ansaurus

Question

Creating RSA keys from known parameters in Java

Answer 1

A:

Something like this should do the trick:

  private PublicKey convertPublicKey(String publicKey) throws Exception{
    PublicKey pub = null;

    byte[] pubKey = Hex.decodeHex(publicKey.toCharArray());
    X509EncodedKeySpec pubSpec = new X509EncodedKeySpec(pubKey);
    KeyFactory keyFactory = KeyFactory.getInstance("RSA");
    pub = (RSAPublicKey) keyFactory.generatePublic(pubSpec);

    return pub;
  }

This assumes the Public key is given as a hex string, and you'll need the Apache Commons Codec library

If you have the key in a different format, try the KeyFactory for more information.

Jason Nichols 2010-01-07 20:56:15

I'll have to check and see if we have that library or if we can get it. Additionally will the Cipher object take a public key in DECRYPT_MODE? This seems very backwards to me.

meleager 2010-01-07 21:01:59

It will if you're using the Sun JRE, but not the IBM version. Coincidentally, the an IBM JRE utilizing the Bouncy Castle crypto provider will also work.

Jason Nichols 2010-01-07 21:04:35

Thanks, I'll give it a shot.

meleager 2010-01-07 21:05:46

It may seem backwards,but what you're doing is essentially decrypting the 'signed' hash. Once decrypted, the hash you computed and the hash given to you by Microsoft should match.

Jason Nichols 2010-01-07 21:08:18

...but this is the hard way of doing what erickson has done the right way.

GregS 2010-01-09 03:34:24

My code above is perfectly correct (and works). If the original poster has the key in a hex String (instead of modulus/exponent format), it's the only answer that will actually help him. Ironic that I'm the one who got no points for it.

Jason Nichols 2010-01-09 13:51:27

I understand what's going on now. It's an interesting verification process, really all I'm doing is verifying that the hash was calculated and encrypted correctly. Since essentially anyone can do this with no ill effect decrypting with the public key is fine.Not to be contrary but Erickson's code was actually quite useful. While I appreciate your taking the hex encoding into consideration Erickson's code is a little cleaner. Thanks again for the help.

meleager 2010-01-12 17:53:24

No worries, and good luck.

Jason Nichols 2010-01-12 18:22:16

Answer 2

+1 A:

Use java.security.spec.RSAPublicKeySpec. It can construct a key from exponent and modulus. Then use java.security.KeyFactory.generatePublic() with key spec as a parameter.

Seva Alekseyev 2010-01-07 20:57:53

Answer 3

+5 A:

RSAPublicKeySpec spec = new RSAPublicKeySpec(modulus, exponent);
KeyFactory factory = KeyFactory.getInstance("RSA");
PublicKey pub = factory.generatePublic(spec);
Signature verifier = Signature.getInstance("SHA1withRSA");
verifier.initVerify(pub);
verifier.update(url.getBytes("UTF-8")); // Or whatever interface specifies.
boolean okay = verifier.verify(signature);

erickson 2010-01-07 21:00:21

Will Cipher take a public key in DECRYPT_MODE?

meleager 2010-01-07 21:05:07

Yes, the RSA cipher implementation of most providers will accept a public key for decryption. They will even check for the correct padding. However, it is better to use a `Signature` instance. I'll update my answer to demonstrate.

erickson 2010-01-07 21:09:41

This worked perfectly, thank you very much.

meleager 2010-01-11 19:59:37

Thanks again. I was actually implementing this in CF but this bit of Java was crucial.

meleager 2010-01-12 17:46:03

ansaurus

tags:

views:

answers:

Creating RSA keys from known parameters in Java

related questions