Copy Code code as follows:
<?php
//PKI Encryption
Use PKI encryption to open OpenSSL extensions
php.ini extension = Php_openssl.dll extension
/*pki mode is
* Public key encryption, private key decryption;
* Private key encryption, public key decryption;
*/
Private key encryption, public key decryption
Client
$data data
$data = ' ABCD ';
Get the private key $priv _key_id
$priv _key_id = Openssl_get_privatekey (file_get_contents (' 99bill-rsa.pem ', r));
Get public key $pub _key_id
$pub _key_id = Openssl_get_publickey (file_get_contents (' 99bill-rsa.cer ', r));
$data preferred through SHA1 hash encryption, and then encrypted by $priv_key_id private key, generating the signature $signature
$signature is the encrypted signature.
Openssl_sign () encryption function, as for its decryption method I do not know?????????????????????????????????????????
Openssl_sign ($data, $signature, $priv _key_id, OPENSSL_ALGO_SHA1);
There are also two cryptographic functions, and these two cryptographic functions have the decryption method, know
//First: Private key encryption, public key decryption
$data the data to be encrypted, $crypted encrypt the generated data, $decrypted decrypt the generated data; $data is the same as the $decrypted value
The $crypted is generated by encrypting the $PRIV_KEY_ID key;
Openssl_private_encrypt ($data, $crypted, $priv _key_id);
Echo $crypted;
Decrypted by $pub_key_id public key to generate $decrypted
Openssl_public_decrypt ($crypted, $decrypted, $pub _key_id);
//Second: Public key encryption, private key decryption
$data the data to be encrypted, $crypted encrypt the generated data, $decrypted decrypt the generated data; $data is the same as the $decrypted value
The $crypted is generated by $pub_key_id public key encryption;
Openssl_public_encrypt ($data, $crypted, $pub _key_id);
Decrypted by $priv_key_id private key to generate $decrypted
Openssl_private_decrypt ($crypted, $decrypted, $priv _key_id);
Notice, I'm here to get the public key and the private key file is not corresponding to
Normally, getting the public key and private key file is one by one corresponds, here I use the fast money.
Quick Money gives the private key generate file, corresponding public key generate file on the quick money side.
Quick Money gives the public key generate file, corresponding private key to generate file on the quick money side.
That is, a public key generation file and a private key generation file are missing
I never found a one by one corresponding private key, public key generation file, if you are looking for a send me, thank you.
The Openssl_verify () method verifies that the signature is correct (the data generated by the private key encryption is returned and validated with the corresponding public key).
$signature the public key encryption generated data, $data raw data, successfully returned 1, failed to return 0, error return-1
$pub _key_id Public Key
Openssl_verify ($data, $signature, $pub _key_id);
Releasing the private key or public key from memory
Openssl_free_key ($priv _key_id);
Openssl_free_key ($pub _key_id);
generate private and public key
Genrsa-out Private-rsa.pem
Rsa-in Private-rsa.pem-pubout-out Pubic-rsa.cer
