Class RsaOaepCipher

java.lang.Object
cloud.opencode.base.crypto.asymmetric.RsaOaepCipher
All Implemented Interfaces:
AsymmetricCipher
public final class RsaOaepCipher extends Object implements AsymmetricCipher
RSA cipher implementation with OAEP padding - Recommended RSA encryption RSA 密码实现(OAEP 填充)- 推荐的 RSA 加密方式

OAEP (Optimal Asymmetric Encryption Padding) provides better security than PKCS1. This implementation is recommended for all new applications. OAEP(最优非对称加密填充)比 PKCS1 提供更好的安全性。 建议所有新应用使用此实现。

Features | 主要功能:

  • RSA-OAEP with SHA-256/384/512 - RSA-OAEP(SHA-256/384/512)
  • Recommended for new applications - 推荐用于新应用

Usage Examples | 使用示例:

RsaOaepCipher oaep = RsaOaepCipher.sha256();
oaep.setPublicKey(publicKey);
byte[] encrypted = oaep.encrypt(data);

Security | 安全性:

  • Thread-safe: No - 线程安全: 否
  • Null-safe: Yes - 空值安全: 是

Performance | 性能特性:

  • Time complexity: O(k^2) for encrypt/decrypt (k=key bits) - 时间复杂度: O(k^2),k为密钥位数
  • Space complexity: O(k) - 空间复杂度: O(k)
Since:
JDK 25, opencode-base-crypto V1.0.0
Author:
Leon Soo www.LeonSoo.com
See Also:

  • Method Details

    • sha256

      public static RsaOaepCipher sha256()
      Create RSA-OAEP cipher with SHA-256 digest (recommended) 创建使用 SHA-256 摘要的 RSA-OAEP 密码(推荐)
      Returns:
      new RSA-OAEP cipher with SHA-256

    • sha384

      public static RsaOaepCipher sha384()
      Create RSA-OAEP cipher with SHA-384 digest 创建使用 SHA-384 摘要的 RSA-OAEP 密码
      Returns:
      new RSA-OAEP cipher with SHA-384

    • sha512

      public static RsaOaepCipher sha512()
      Create RSA-OAEP cipher with SHA-512 digest 创建使用 SHA-512 摘要的 RSA-OAEP 密码
      Returns:
      new RSA-OAEP cipher with SHA-512

    • withGeneratedKeyPair

      public static RsaOaepCipher withGeneratedKeyPair(int keySize)
      Create RSA-OAEP cipher with generated key pair 创建带生成密钥对的 RSA-OAEP 密码
      Parameters:
      keySize - the key size in bits (minimum 2048 recommended)
      Returns:
      RSA-OAEP cipher with generated keys
      Throws:
      IllegalArgumentException - if keySize is invalid

    • builder

      public static RsaOaepCipher.Builder builder()
      Create a builder for customizing RSA-OAEP parameters 创建用于自定义 RSA-OAEP 参数的构建器
      Returns:
      new builder instance

    • setPublicKey

      public AsymmetricCipher setPublicKey(PublicKey publicKey)
      Description copied from interface: AsymmetricCipher
      Set public key for encryption operations 设置用于加密操作的公钥
      Specified by:
      setPublicKey in interface AsymmetricCipher
      Parameters:
      publicKey - the public key
      Returns:
      this cipher instance for method chaining

    • setPublicKey

      public AsymmetricCipher setPublicKey(byte[] encodedKey)
      Description copied from interface: AsymmetricCipher
      Set public key from encoded byte array 从编码的字节数组设置公钥
      Specified by:
      setPublicKey in interface AsymmetricCipher
      Parameters:
      encodedKey - the encoded public key bytes
      Returns:
      this cipher instance for method chaining

    • setPublicKeyPem

      public AsymmetricCipher setPublicKeyPem(String pem)
      Description copied from interface: AsymmetricCipher
      Set public key from PEM formatted string 从 PEM 格式字符串设置公钥
      Specified by:
      setPublicKeyPem in interface AsymmetricCipher
      Parameters:
      pem - the PEM formatted public key
      Returns:
      this cipher instance for method chaining

    • setPrivateKey

      public AsymmetricCipher setPrivateKey(PrivateKey privateKey)
      Description copied from interface: AsymmetricCipher
      Set private key for decryption operations 设置用于解密操作的私钥
      Specified by:
      setPrivateKey in interface AsymmetricCipher
      Parameters:
      privateKey - the private key
      Returns:
      this cipher instance for method chaining

    • setPrivateKey

      public AsymmetricCipher setPrivateKey(byte[] encodedKey)
      Description copied from interface: AsymmetricCipher
      Set private key from encoded byte array 从编码的字节数组设置私钥
      Specified by:
      setPrivateKey in interface AsymmetricCipher
      Parameters:
      encodedKey - the encoded private key bytes
      Returns:
      this cipher instance for method chaining

