AesManaged 类
定义
重要
一些信息与预发行产品相关,相应产品在发行之前可能会进行重大修改。 对于此处提供的信息,Microsoft 不作任何明示或暗示的担保。
注意
Derived cryptographic types are obsolete. Use the Create method on the base type instead.
提供高级加密标准 (AES) 对称算法的托管实现。
public ref class AesManaged sealed : System::Security::Cryptography::Aes[System.Runtime.Versioning.UnsupportedOSPlatform("browser")]
public sealed class AesManaged : System.Security.Cryptography.Aes[System.Runtime.Versioning.UnsupportedOSPlatform("browser")]
[System.Obsolete("Derived cryptographic types are obsolete. Use the Create method on the base type instead.", DiagnosticId="SYSLIB0021", UrlFormat="https://aka.ms/dotnet-warnings/{0}")]
public sealed class AesManaged : System.Security.Cryptography.Aespublic sealed class AesManaged : System.Security.Cryptography.Aes[<System.Runtime.Versioning.UnsupportedOSPlatform("browser")>]
type AesManaged = class
inherit Aes[<System.Runtime.Versioning.UnsupportedOSPlatform("browser")>]
[<System.Obsolete("Derived cryptographic types are obsolete. Use the Create method on the base type instead.", DiagnosticId="SYSLIB0021", UrlFormat="https://aka.ms/dotnet-warnings/{0}")>]
type AesManaged = class
inherit Aestype AesManaged = class
inherit AesPublic NotInheritable Class AesManaged
Inherits Aes- 继承
- 属性
示例
以下示例演示如何使用 AesManaged 类加密和解密示例数据。
using System;
using System.IO;
using System.Security.Cryptography;
namespace Aes_Example
{
class AesExample
{
public static void Main()
{
string original = "Here is some data to encrypt!";
// Create a new instance of the AesManaged
// class. This generates a new key and initialization
// vector (IV).
using (AesManaged myAes = new AesManaged())
{
// Encrypt the string to an array of bytes.
byte[] encrypted = EncryptStringToBytes_Aes(original, myAes.Key, myAes.IV);
// Decrypt the bytes to a string.
string roundtrip = DecryptStringFromBytes_Aes(encrypted, myAes.Key, myAes.IV);
//Display the original data and the decrypted data.
Console.WriteLine("Original: {0}", original);
Console.WriteLine("Round Trip: {0}", roundtrip);
}
}
static byte[] EncryptStringToBytes_Aes(string plainText, byte[] Key, byte[] IV)
{
// Check arguments.
if (plainText == null || plainText.Length <= 0)
throw new ArgumentNullException("plainText");
if (Key == null || Key.Length <= 0)
throw new ArgumentNullException("Key");
if (IV == null || IV.Length <= 0)
throw new ArgumentNullException("IV");
byte[] encrypted;
// Create an AesManaged object
// with the specified key and IV.
using (AesManaged aesAlg = new AesManaged())
{
aesAlg.Key = Key;
aesAlg.IV = IV;
// Create an encryptor to perform the stream transform.
ICryptoTransform encryptor = aesAlg.CreateEncryptor(aesAlg.Key, aesAlg.IV);
// Create the streams used for encryption.
using (MemoryStream msEncrypt = new MemoryStream())
{
using (CryptoStream csEncrypt = new CryptoStream(msEncrypt, encryptor, CryptoStreamMode.Write))
{
using (StreamWriter swEncrypt = new StreamWriter(csEncrypt))
{
//Write all data to the stream.
swEncrypt.Write(plainText);
}
encrypted = msEncrypt.ToArray();
}
}
}
// Return the encrypted bytes from the memory stream.
return encrypted;
}
static string DecryptStringFromBytes_Aes(byte[] cipherText, byte[] Key, byte[] IV)
{
// Check arguments.
if (cipherText == null || cipherText.Length <= 0)
throw new ArgumentNullException("cipherText");
if (Key == null || Key.Length <= 0)
throw new ArgumentNullException("Key");
if (IV == null || IV.Length <= 0)
throw new ArgumentNullException("IV");
// Declare the string used to hold
// the decrypted text.
string plaintext = null;
// Create an AesManaged object
// with the specified key and IV.
using (AesManaged aesAlg = new AesManaged())
{
aesAlg.Key = Key;
aesAlg.IV = IV;
// Create a decryptor to perform the stream transform.
ICryptoTransform decryptor = aesAlg.CreateDecryptor(aesAlg.Key, aesAlg.IV);
// Create the streams used for decryption.
using (MemoryStream msDecrypt = new MemoryStream(cipherText))
{
using (CryptoStream csDecrypt = new CryptoStream(msDecrypt, decryptor, CryptoStreamMode.Read))
{
using (StreamReader srDecrypt = new StreamReader(csDecrypt))
{
// Read the decrypted bytes from the decrypting stream
// and place them in a string.
plaintext = srDecrypt.ReadToEnd();
}
}
}
}
return plaintext;
}
}
}
Imports System.IO
Imports System.Security.Cryptography
Class AesExample
Public Shared Sub Main()
Dim original As String = "Here is some data to encrypt!"
