RSA / ECB / PKCS1Padding iOS加密

Question

我目前陷入一個涉及iOS加密的問題。

我的客戶給了我公鑰，

"-----BEGIN PUBLIC KEY-----
xxxx
-----END PUBLIC KEY-----"

需要使用的填充策略是RSA / ECB / PKCS1Padding。 使用android似乎很簡單

cipher = Cipher.getInstance("RSA/ECB/PKCS1Padding");
cipher.init(Cipher.ENCRYPT_MODE, publicKey);
encryptedBytes = cipher.doFinal(plain.getBytes());

return encryptedBytes;

我在iOS中看不到任何直接方法可以做到這一點。 像Commoncrypto一樣使用的任何常見吊艙都不允許我強制執行PKCS1填充方案。 作為一個沒有RSA和加密功能的經驗不足的人，如果您能幫助我了解如何實現這一目標並指導我完成這一過程，將不勝感激。

Answer 1

使用標准的安全框架- SecKeyEncrypt與kSecPaddingPKCS1參數

Answer 2

我的問題使用非填充解決：

kSecPaddingNone

Answer 3

-(SecKeyRef)getPublicKeyForEncryption
{
    NSString *thePath = [MAuthBundle pathForResource:@"certificate" ofType:@"der"];

    //2. Get the contents of the certificate and load to NSData
    NSData *certData = [[NSData alloc]
                        initWithContentsOfFile:thePath];

    //3. Get CFDataRef of the certificate data
    CFDataRef myCertData = (__bridge CFDataRef)certData;

    SecCertificateRef myCert;
    SecKeyRef aPublicKeyRef = NULL;
    SecTrustRef aTrustRef = NULL;

    //4. Create certificate with the data
    myCert = SecCertificateCreateWithData(NULL, myCertData);

    //5. Returns a policy object for the default X.509 policy
    SecPolicyRef aPolicyRef = SecPolicyCreateBasicX509();

    if (aPolicyRef) {
        if (SecTrustCreateWithCertificates((CFTypeRef)myCert, aPolicyRef, &aTrustRef) == noErr) {
            SecTrustResultType result;
            if (SecTrustEvaluate(aTrustRef, &result) == noErr) {
                //6. Returns the public key for a leaf certificate after it has been evaluated.
                aPublicKeyRef = SecTrustCopyPublicKey(aTrustRef);
            }
        }
    }

    return aPublicKeyRef;


}

-(NSString*) rsaEncryptString:(NSString*) string
{
        SecKeyRef publicKey = [self getPublicKeyForEncryption];

        NSData* strData = [string dataUsingEncoding:NSUTF8StringEncoding];

         CFErrorRef err ;

         NSData * data = CFBridgingRelease(SecKeyCreateEncryptedData(publicKey, kSecKeyAlgorithmRSAEncryptionPKCS1, ( __bridge CFDataRef)strData, &err));
         NSString *base64EncodedString = [data base64EncodedStringWithOptions:0];
         return base64EncodedString;
}

RSA / ECB / PKCS1Padding iOS加密

問題描述

3 個解決方案

解決方案1
2 2014-12-30 07:30:50

解決方案2
0 2018-06-04 16:01:17

解決方案3
0 2019-01-28 11:56:31

RSA / ECB / PKCS1Padding iOS加密

問題描述

3 個解決方案

解決方案1 2 2014-12-30 07:30:50

解決方案2 0 2018-06-04 16:01:17

解決方案3 0 2019-01-28 11:56:31

解決方案1
2 2014-12-30 07:30:50

解決方案2
0 2018-06-04 16:01:17

解決方案3
0 2019-01-28 11:56:31