JAVA调用U盾UKEY（网上交易安全认证）_javaukey登录,java实现ukey登录 - CSDN文库

5星 · 超过95%的资源需积分: 50 1.6k 浏览量更新于2023-05-26 评论 5 收藏 227KB DOC 举报

身份认证购VIP最低享 7 折!

领优惠券(最高得80元）

资源详情

资源评论

资源推荐

网上交易-使用 JAVA 调用 U 盾进行客户认证的 total solution

一、通过用户名和密码来进行认证的弊病

 我们有一个网站，为了保证用户在线交易传输数据的安全性，我们会启用一个

HTTPS/SSL：

但是，对于一些网上银行或者是网购来说，黑客特别喜欢攻击这样的网站，有一种攻击手

法叫 MIMAT（中间者攻击），伪造 SSL 证书，让客户端的 HTTP 流，流到他那边去，然

后再进一步用暴力破解，来破解你 HTTP 传输时的密码。



 private static void digitalSign(String text)throws Exception{

 KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA");

 kpg.initialize(1024);

 KeyPair keyPair = kpg.generateKeyPair();

 byte[] data = text.getBytes("UTF8");

 Signature sig = Signature.getInstance("MD5WithRSA");

 sig.initSign(keyPair.getPrivate());

 sig.update(data);



 byte[] signatureBytes=sig.sign();

 System.out.println("Signature:\n"+Base64.encode(signatureBytes));



 sig.initVerify(keyPair.getPublic());

 sig.update(data);

 boolean verified = false;

 try{

 verified = sig.verify(signatureBytes);

 }catch(SignatureException se){

 se.printStackTrace();

 verified = false;

 }

 if(verified){

 System.out.println("Signature verified.");

 }else{

 System.out.println("Signature did not match.");

 }

 }

 public static void main(String[] args){

 try{

 String text="abc";

 digitalSign(text);

 }catch(Exception e){

 e.printStackTrace();

 }

 }

}





四、运用证书解决公钥，私钥传输的问题

1.生成自签名 CA 根证书

openssl genrsa -des3 -out ca.key 1024

openssl rsa -in server.key -out ca.key

剩余17页未读，继续阅读

评论2

因为我叫张宇帅

2019-12-12

https://blog.csdn.net/joy_cz/article/details/84545086

皓月浮空空

粉丝: 1
资源: 12

会员权益专享

图片转文字

全年可省5，000元立即开通

最新资源

资源上传下载、课程学习等过程中有任何疑问或建议，欢迎提出宝贵意见哦~我们会及时处理！点击此处反馈