' Create a new instance of the AesManaged
' class. This generates a new key and initialization
' vector (IV).
Using myAes As New AesManaged()
' Encrypt the string to an array of bytes.
Dim encrypted As Byte() = EncryptStringToBytes_Aes(original, myAes.Key, myAes.IV)
' Decrypt the bytes to a string.
Dim roundtrip As String = DecryptStringFromBytes_Aes(encrypted, myAes.Key, myAes.IV)
'Display the original data and the decrypted data.
Console.WriteLine("Original: {0}", original)
Console.WriteLine("Round Trip: {0}", roundtrip)
End Using
End Sub
Shared Function EncryptStringToBytes_Aes(ByVal plainText As String, ByVal Key() As Byte, ByVal IV() As Byte) As Byte()
' Check arguments.
If plainText Is Nothing OrElse plainText.Length <= 0 Then
Throw New ArgumentNullException("plainText")
End If
If Key Is Nothing OrElse Key.Length <= 0 Then
Throw New ArgumentNullException("Key")
End If
If IV Is Nothing OrElse IV.Length <= 0 Then
Throw New ArgumentNullException("IV")
End If
Dim encrypted() As Byte
' Create an AesManaged object
' with the specified key and IV.
Using aesAlg As New AesManaged()
aesAlg.Key = Key
aesAlg.IV = IV
' Create an encryptor to perform the stream transform.
Dim encryptor As ICryptoTransform = aesAlg.CreateEncryptor(aesAlg.Key, aesAlg.IV)
' Create the streams used for encryption.
Using msEncrypt As New MemoryStream()
Using csEncrypt As New CryptoStream(msEncrypt, encryptor, CryptoStreamMode.Write)
Using swEncrypt As New StreamWriter(csEncrypt)
'Write all data to the stream.
swEncrypt.Write(plainText)
End Using
encrypted = msEncrypt.ToArray()
End Using
End Using
End Using
' Return the encrypted bytes from the memory stream.
Return encrypted
End Function 'EncryptStringToBytes_Aes
Shared Function DecryptStringFromBytes_Aes(ByVal cipherText() As Byte, ByVal Key() As Byte, ByVal IV() As Byte) As String
' Check arguments.
If cipherText Is Nothing OrElse cipherText.Length <= 0 Then
Throw New ArgumentNullException("cipherText")
End If
If Key Is Nothing OrElse Key.Length <= 0 Then
Throw New ArgumentNullException("Key")
End If
If IV Is Nothing OrElse IV.Length <= 0 Then
Throw New ArgumentNullException("IV")
End If
' Declare the string used to hold
' the decrypted text.
Dim plaintext As String = Nothing
' Create an AesManaged object
' with the specified key and IV.
Using aesAlg As New AesManaged
aesAlg.Key = Key
aesAlg.IV = IV
' Create a decryptor to perform the stream transform.
Dim decryptor As ICryptoTransform = aesAlg.CreateDecryptor(aesAlg.Key, aesAlg.IV)
' Create the streams used for decryption.
Using msDecrypt As New MemoryStream(cipherText)
Using csDecrypt As New CryptoStream(msDecrypt, decryptor, CryptoStreamMode.Read)
Using srDecrypt As New StreamReader(csDecrypt)
' Read the decrypted bytes from the decrypting stream
' and place them in a string.
plaintext = srDecrypt.ReadToEnd()
End Using
End Using
End Using
End Using
Return plaintext
End Function 'DecryptStringFromBytes_Aes
End Class
open System
open System.IO
open System.Security.Cryptography
let encryptStringToBytes_Aes (plainText: string, key : byte[], iv : byte[]) : byte[] =
// Check arguments.
if (isNull plainText || plainText.Length <= 0) then nullArg "plainText"
if (isNull key || key.Length <= 0) then nullArg "key"
if (isNull iv || iv.Length <= 0) then nullArg "iv"
// Create an AesManaged object
// with the specified key and IV.
use aesAlg = new AesManaged()
aesAlg.Key <- key
aesAlg.IV <- iv
// Create an encryptor to perform the stream transform.
let encryptor = aesAlg.CreateEncryptor(aesAlg.Key, aesAlg.IV)
// Create the streams used for encryption.
use msEncrypt = new MemoryStream()
use csEncrypt = new CryptoStream(msEncrypt, encryptor, CryptoStreamMode.Write)
use swEncrypt = new StreamWriter(csEncrypt)
//Write all data to the stream.
swEncrypt.Write(plainText)
swEncrypt.Flush()
// Return the encrypted bytes from the memory stream.
msEncrypt.ToArray()
let decryptStringFromBytes_Aes (cipherText : byte[], key : byte[], iv : byte[]) : string =
// Check arguments.
if (isNull cipherText || cipherText.Length <= 0) then nullArg "cipherText"
if (isNull key || key.Length <= 0) then nullArg "key"
if (isNull iv || iv.Length <= 0) then nullArg "iv"
// Create an AesManaged object
// with the specified key and IV.
use aesAlg = new AesManaged()
aesAlg.Key <- key
aesAlg.IV <- iv
// Create a decryptor to perform the stream transform.
let decryptor = aesAlg.CreateDecryptor(aesAlg.Key, aesAlg.IV)
// Create the streams used for decryption.
use msDecrypt = new MemoryStream(cipherText)
use csDecrypt = new CryptoStream(msDecrypt, decryptor, CryptoStreamMode.Read)
use srDecrypt = new StreamReader(csDecrypt)
// Read the decrypted bytes from the decrypting stream
// and return the resulting string.
srDecrypt.ReadToEnd()
[<EntryPoint>]
let main argv =
let original = "Here is some data to encrypt!"
