堆栈内存溢出
  简体   繁体   English

通过URL后不保留以Base64编码的加密字符串吗?

[英]Encrypted String encoded in Base64 not preserved after going through URL?

 原文  2014-05-24 08:34:43       java/ encryption/ base64/ urlencode

问题描述

A "data" String is encoded in Base64 (URL safe version) then crypted into a byte array . “数据” StringBase64 (URL安全版本)编码,然后加密为byte array This byte array is turned into a String and sent to a REST web service. byte array变成一个String ,并发送到REST Web服务。 When it arrives on the web service side, the length of the String has changed. 当它到达Web服务端时, String的长度已更改。 I am not a specialist, what do I do wrong? 我不是专家,我该怎么办?

The code: 编码: 

//CLIENT SIDE
import org.apache.commons.codec.binary.Base64;    

String data = "My message to be encrypted";        
PublicKey pubKey = readPublicKeyFromFile();
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.ENCRYPT_MODE, pubKey);
byte[] encryptedData = cipher.doFinal(Base64.encodeBase64URLSafe(data.getBytes()));

System.out.println("length of original data string: " + data.length());
System.out.println("length of original data string turned into byte array: " + data.getBytes().length);
System.out.println("length of data string encrypted into byte array: " + encryptedData.length);

String encryptedDataToString = new String(encrypedData,"UTF-8");
System.out.println("length encrypted String into byte array, converted back to String for url: " + encryptedDataToString.length);

httpclient = new DefaultHttpClient();
builder = new URIBuilder();
builder.setScheme("http").setHost(xxx + "webresources/GetData/" + path)
                    .setParameter("data", encryptedDataToString);
            uri = builder.build();



//SERVER SIDE
import org.apache.commons.codec.binary.Base64;

@GET
@Path("path")
@Produces("text/plain")
public String getToken(@QueryParam("data") String data) {

System.out.println("length of data: " + data.length());
System.out.println("length of data to byte array wthout decoding: " + data.getBytes().length);
System.out.println("length of data to byte decoded: " + Base64.decodeBase64(data).length);


//CONSOLE

//CLIENT SIDE
length of original data string: 37
length of original data string turned into byte array: 37
length of data string encrypted into byte array: 256
length encrypted String into byte array, converted back to String for url: 256

//SERVER SIDE
INFO: length of data: 237
INFO: length of data to byte wthout decoding: 444
INFO: length of data to byte decoded: 4

The data String as it is appearing in the URL, client side : T%23%EF%BF%BD%0C%EF%BF%BD%EF%BF%BD7%EF%BF%BD%EF%BF%BDk%EF%BF%BDA%EF%BF%BD%10L%EF%BF%BD%EF%BF%BD%EF%BF%BD%14%EF%BF%BD%EF%BF%BD%5E%22%15B%1Ae%01%EF%BF%BDgmE%0C%EF%BF%BD%EF%BF%BDn%EF%BF%BD%3D%EF%BF%BD%EF%BF%BD%DC%80%EF%BF%BD%EF%BF%BDIM%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BDeM%EF%BF%BD5%EF%BF%BD%EF%BF%BD%26%EF%BF%BD%1E%7D%EF%BF%BDNAQ%EF%BF%BDlT%EF%BF%BD%EF%BF%BDVXR%EF%BF%BDi%0E%EF%BF%BD%EF%BF%BD%EF%BF%BD3U%0C%EF%BF%BD%EF%BF%BD%1E%EF%BF%BD%EF%BF%BD%0Fep%EF%BF%BD%C3%A1b6%EF%BF%BD%CE%B5y9x%EF%BF%BD%EF%BF%BD%0D%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BD%18%7C%06%21%EF%BF%BD0%EF%BF%BD%EF%BF%BD%EF%BF%BD%03%EF%BF%BD%17%CB%8F%7D%EF%BF%BD%26A%EF%BF%BD%12%EF%BF%BD%EF%BF%BD%EF%BF%BD-%DE%8D%EF%BF%BD%EF%BF%BD%EF%BF%BDt%EF%BF%BD%EF%BF%BD%EF%BF%BDTezs%EF%BF%BD%0C%EF%BF%BD%2C%EF%BF%BD%EF%BF%BD%EF%BF%BD%DD%94%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BD%19%EF%BF%BD%25%EF%BF%BDt%EF%BF%BDQ%EF%BF%BD%7D%EF%BF%BDF%EF%BF%BD%EF%BF%BD%EF%BF%BD%1An%EF%BF%B 出现在URL中的数据String客户端 :T%23%EF%BF%BD%0C%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BDk% EF%BF%BDA%EF%BF%BD%10L%EF%BF%BD%EF%BF%BD%EF%BF%BD%14%EF%BF%BD%EF%BF%BD%5E%22% 15B%1Ae%01%EF%BF%BDgmE%0C%EF%BF%BD%EF%BF%BDn%EF%BF%BD%3D%EF%BF%BD%EF%BF%BD%DC%DC%80% EF%BF%BD%EF%BF%BDIM%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BDeM%EF%BF%BD%EF%BF%BD%EF% BF%BD%26%EF%BF%BD%1E%7D%EF%BF%BDNAQ%EF%BF%BDlT%EF%BF%BD%EF%BF%BDVXR%EF%BF%BDi%0E%EF% BF%BD%EF%BF%BD%EF%BF%BD3U%0C%EF%BF%BD%EF%BF%BD%1E%EF%BF%BD%EF%BF%BD%0Fep%EF%BF% BD%C3%A1b6%EF%BF%BD%CE%B5y9x%EF%BF%BD%EF%BF%BD%0D%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF% BF%BD%18%7C%06%21%EF%BF%BD0%EF%BF%BD%EF%BF%BD%EF%BF%BD%03%EF%BF%BD%17%CB%8F% 7D%EF%BF%BD%26A%EF%BF%BD%12%EF%BF%BD%EF%BF%BD%EF%BF%BD-%DE%8D%EF%BF%BD%EF%BF %BD%EF%BF%BDt%EF%BF%BD%EF%BF%BD%EF%BF%BDTezs%EF%BF%BD%0C%EF%BF%BD%2C%EF%BF%BD%EF %BF%BD%EF%BF%BD%DD%94%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BD %19%EF%BF%BD%25%EF%BF%BDt%EF%BF%BDQ%EF%BF%BD%7D%EF%BF%BDF%EF%BF%BD%EF%BF%BD%EF %BF%BD%1An%EF%BF%B D+%EF%BF%BD%CF%86R%EF%BF%BDW%EF%BF%BDU%EF%BF%BDxo%EF%BF%BDd%EF%BF%BD%08-%3F%EF%BF%BD%2F%EF%BF%BD%5Bg%EF%BF%BD2%EF%BF%BD%EF%BF%BDk%5E%EF%BF%BDm%EF%BF%BD%EF%BF%BD%25%EF%BF%BD%EF%BF%BD*%07%5E%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BDU%EF%BF%BD%7F%EF%BF%BDP%EF%BF%BD%EF%BF%BD%EF%BF%BD%7B%07%EF%BF%BDO%EF%BF%BD%EF%BF%BD%11%CB%9C%EF%BF%BD%1Dk%EF%BF%BDkL8%EF%BF%BD*%EF%BF%BD%1D%EF%BF%BDl%EF%BF%BD%EF%BF%BD%EF%BF%BD%02%EF%BF%BD D +%EF%BF%BD%CF%86R%EF%BF%BDW%EF%BF%BDU%EF%BF%BDxo%EF%BF%BDd%EF%BF%BD%08-%3F%EF%BF %BD%2F%EF%BF%BD%5Bg%EF%BF%BD2%EF%BF%BD%EF%BF%BDk%5E%EF%BF%BDm%EF%BF%BD%EF%BF%BD %25%EF%BF%BD%EF%BF%BD *%07%5E%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BDU%EF%BF%BD% 7F%EF%BF%BDP%EF%BF%BD%EF%BF%BD%EF%BF%BD%7B%07%EF%BF%BDO%EF%BF%BD%EF%BF%BD%11% CB%9C%EF%BF%BD%1Dk%EF%BF%BDkL8%EF%BF%BD *%EF%BF%BD%1D%EF%BF%BD1%EF%BF%BD%EF%BF%BD %EF%BF%BD%02%EF%BF%BD

