Home > Others

Using __ algorithm for HMAC algorithm

Source: Internet
Author: User
Tags hmac
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >
Use of HMAC 
The HMAC algorithm is mainly used for authentication, as follows:

    1. The client issues
    a login request 2. The server returns a random value, which is stored in the session record
    3. The client uses the random value as the key, the user password for the HMAC operation, and submits it to the server
    4. The server reads the user password in the database, uses the key to do the same as the client HMAC operation, and then compares with the result which the user sends, if consistent, then the user identity is legal.

What is the advantage of doing so? If we are in the process of login, the hacker intercepted the data we sent, he can only get the result of the HMAC encryption, because do not know the key, it is impossible to obtain the user password, thus ensuring security. Types of HMAC

Algorithm kind                Summary length

HmacMD5                 128
HmacSHA1                160
HmacSHA256              256 HmacSHA384 384
HmacSHA512              512
Use of HMAC

1. As I saw earlier, if you want to use the HMAC algorithm, then we need to generate a key, how does this key be generated. Just fill it out casually. A key generator Keygenerator is used in the JDK to help us generate the key, as shown below

public static byte[] Getsecretkey () throws Exception {keygenerator
    keygenerator = Keygenerator.getinstance (" HmacMD5 "); Can fill in hmacsha1,hmacsha256 and other
    secretkey key = Keygenerator.generatekey ();

    byte[] keybytes = key.getencoded ();
    return keybytes;
}

2. Now that we've got the key, we're going to start the Message digest algorithm, and before that, because the key we generated was returned in a byte array, we need to revert it to Secretkey, as follows

public static String Encrypthmac (byte[] key, byte[] data throws Exception {secretkey
    secretkey = new Secretkeyspec (k EY, "HmacMD5");

    Mac Mac = mac.getinstance ("HmacMD5");
    Mac.init (Secretkey);

    byte[] Resultbytes = mac.dofinal (data);
    String resultstring = bytetohexstring (resultbytes);

    return resultstring;
}

If you want to use other algorithms, you can fill in the HmacMD5 of all the fields you want to use the algorithm, such as HmacSHA1, HmacSHA256, and so on.

The following HelloWorld execution algorithm view results

1efd5e8d4d0c20f68bdc732fd7a79677

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
hmac sha256 algorithm hmac sha1 algorithm algorithm for string concatenation deflate data compression algorithm used for https specified key not valid size for algorithm what hash algorithm used for password authentication comparison algorithm

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More