// Create a new instance of the AesManaged
// class. This generates a new key and initialization
// vector (IV).
use myAes = new AesManaged()
// Encrypt the string to an array of bytes.
let encrypted = encryptStringToBytes_Aes(original, myAes.Key, myAes.IV)
// Decrypt the bytes to a string.
let roundtrip = decryptStringFromBytes_Aes(encrypted, myAes.Key, myAes.IV)
//Display the original data and the decrypted data.
Console.WriteLine("Original: {0}", original)
Console.WriteLine("Round Trip: {0}", roundtrip)
0
注解
AES 算法本质上是具有固定块大小和迭代计数的 Rijndael 对称算法。 此类的工作方式与 RijndaelManaged 类相同,但将块限制为 128 位,并且不允许反馈模式。
备注
如果启用了联邦信息处理标准 (符合 FIPS) 的算法Windows安全策略设置,则使用此算法引发一个CryptographicException。
备注
Microsoft 认为,使用加密块链 (CBC 加密) 对称加密模式对加密的数据进行解密不再安全 (,这是当应用可验证填充时属性) 的默认值 Mode ,而无需首先确保密码文本的完整性,但情况非常特殊。 有关详细信息,请参阅 使用填充进行 CBC 模式对称解密的计时漏洞。
构造函数
| AesManaged() |
初始化 AesManaged 类的新实例。 |
字段
| BlockSizeValue |
表示加密操作的块大小(以位为单位)。 (继承自 SymmetricAlgorithm) |
| FeedbackSizeValue |
表示加密操作的反馈大小(以位为单位)。 (继承自 SymmetricAlgorithm) |
| IVValue |
表示对称算法的初始化向量 (IV)。 (继承自 SymmetricAlgorithm) |
| KeySizeValue |
表示对称算法使用的密钥的大小(以位为单位)。 (继承自 SymmetricAlgorithm) |
| KeyValue |
表示对称算法的密钥。 (继承自 SymmetricAlgorithm) |
| LegalBlockSizesValue |
指定对称算法支持的块大小(以位为单位)。 (继承自 SymmetricAlgorithm) |
| LegalKeySizesValue |
指定对称算法支持的密钥大小(以位为单位)。 (继承自 SymmetricAlgorithm) |
| ModeValue |
表示对称算法中使用的密码模式。 (继承自 SymmetricAlgorithm) |
| PaddingValue |
表示对称算法中使用的填充模式。 (继承自 SymmetricAlgorithm) |
属性
| BlockSize |
获取或设置加密操作的块大小(以位为单位)。 |
| BlockSize |
获取或设置加密操作的块大小(以位为单位)。 (继承自 SymmetricAlgorithm) |
| FeedbackSize |
获取或设置用作反馈的位数。 |
| FeedbackSize |
获取或设置针对密码反馈 (CFB) 和输出反馈 (OFB) 密码模式的加密操作的反馈大小(以位为单位)。 (继承自 SymmetricAlgorithm) |
| IV |
获取或设置用于对称算法的初始化向量 (IV)。 |
| IV |
获取或设置对称算法的初始化向量 (IV)。 (继承自 SymmetricAlgorithm) |
| Key |
获取或设置用于对称算法的密钥。 |
| Key |
获取或设置对称算法的密钥。 (继承自 SymmetricAlgorithm) |
| KeySize |
获取或设置用于对称算法的密钥大小(以位为单位)。 |
| KeySize |
获取或设置对称算法所用密钥的大小(以位为单位)。 (继承自 SymmetricAlgorithm) |
| LegalBlockSizes |
获取对称算法支持的块大小(以位为单位)。 |
| LegalBlockSizes |
获取对称算法支持的块大小(以位为单位)。 (继承自 Aes) |
| LegalKeySizes |
获取对称算法支持的密钥大小(以位为单位)。 |
| LegalKeySizes |
获取对称算法支持的密钥大小(以位为单位)。 (继承自 Aes) |
| Mode |
获取或设置对称算法的运算模式。 |
| Mode |
获取或设置对称算法的运算模式。 (继承自 SymmetricAlgorithm) |
| Padding |
获取或设置对称算法中使用的填充模式。 |
| Padding |
获取或设置对称算法中使用的填充模式。 (继承自 SymmetricAlgorithm) |
方法
显式接口实现
| IDisposable.Dispose() |
此 API 支持产品基础结构,不能在代码中直接使用。 释放由 SymmetricAlgorithm 占用的非托管资源,还可以另外再释放托管资源。 (继承自 SymmetricAlgorithm) |