AES加密方式有五种:ECB, CBC, CTR, CFB, OFB
从安全性角度推荐CBC加密方法,本文介绍了CBC,ECB两种加密方法的python实现
python 在 Windows下使用AES时要安装的是pycryptodome 模块 pip install pycryptodome
python 在 Linux下使用AES时要安装的是pycrypto模块 pip install pycrypto
CBC加密需要一个十六位的key(密钥)和一个十六位iv(偏移量)
ECB加密不需要iv
AES CBC 加密的python实现
示例 1
1 from Crypto.Cipher import AES
2 from binascii import b2a_hex, a2b_hex
3
4
5 # 如果text不足16位的倍数就用空格补足为16位
6 def add_to_16(text):
7 if len(text.encode('utf-8')) % 16:
8 add = 16 - (len(text.encode('utf-8')) % 16)
9 else:
10 add = 0
11 text = text + ('�' * add)
12 return text.encode('utf-8')
13
14
15 # 加密函数
16 def encrypt(text):
17 key = '9999999999999999'.encode('utf-8')
18 mode = AES.MODE_CBC
19 iv = b'qqqqqqqqqqqqqqqq'
20 text = add_to_16(text)
21 cryptos = AES.new(key, mode, iv)
22 cipher_text = cryptos.encrypt(text)
23 # 因为AES加密后的字符串不一定是ascii字符集的,输出保存可能存在问题,所以这里转为16进制字符串
24 return b2a_hex(cipher_text)
25
26
27 # 解密后,去掉补足的空格用strip() 去掉
28 def decrypt(text):
29 key = '9999999999999999'.encode('utf-8')
30 iv = b'qqqqqqqqqqqqqqqq'
31 mode = AES.MODE_CBC
32 cryptos = AES.new(key, mode, iv)
33 plain_text = cryptos.decrypt(a2b_hex(text))
34 return bytes.decode(plain_text).rstrip('�')
35
36
37 if __name__ == '__main__':
38 e = encrypt("hello world") # 加密
39 d = decrypt(e) # 解密
40 print("加密:", e)
41 print("解密:", d)
示例 2
import base64 from Crypto.Cipher import AES from Crypto.Util.Padding import pad, unpad # try: # from Crypto.Cipher import AES # from Crypto.Util.Padding import pad, unpad # except ImportError: # print('在Windows下使用AES时要安装的是 试试pycryptodome 模块,' # '在Linux下使用AES时要安装的是pycrypto模块') class AesSample(object): def __init__(self): self.key = '*****************'.encode('utf-8') self.iv = self.key[0:16] self.mode = AES.MODE_CBC def encode(self, data): """ AES 加密算法,模式pkcs7 """ cipher = AES.new(self.key, self.mode, self.iv) pad_pkcs7 = pad(data.encode('utf-8'), AES.block_size, style='pkcs7') result = base64.encodebytes(cipher.encrypt(pad_pkcs7)) encrypted_text = str(result, encoding='utf-8').replace(' ', '') return encrypted_text def decode(self, data): """ AES 解密算法,模式pkcs7 """ cipher = AES.new(self.key, self.mode, self.iv) base64_decrypted = base64.decodebytes(data.encode('utf-8')) una_pkcs7 = unpad(cipher.decrypt(base64_decrypted), AES.block_size, style='pkcs7') decrypted_text = str(una_pkcs7, encoding='utf-8') return decrypted_text.strip('"') # def test(self): # data1 = 'hello world!' # data2 = '6tmL9dZljaEJUctTaJIU8g==' # print('加密结果:', self.encode(data1)) # print('解密结果:', self.decode(data2)) # # # if __name__ == '__main__': # blog = AesSample() # blog.test()
AES ECB加密的python实现
1 """
2 ECB没有偏移量
3 """
4 from Crypto.Cipher import AES
5 from binascii import b2a_hex, a2b_hex
6
7
8 def add_to_16(text):
9 if len(text.encode('utf-8')) % 16:
10 add = 16 - (len(text.encode('utf-8')) % 16)
11 else:
12 add = 0
13 text = text + ('�' * add)
14 return text.encode('utf-8')
15
16
17 # 加密函数
18 def encrypt(text):
19 key = '9999999999999999'.encode('utf-8')
20 mode = AES.MODE_ECB
21 text = add_to_16(text)
22 cryptos = AES.new(key, mode)
23
24 cipher_text = cryptos.encrypt(text)
25 return b2a_hex(cipher_text)
26
27
28 # 解密后,去掉补足的空格用strip() 去掉
29 def decrypt(text):
30 key = '9999999999999999'.encode('utf-8')
31 mode = AES.MODE_ECB
32 cryptor = AES.new(key, mode)
33 plain_text = cryptor.decrypt(a2b_hex(text))
34 return bytes.decode(plain_text).rstrip('�')
35
36
37 if __name__ == '__main__':
38 e = encrypt("hello world") # 加密
39 d = decrypt(e) # 解密
40 print("加密:", e)
41 print("解密:", d)