是否可以将自己的密钥放入AndroidKeyStore?
[英]Is possible to put own key to AndroidKeyStore?
问题描述
I am thinking about this question: 
我在考虑这个问题:
Is possible to put my own key to AndroidKeyStore and using it for other operations (signing some text/docs)? 是否可以将自己的密钥AndroidKeyStore并将其用于其他操作(签署一些文本/文档)?
I have generated a PostQuantum keys (priv/pub) for signing algorithm SPHINCS , that includes BouncyCastle library. 我已经为签名算法SPHINCS生成了一个PostQuantum密钥( PostQuantum /发布),其中包括BouncyCastle库。
Is there some ways, how to initialize my plan? 有什么方法,如何初始化我的计划?
Thank you for your hints :) 谢谢您的提示:)
There is an example code, how I am generating a priv/pub keys by BouncyCastle SPHINCS : 有一个示例代码,我如何通过BouncyCastle SPHINCS生成priv / pub密钥:
SPHINCS256KeyPairGenerator generator = new SPHINCS256KeyPairGenerator();
generator.init(new SPHINCS256KeyGenerationParameters(new RiggedRandom(), new SHA3Digest(256)));
AsymmetricCipherKeyPair kp = generator.generateKeyPair();
SPHINCSPrivateKeyParameters priv = (SPHINCSPrivateKeyParameters)kp.getPrivate();
SPHINCSPublicKeyParameters pub = (SPHINCSPublicKeyParameters)kp.getPublic();
1 个解决方案
解决方案1
0 2018-10-08 18:39:47
Try something like this(Sample for Andorid M(6.0)+ ) 尝试这样的事情(Andorid M(6.0)+的示例)
@TargetApi(Build.VERSION_CODES.M)
private void initGeneratorWithKeyGenParameterSpec() {
try {
KeyPairGenerator generator = KeyPairGenerator.getInstance("ALGORITHM", "AndroidKeyStore");
String alias = "myAlias";
Calendar startDate = Calendar.getInstance();
Calendar endDate = Calendar.getInstance();
endDate.add(Calendar.YEAR, 20);
KeyGenParameterSpec.Builder builder = new KeyGenParameterSpec.Builder(
alias, KeyProperties.PURPOSE_ENCRYPT|KeyProperties.PURPOSE_DECRYPT)
.setCertificateSubject(new X500Principal("CN=" + alias))
.setCertificateSerialNumber(BigInteger.valueOf(1337))
.setCertificateNotBefore(startDate.getTime())
.setCertificateNotAfter(endDate.getTime())
.setBlockModes(KeyProperties.BLOCK_MODE_ECB)
.setDigests(KeyProperties.DIGEST_SHA256)
.setKeySize(2048)
.setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_RSA_PKCS1);
generator.initialize(builder.build());
generator.generateKeyPair();
} catch (Exception e) {
mLogger.logException(Logger.Level.ERROR, Logger.Category.ENCRYPTION, "KeyStoreWrapper", "initGeneratorWithKeyGenParameterSpec()", e);
}
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.