The data String as it is received, server side : 服务器端接收到的数据String
T# 7 k A L ^"Be gmE n = ܀ IM eM 5 & } NAQ lT VXR i 3U ep áb6 εy9x |! 0 ˏ} &A -ލ t Tezs , ݔ % t Q } F n φR W U xo d-? / [g 2 k^ m % ^ U P { O ˜ k kL8 l T# 7 k A L ^^''Be gmE n = ܀ IM eM 5 & } NAQ.lT VXR i 3U ep áb6 εy9x |! 0 ˏ} &A -ލ t Tezs , ݔ %t tQ}} FF n φR W U xo d-?/ [g 2k ^ m%% ^^ U P { O kkL8 l

(not sure these are the characters actually received, or just badly printed on the console?) (不确定这些字符是实际收到的字符,还是在控制台上打印得不好的字符?)

1 个解决方案

解决方案1
 2 已采纳  2014-05-24 08:39:18

You have to encrypt it first and then encode it with base64 and send it via net. 您必须先对其进行加密,然后使用base64对其进行编码,然后通过net发送。 Otherwise the encryption creates (pseuro)random data and some parts of that might not be properly encoded for transfer via web and will inevitably get corrupted. 否则,加密会创建(伪)随机数据,其中某些部分可能未正确编码以通过Web传输,因此不可避免地会遭到破坏。

The same applies if you want to compress your data. 如果要压缩数据,则同样适用。 You do the compression before encrypting them because after the encryption it will be much harder for the algorithm to compress seemingly random data. 您在进行加密之前先进行压缩,因为在加密之后,算法将很难压缩看似随机的数据。
Generally the thing you send to a web service should be base64 encoded as a last step/alteration. 通常,您发送到Web服务的内容应使用base64编码,作为最后一步/更改。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 用RSA加密并以base64编码的php文本在android中解密后不保留一些 - php text encrypted with RSA in and base64 encoded doesnt remain some after decryption in android 为什么在加密的base64编码字符串中添加字符不会破坏解密? - Why does adding a character to an encrypted base64 encoded string NOT break the decryption? 得到Java和Z686155AF75A60A0D36E9D80C1F7中加密字符串的Base64编码output相同 - Obtaining same Base64 encoded output of encrypted string in Java and JavaScript Base64编码的URL中缺少MimeType - MimeType missing in Base64 encoded url 将base64编码的字符串存储在HBase中 - Store base64 encoded string in HBase 编码字符串是否有最大 base64 大小? - Is there a maximum base64 size for a encoded string? java字符串base64编码 - java string base64 encoded Junit测试base64编码的字符串 - Junit testing for base64 encoded string base64编码字符串中的“块” - “chunking” in base64 encoded string Java 8反序列化base64编码的字符串 - java 8 deserialize base64 encoded string
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM