PHP实现AES256加密算法实例

2024-04-08 03:33:04 118

本文实例讲述了PHP实现AES256加密算法的方法，是较为常见的一种加密算法。分享给大家供大家参考。具体如下：

aes.class.php文件如下：

<?php
/*-----------------------------------------------*/
/*AESimplementationinPHP(c)ChrisVeness2005-2011.Rightoffreeuseisgrantedforall*/
/*commercialornon-commercialuseunderCC-BYlicence.Nowarrantyofanyformisoffered.*/
/*-----------------------------------------------*/

classAes{

/**
*AESCipherfunction:encrypt'input'withRijndaelalgorithm
*
*@paraminputmessageasbyte-array(16bytes)
*@paramwkeyscheduleas2Dbyte-array(Nr+1xNbbytes)-
*generatedfromthecipherkeybykeyExpansion()
*@returnciphertextasbyte-array(16bytes)
*/
publicstaticfunctioncipher($input,$w){//maincipherfunction[§5.1]
$Nb=4;//blocksize(inwords):noofcolumnsinstate(fixedat4forAES)
$Nr=count($w)/$Nb-1;//noofrounds:10/12/14for128/192/256-bitkeys

$state=array();//initialise4xNbbyte-array'state'withinput[§3.4]
for($i=0;$i<4*$Nb;$i++)$state[$i%4][floor($i/4)]=$input[$i];

$state=self::addRoundKey($state,$w,0,$Nb);

for($round=1;$round<$Nr;$round++){//applyNrrounds
$state=self::subBytes($state,$Nb);
$state=self::shiftRows($state,$Nb);
$state=self::mixColumns($state,$Nb);
$state=self::addRoundKey($state,$w,$round,$Nb);
}

$state=self::subBytes($state,$Nb);
$state=self::shiftRows($state,$Nb);
$state=self::addRoundKey($state,$w,$Nr,$Nb);

$output=array(4*$Nb);//convertstateto1-darraybeforereturning[§3.4]
for($i=0;$i<4*$Nb;$i++)$output[$i]=$state[$i%4][floor($i/4)];
return$output;
}


privatestaticfunctionaddRoundKey($state,$w,$rnd,$Nb){//xorRoundKeyintostateS[§5.1.4]
for($r=0;$r<4;$r++){
for($c=0;$c<$Nb;$c++)$state[$r][$c]^=$w[$rnd*4+$c][$r];
}
return$state;
}

privatestaticfunctionsubBytes($s,$Nb){//applySBoxtostateS[§5.1.1]
for($r=0;$r<4;$r++){
for($c=0;$c<$Nb;$c++)$s[$r][$c]=self::$sBox[$s[$r][$c]];
}
return$s;
}

privatestaticfunctionshiftRows($s,$Nb){//shiftrowrofstateSleftbyrbytes[§5.1.2]
$t=array(4);
for($r=1;$r<4;$r++){
for($c=0;$c<4;$c++)$t[$c]=$s[$r][($c+$r)%$Nb];//shiftintotempcopy
for($c=0;$c<4;$c++)$s[$r][$c]=$t[$c];//andcopyback
}//notethatthiswillworkforNb=4,5,6,butnot7,8(always4forAES):
return$s;//seefp.gladman.plus.com/cryptography_technology/rijndael/aes.spec.311.pdf
}

privatestaticfunctionmixColumns($s,$Nb){//combinebytesofeachcolofstateS[§5.1.3]
for($c=0;$c<4;$c++){
$a=array(4);//'a'isacopyofthecurrentcolumnfrom's'
$b=array(4);//'b'isa•{02}inGF(2^8)
for($i=0;$i<4;$i++){
$a[$i]=$s[$i][$c];
$b[$i]=$s[$i][$c]&0x80?$s[$i][$c]<<1^0x011b:$s[$i][$c]<<1;
}
//a[n]^b[n]isa•{03}inGF(2^8)
$s[0][$c]=$b[0]^$a[1]^$b[1]^$a[2]^$a[3];//2*a0+3*a1+a2+a3
$s[1][$c]=$a[0]^$b[1]^$a[2]^$b[2]^$a[3];//a0*2*a1+3*a2+a3
$s[2][$c]=$a[0]^$a[1]^$b[2]^$a[3]^$b[3];//a0+a1+2*a2+3*a3
$s[3][$c]=$a[0]^$b[0]^$a[1]^$a[2]^$b[3];//3*a0+a1+a2+2*a3
}
return$s;
}

/**
*KeyexpansionforRijndaelcipher():performskeyexpansiononcipherkey
*togenerateakeyschedule
*
*@paramkeycipherkeybyte-array(16bytes)
*@returnkeyscheduleas2Dbyte-array(Nr+1xNbbytes)
*/
publicstaticfunctionkeyExpansion($key){//generateKeySchedulefromCipherKey[§5.2]
$Nb=4;//blocksize(inwords):noofcolumnsinstate(fixedat4forAES)
$Nk=count($key)/4;//keylength(inwords):4/6/8for128/192/256-bitkeys
$Nr=$Nk+6;//noofrounds:10/12/14for128/192/256-bitkeys

$w=array();
$temp=array();

for($i=0;$i<$Nk;$i++){
$r=array($key[4*$i],$key[4*$i+1],$key[4*$i+2],$key[4*$i+3]);
$w[$i]=$r;
}

for($i=$Nk;$i<($Nb*($Nr+1));$i++){
$w[$i]=array();
for($t=0;$t<4;$t++)$temp[$t]=$w[$i-1][$t];
if($i%$Nk==0){
$temp=self::subWord(self::rotWord($temp));
for($t=0;$t<4;$t++)$temp[$t]^=self::$rCon[$i/$Nk][$t];
}elseif($Nk>6&&$i%$Nk==4){
$temp=self::subWord($temp);
}
for($t=0;$t<4;$t++)$w[$i][$t]=$w[$i-$Nk][$t]^$temp[$t];
}
return$w;
}

privatestaticfunctionsubWord($w){//applySBoxto4-bytewordw
for($i=0;$i<4;$i++)$w[$i]=self::$sBox[$w[$i]];
return$w;
}

privatestaticfunctionrotWord($w){//rotate4-bytewordwleftbyonebyte
$tmp=$w[0];
for($i=0;$i<3;$i++)$w[$i]=$w[$i+1];
$w[3]=$tmp;
return$w;
}

//sBoxispre-computedmultiplicativeinverseinGF(2^8)usedinsubBytesandkeyExpansion[§5.1.1]
privatestatic$sBox=array(
0x63,0x7c,0x77,0x7b,0xf2,0x6b,0x6f,0xc5,0x30,0x01,0x67,0x2b,0xfe,0xd7,0xab,0x76,
0xca,0x82,0xc9,0x7d,0xfa,0x59,0x47,0xf0,0xad,0xd4,0xa2,0xaf,0x9c,0xa4,0x72,0xc0,
0xb7,0xfd,0x93,0x26,0x36,0x3f,0xf7,0xcc,0x34,0xa5,0xe5,0xf1,0x71,0xd8,0x31,0x15,
0x04,0xc7,0x23,0xc3,0x18,0x96,0x05,0x9a,0x07,0x12,0x80,0xe2,0xeb,0x27,0xb2,0x75,
0x09,0x83,0x2c,0x1a,0x1b,0x6e,0x5a,0xa0,0x52,0x3b,0xd6,0xb3,0x29,0xe3,0x2f,0x84,
0x53,0xd1,0x00,0xed,0x20,0xfc,0xb1,0x5b,0x6a,0xcb,0xbe,0x39,0x4a,0x4c,0x58,0xcf,
0xd0,0xef,0xaa,0xfb,0x43,0x4d,0x33,0x85,0x45,0xf9,0x02,0x7f,0x50,0x3c,0x9f,0xa8,
0x51,0xa3,0x40,0x8f,0x92,0x9d,0x38,0xf5,0xbc,0xb6,0xda,0x21,0x10,0xff,0xf3,0xd2,
0xcd,0x0c,0x13,0xec,0x5f,0x97,0x44,0x17,0xc4,0xa7,0x7e,0x3d,0x64,0x5d,0x19,0x73,
0x60,0x81,0x4f,0xdc,0x22,0x2a,0x90,0x88,0x46,0xee,0xb8,0x14,0xde,0x5e,0x0b,0xdb,
0xe0,0x32,0x3a,0x0a,0x49,0x06,0x24,0x5c,0xc2,0xd3,0xac,0x62,0x91,0x95,0xe4,0x79,
0xe7,0xc8,0x37,0x6d,0x8d,0xd5,0x4e,0xa9,0x6c,0x56,0xf4,0xea,0x65,0x7a,0xae,0x08,
0xba,0x78,0x25,0x2e,0x1c,0xa6,0xb4,0xc6,0xe8,0xdd,0x74,0x1f,0x4b,0xbd,0x8b,0x8a,
0x70,0x3e,0xb5,0x66,0x48,0x03,0xf6,0x0e,0x61,0x35,0x57,0xb9,0x86,0xc1,0x1d,0x9e,
0xe1,0xf8,0x98,0x11,0x69,0xd9,0x8e,0x94,0x9b,0x1e,0x87,0xe9,0xce,0x55,0x28,0xdf,
0x8c,0xa1,0x89,0x0d,0xbf,0xe6,0x42,0x68,0x41,0x99,0x2d,0x0f,0xb0,0x54,0xbb,0x16);

