, and decrypted data.

                byte[] dataToEncrypt = ByteConverter.GetBytes("Data to Encrypt");

                byte[] encryptedData;

                byte[] decryptedData;

                X509Certificate2 pubcrt = new X509Certificate2(@"X:\path\to\CA.crt");

                RSACryptoServiceProvider pubkey = (RSACryptoServiceProvider)pubcrt.PublicKey.Key;

                X509Certificate2 prvcrt = new X509Certificate2(@"X:\path\to\CA.pfx", "***password***", X509KeyStorageFlags.Exportable);

                RSACryptoServiceProvider prvkey = (RSACryptoServiceProvider)prvcrt.PrivateKey;

                //Create a new instance of RSACryptoServiceProvider to generate

                //public and private key data.

                //using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                //{

                    //Console.WriteLine(RSA.ToXmlString(false));

                    //Pass the data to ENCRYPT, the public key information

                    //(using RSACryptoServiceProvider.ExportParameters(false),

                    //and a boolean flag specifying no OAEP padding.

                    encryptedData = RSAEncrypt(dataToEncrypt, pubkey.ExportParameters(false), false);

                    Console.WriteLine("Encrypted plaintext: {0}", Convert.ToBase64String(encryptedData));

                    //Pass the data to DECRYPT, the private key information

                    //(using RSACryptoServiceProvider.ExportParameters(true),

                    //and a boolean flag specifying no OAEP padding.

                    decryptedData = RSADecrypt(encryptedData, prvkey.ExportParameters(true), false); 

                    //Display the decrypted plaintext to the console.

                    Console.WriteLine("Decrypted plaintext: {0}", ByteConverter.GetString(decryptedData));

                //}

                prvkey.Clear();

                pubkey.Clear();

                Console.Read();

            }

            catch (ArgumentNullException)

            {

                //Catch this exception in case the encryption did

                //not succeed.

                Console.WriteLine("Encryption failed.");

            }

        }

        static public byte[] RSAEncrypt(byte[] DataToEncrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] encryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This only needs

                    //toinclude the public key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Encrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    encryptedData = RSA.Encrypt(DataToEncrypt, DoOAEPPadding);

                }

                return encryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.Message);

                return null;

            }

        }

        static public byte[] RSADecrypt(byte[] DataToDecrypt, RSAParameters RSAKeyInfo, bool DoOAEPPadding)

        {

            try

            {

                byte[] decryptedData;

                //Create a new instance of RSACryptoServiceProvider.

                using (RSACryptoServiceProvider RSA = new RSACryptoServiceProvider())

                {

                    //Import the RSA Key information. This needs

                    //to include the private key information.

                    RSA.ImportParameters(RSAKeyInfo);

                    //Decrypt the passed byte array and specify OAEP padding.

                    //OAEP padding is only available on Microsoft Windows XP or

                    //later.

                    decryptedData = RSA.Decrypt(DataToDecrypt, DoOAEPPadding);

                }

                return decryptedData;

            }

            //Catch and display a CryptographicException

            //to the console.

            catch (CryptographicException e)

            {

                Console.WriteLine(e.ToString());

                return null;

            }

        }

    }

}

C#使用RSA证书文件加密和解密示例的更多相关文章

  1. C#使用RSA证书文件加密和解密

    public class EncrypHelp { static public byte[] RSAEncrypt(byte[] DataToEncrypt, RSAParameters RSAKey ...

  2. Angular+Ionic+RSA实现后端加密前端解密功能

    因业务需要,需要给android应用安装证书,通过读取证书文件内容实现某些功能的控制: 流程:后台通过publicKey对指定内容的文件进行加密,生成文件共客户下载,客户下载后选择该证书文件读取到应用 ...

  3. 使用PHP实现RSA算法的加密和解密

    本文提供使用RSA算法加密解密数据的PHP程序类(签名和验签的实现方式可以查看使用PHP实现RSA算法的签名和验签 这篇文章),封装了格式化公钥和私钥文件的方法,这样无论使用什么格式的公钥或者私钥都可 ...

