Reputation: 722
Encryption and decryption with private key in Java
After I have read articles about Cryptography(Symmetric and Asymmetric) methods.Many articles are telling that Private key is used to encrypt and decrypt data.Public key is used to encrypt data.But When I try to start implementing in Java I can't able to use private key to encrypt and decrypt data(I am using RSA Algorithm)? If it is possible please provide me a link .If it doesn't support, please answer why it doesn't support?
//Encrypt
Cipher encrypt=Cipher.getInstance("RSA");
encrypt.init(Cipher.ENCRYPT_MODE, privatekey);
byte[] encryptedMessage=encrypt.doFinal(msg.getBytes());
//Decrypt
Cipher decrypt=Cipher.getInstance("RSA");
decrypt.init(Cipher.DECRYPT_MODE, privateKey);
byte[] decryptedMessage=decrypt.doFinal(encryptedMessage);
Upvotes: 11
Views: 51761
Answers (3)
Reputation: 57
When you encrypt with private key it is called certificate. And your public keys are distributed to the clients so that they can open it and verify the issuer of the certificate. The same way client can create its own signature by encrypting with public key. The same way the server/issuer can verify it by decrypting it with private key.
S: Private Key P: Public Key
S + Data = Certificate => Client (opens/verifies it with public key) P + Data = Signature => Server / Issuer (opens/verifies it with private key)
Upvotes: 1
Reputation: 93948
To perform RSA encryption you need to encrypt with the public key and decrypt with the private key. Furthermore, you should use a well defined padding method, such as PKCS#1 v1.5 compatible padding or - if available - OAEP padding.
Encryption with an RSA private key makes no sense, as anybody with the public key can decrypt. There is something called "raw RSA" which is basically modular exponentiation, but that should only be used with another padding scheme to generate signatures. In that case you want everybody with a public key to "decrypt" to verify the signature.
More information here and here.
So encryption is:
// specify mode and padding instead of relying on defaults (use OAEP if available!)
Cipher encrypt=Cipher.getInstance("RSA/ECB/PKCS1Padding");
// init with the *public key*!
encrypt.init(Cipher.ENCRYPT_MODE, publicKey);
// encrypt with known character encoding, you should probably use hybrid cryptography instead
byte[] encryptedMessage = encrypt.doFinal(msg.getBytes(StandardCharsets.UTF_8));
and decryption is:
Cipher decrypt=Cipher.getInstance("RSA/ECB/PKCS1Padding");
decrypt.init(Cipher.DECRYPT_MODE, privateKey);
String decryptedMessage = new String(decrypt.doFinal(encryptedMessage), StandardCharsets.UTF_8);
Upvotes: 19
Reputation: 328
How Public Private Key Encryption is working:
- IF you encrypt something with your private key anyone with your public key can decrypt it.
- IF you encrypt something with your public key only your private key can decrypt it.
You have to generate public private key pair. Private key is just for you and public key can be given to people you trust.
How to generate key pairs?
$ openssl genrsa -out private_key.pem 1024
$ openssl rsa -pubout -in private_key.pem -out public_key.pem
Or go here in do it in java -> JAVA RSA When you do that come back and ask more questions
Upvotes: 7
Related Questions
- How to decrypt the message using private key -RSA algorithm in java
- How to encrypt data using a private key/password that is itself encrypted?
- Private Key Encrypt and Public key DecryptionIn Java C#
- Encryption and Decryption (java)
- Encrypting and decrypting with public and private RSA keys in JAVA
- Encrypting with RSA private key in Java
- Encrypt private key with java code
- Securing a private key on disk using symmetric encryption in Java
- Private key encryption method wanted
- Java Encryption C# Decryption