//rConisRoundConstantusedfortheKeyExpansion[1stcolis2^(r-1)inGF(2^8)][§5.2]
privatestatic$rCon=array(
array(0x00,0x00,0x00,0x00),
array(0x01,0x00,0x00,0x00),
array(0x02,0x00,0x00,0x00),
array(0x04,0x00,0x00,0x00),
array(0x08,0x00,0x00,0x00),
array(0x10,0x00,0x00,0x00),
array(0x20,0x00,0x00,0x00),
array(0x40,0x00,0x00,0x00),
array(0x80,0x00,0x00,0x00),
array(0x1b,0x00,0x00,0x00),
array(0x36,0x00,0x00,0x00));
}
?>

aesctr.class.php文件如下：

<?php
/*-----------------------------------------------*/
/*AEScounter(CTR)modeimplementationinPHP(c)ChrisVeness2005-2011.Rightoffreeuseis*/
/*grantedforallcommercialornon-commercialuseunderCC-BYlicence.Nowarrantyofany*/
/*formisoffered.*/
/*-----------------------------------------------*/

classAesCtrextendsAes{

/**
*EncryptatextusingAESencryptioninCountermodeofoperation
*-seehttp://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf
*
*Unicodemulti-bytecharactersafe
*
*@paramplaintextsourcetexttobeencrypted
*@parampasswordthepasswordtousetogenerateakey
*@paramnBitsnumberofbitstobeusedinthekey(128,192,or256)
*@paramkeepkeep1:eachnotchange0:eachchange(default)
*@returnencryptedtext
*/
publicstaticfunctionencrypt($plaintext,$password,$nBits,$keep=0){
$blockSize=16;//blocksizefixedat16bytes/128bits(Nb=4)forAES
if(!($nBits==128||$nBits==192||$nBits==256))return'';//standardallows128/192/256bitkeys
//notePHP(5)givesusplaintextandpasswordinUTF8encoding!

//useAESitselftoencryptpasswordtogetcipherkey(usingplainpasswordassourcefor
//keyexpansion)-givesuswellencryptedkey
$nBytes=$nBits/8;//nobytesinkey
$pwBytes=array();
for($i=0;$i<$nBytes;$i++)$pwBytes[$i]=ord(substr($password,$i,1))&0xff;
$key=Aes::cipher($pwBytes,Aes::keyExpansion($pwBytes));
$key=array_merge($key,array_slice($key,0,$nBytes-16));//expandkeyto16/24/32byteslong

//initialise1st8bytesofcounterblockwithnonce(NISTSP800-38A§B.2):[0-1]=millisec,
//[2-3]=random,[4-7]=seconds,givingguaranteedsub-msuniquenessuptoFeb2106
$counterBlock=array();

if($keep==0){
$nonce=floor(microtime(true)*1000);//timestamp:millisecondssince1-Jan-1970
$nonceMs=$nonce%1000;
$nonceSec=floor($nonce/1000);
$nonceRnd=floor(rand(0,0xffff));
}else{
$nonce=10000;
$nonceMs=$nonce%1000;
$nonceSec=floor($nonce/1000);
$nonceRnd=10000;
}

for($i=0;$i<2;$i++)$counterBlock[$i]=self::urs($nonceMs,$i*8)&0xff;
for($i=0;$i<2;$i++)$counterBlock[$i+2]=self::urs($nonceRnd,$i*8)&0xff;
for($i=0;$i<4;$i++)$counterBlock[$i+4]=self::urs($nonceSec,$i*8)&0xff;

//andconvertittoastringtogoonthefrontoftheciphertext
$ctrTxt='';
for($i=0;$i<8;$i++)$ctrTxt.=chr($counterBlock[$i]);

//generatekeyschedule-anexpansionofthekeyintodistinctKeyRoundsforeachround
$keySchedule=Aes::keyExpansion($key);
//print_r($keySchedule);

$blockCount=ceil(strlen($plaintext)/$blockSize);
$ciphertxt=array();//ciphertextasarrayofstrings

for($b=0;$b<$blockCount;$b++){
//setcounter(block#)inlast8bytesofcounterblock(leavingnoncein1st8bytes)
//doneintwostagesfor32-bitops:usingtwowordsallowsustogopast2^32blocks(68GB)
for($c=0;$c<4;$c++)$counterBlock[15-$c]=self::urs($b,$c*8)&0xff;
for($c=0;$c<4;$c++)$counterBlock[15-$c-4]=self::urs($b/0x100000000,$c*8);