  4. RSA加密算法的加密与解密

    转发原文链接:RSA加密算法加密与解密过程解析 1.加密算法概述 加密算法根据内容是否可以还原分为可逆加密和非可逆加密. 可逆加密根据其加密解密是否使用的同一个密钥而可以分为对称加密和非对称加密. 所 ...

  5. TEA加密算法的文件加密和解密的实现

    一.TEA加密算法简介 TEA加密算法是由英国剑桥大学计算机实验室提出的一种对称分组加密算法.它采用扩散和混乱方法,对64位的明文数据块,用128位密钥分组进行加密,产生64位的密文数据块,其循环轮数 ...

  6. RSA算法 JS加密 JAVA解密

    有这样一个需求,前端登录的usernamepassword,password必需加密.但不可使用MD5,由于后台要检測password的复杂度,那么在保证安全的前提下将password传到后台呢,答案 ...

  7. RSA生成、加密、解密、签名。

    首先,要会生成RSA密码对. https://app.alipay.com/market/document.htm?name=saomazhifu#page-23    (事例中的密钥对好像有问题,最 ...

  8. Android中文件加密和解密的实现

    最近项目中需要用到加解密功能,言外之意就是不想让人家在反编译后通过不走心就能获取文件里一些看似有用的信息,但考虑到加解密的简单实现,这里并不使用AES或DES加解密 为了对android中assets ...

  9. RSA非对称性前端加密后端解密

    前端加密代码 <!DOCTYPE html> <html xmlns="http://www.w3.org/1999/xhtml"> <head> ...

随机推荐

  1. LeetCode Sort Colors (技巧)

    题意: 一个数组只可能含有3种数据,分别为1,2,3,请将数组排序(只能扫一遍). 思路: 如果扫两遍的话,用个桶记录一下,再赋值上去就行了. class Solution { public: voi ...

  2. Git工作常用

    工作时,最好每次都创建一个本地分支,这样就会减少错误修改远程代码的机会. 基于远程dev分支创建分支并切到本地分支: git checkout -b <local_dev> -t orig ...

  3. java多线程向数据库中加载数据

    读取本地文件,每行为一条记录,文件大小550M,200万条数据.先将文件读取的内存中,再开启6个线程连接postgresql不同coordinator端口导入数据.代码如下: import java. ...

  4. PAT (Basic Level) Practise:1001. 害死人不偿命的(3n+1)猜想

    [题目链接] 卡拉兹(Callatz)猜想: 对任何一个自然数n,如果它是偶数,那么把它砍掉一半:如果它是奇数,那么把(3n+1)砍掉一半.这样一直反复砍下去,最后一定在某一步得到n=1.卡拉兹在19 ...

  5. ResponsiveSlides.js最轻量级的幻灯片插件

    摘要:ResponsiveSlides.js是一个展示同一容器内图片的轻量级响应式jQuery幻灯片插件它支持包括IE6在内的几乎所有的浏览器,在IE6中还支持最大宽度属性,但在其它浏览器中并不原生支 ...

  6. Spring的声明试事务

    1 在配置文件中加入: <!-- 配置事务管理器 --> <bean id="transactionManager" class="org.spring ...

  7. 使用 rqt_console 和 roslaunch---8

    使用 rqt_console 和 roslaunch Description: 本教程介绍如何使用rqt_console和rqt_logger_level进行调试,以及如何使用roslaunch同时运 ...

  8. HZAU 17:LCS

    17: LCS Time Limit: 1 Sec  Memory Limit: 128 MBSubmit: 184  Solved: 43[Submit][Status][Web Board] De ...

  9. VC调用系统的调色板

    调用系统的调色板可以用到ChooseColor这个函数,这个函数传入一个参数为CHOOSECOLOR结构体的指针,其函数原型为 BOOL ChooseColor(LPCHOOSECOLOR lpCC) ...

  10. ps图层混合模式

    溶解: ------------- 变暗:当使用该模式时,图像中的颜色或物体,总是其中颜色比较深的覆盖比较浅的,而数值相同或更深的像素不受影响.但记住,是上层针对下层,也就是说要有两个图层才有用 正片 ...