    • setPrivateKeyPem

      public AsymmetricCipher setPrivateKeyPem(String pem)
      Description copied from interface: AsymmetricCipher
      Set private key from PEM formatted string 从 PEM 格式字符串设置私钥
      Specified by:
      setPrivateKeyPem in interface AsymmetricCipher
      Parameters:
      pem - the PEM formatted private key
      Returns:
      this cipher instance for method chaining

    • setKeyPair

      public AsymmetricCipher setKeyPair(KeyPair keyPair)
      Description copied from interface: AsymmetricCipher
      Set both public and private keys from key pair 从密钥对设置公钥和私钥
      Specified by:
      setKeyPair in interface AsymmetricCipher
      Parameters:
      keyPair - the key pair containing public and private keys
      Returns:
      this cipher instance for method chaining

    • encrypt

      public byte[] encrypt(byte[] plaintext)
      Description copied from interface: AsymmetricCipher
      Encrypt data using public key 使用公钥加密数据
      Specified by:
      encrypt in interface AsymmetricCipher
      Parameters:
      plaintext - the data to encrypt
      Returns:
      encrypted bytes

    • encrypt

      public byte[] encrypt(String plaintext)
      Description copied from interface: AsymmetricCipher
      Encrypt string using public key 使用公钥加密字符串
      Specified by:
      encrypt in interface AsymmetricCipher
      Parameters:
      plaintext - the string to encrypt
      Returns:
      encrypted bytes

    • encryptBase64

      public String encryptBase64(byte[] plaintext)
      Description copied from interface: AsymmetricCipher
      Encrypt data and return Base64 encoded result 加密数据并返回 Base64 编码结果
      Specified by:
      encryptBase64 in interface AsymmetricCipher
      Parameters:
      plaintext - the data to encrypt
      Returns:
      Base64 encoded ciphertext

    • encryptHex

      public String encryptHex(byte[] plaintext)
      Description copied from interface: AsymmetricCipher
      Encrypt data and return hexadecimal encoded result 加密数据并返回十六进制编码结果
      Specified by:
      encryptHex in interface AsymmetricCipher
      Parameters:
      plaintext - the data to encrypt
      Returns:
      hexadecimal encoded ciphertext

    • decrypt

      public byte[] decrypt(byte[] ciphertext)
      Description copied from interface: AsymmetricCipher
      Decrypt data using private key 使用私钥解密数据
      Specified by:
      decrypt in interface AsymmetricCipher
      Parameters:
      ciphertext - the encrypted data
      Returns:
      decrypted bytes

    • decryptToString

      public String decryptToString(byte[] ciphertext)
      Description copied from interface: AsymmetricCipher
      Decrypt data and return as string 解密数据并返回字符串
      Specified by:
      decryptToString in interface AsymmetricCipher
      Parameters:
      ciphertext - the encrypted data
      Returns:
      decrypted string

    • decryptBase64

      public byte[] decryptBase64(String base64Ciphertext)
      Description copied from interface: AsymmetricCipher
      Decrypt Base64 encoded ciphertext 解密 Base64 编码的密文
      Specified by:
      decryptBase64 in interface AsymmetricCipher
      Parameters:
      base64Ciphertext - the Base64 encoded ciphertext
      Returns:
      decrypted bytes

    • decryptHex

      public byte[] decryptHex(String hexCiphertext)
      Description copied from interface: AsymmetricCipher
      Decrypt hexadecimal encoded ciphertext 解密十六进制编码的密文
      Specified by:
      decryptHex in interface AsymmetricCipher
      Parameters:
      hexCiphertext - the hexadecimal encoded ciphertext
      Returns:
      decrypted bytes

    • getAlgorithm

      public String getAlgorithm()
      Description copied from interface: AsymmetricCipher
      Get the algorithm name 获取算法名称
      Specified by:
      getAlgorithm in interface AsymmetricCipher
      Returns:
      the algorithm name

    • getMaxEncryptSize

      public int getMaxEncryptSize()
      Description copied from interface: AsymmetricCipher
      Get maximum size of data that can be encrypted in a single operation 获取单次操作可加密的最大数据大小
      Specified by:
      getMaxEncryptSize in interface AsymmetricCipher
      Returns:
      maximum encrypt size in bytes, or -1 if not applicable

    • generateKeyPair

      public KeyPair generateKeyPair()
      Description copied from interface: AsymmetricCipher
      Generate a new key pair for this cipher 为此加密器生成新的密钥对
      Specified by:
      generateKeyPair in interface AsymmetricCipher
      Returns:
      generated key pair

    • getPublicKey

      public PublicKey getPublicKey()
      Get the public key 获取公钥
      Returns:
      the public key, or null if not set

    • getPrivateKey

      public PrivateKey getPrivateKey()
      Get the private key 获取私钥
      Returns:
      the private key, or null if not set