$cipherCntr=Aes::cipher($counterBlock,$keySchedule);//--encryptcounterblock--

//blocksizeisreducedonfinalblock
$blockLength=$b<$blockCount-1?$blockSize:(strlen($plaintext)-1)%$blockSize+1;
$cipherByte=array();

for($i=0;$i<$blockLength;$i++){//--xorplaintextwithcipheredcounterbyte-by-byte--
$cipherByte[$i]=$cipherCntr[$i]^ord(substr($plaintext,$b*$blockSize+$i,1));
$cipherByte[$i]=chr($cipherByte[$i]);
}
$ciphertxt[$b]=implode('',$cipherByte);//escapetroublesomecharactersinciphertext
}

//implodeismoreefficientthanrepeatedstringconcatenation
$ciphertext=$ctrTxt.implode('',$ciphertxt);
$ciphertext=base64_encode($ciphertext);
return$ciphertext;
}

/**
*DecryptatextencryptedbyAESincountermodeofoperation
*
*@paramciphertextsourcetexttobedecrypted
*@parampasswordthepasswordtousetogenerateakey
*@paramnBitsnumberofbitstobeusedinthekey(128,192,or256)
*@returndecryptedtext
*/
publicstaticfunctiondecrypt($ciphertext,$password,$nBits){
$blockSize=16;//blocksizefixedat16bytes/128bits(Nb=4)forAES
if(!($nBits==128||$nBits==192||$nBits==256))return'';//standardallows128/192/256bitkeys
$ciphertext=base64_decode($ciphertext);

//useAEStoencryptpassword(mirroringencryptroutine)
$nBytes=$nBits/8;//nobytesinkey
$pwBytes=array();
for($i=0;$i<$nBytes;$i++)$pwBytes[$i]=ord(substr($password,$i,1))&0xff;
$key=Aes::cipher($pwBytes,Aes::keyExpansion($pwBytes));
$key=array_merge($key,array_slice($key,0,$nBytes-16));//expandkeyto16/24/32byteslong

//recovernoncefrom1stelementofciphertext
$counterBlock=array();
$ctrTxt=substr($ciphertext,0,8);
for($i=0;$i<8;$i++)$counterBlock[$i]=ord(substr($ctrTxt,$i,1));

//generatekeyschedule
$keySchedule=Aes::keyExpansion($key);

//separateciphertextintoblocks(skippingpastinitial8bytes)
$nBlocks=ceil((strlen($ciphertext)-8)/$blockSize);
$ct=array();
for($b=0;$b<$nBlocks;$b++)$ct[$b]=substr($ciphertext,8+$b*$blockSize,16);
$ciphertext=$ct;//ciphertextisnowarrayofblock-lengthstrings

//plaintextwillgetgeneratedblock-by-blockintoarrayofblock-lengthstrings
$plaintxt=array();

for($b=0;$b<$nBlocks;$b++){
//setcounter(block#)inlast8bytesofcounterblock(leavingnoncein1st8bytes)
for($c=0;$c<4;$c++)$counterBlock[15-$c]=self::urs($b,$c*8)&0xff;
for($c=0;$c<4;$c++)$counterBlock[15-$c-4]=self::urs(($b+1)/0x100000000-1,$c*8)&0xff;

$cipherCntr=Aes::cipher($counterBlock,$keySchedule);//encryptcounterblock

$plaintxtByte=array();
for($i=0;$i<strlen($ciphertext[$b]);$i++){
//--xorplaintextwithcipheredcounterbyte-by-byte--
$plaintxtByte[$i]=$cipherCntr[$i]^ord(substr($ciphertext[$b],$i,1));
$plaintxtByte[$i]=chr($plaintxtByte[$i]);

}
$plaintxt[$b]=implode('',$plaintxtByte);
}

//joinarrayofblocksintosingleplaintextstring
$plaintext=implode('',$plaintxt);

return$plaintext;
}

/*
*Unsignedrightshiftfunction,sincePHPhasneither>>>operatornorunsignedints
*
*@paramanumbertobeshifted(32-bitinteger)
*@parambnumberofbitstoshiftatotheright(0..31)
*@returnaright-shiftedandzero-filledbybbits
*/
privatestaticfunctionurs($a,$b){
$a&=0xffffffff;$b&=0x1f;//(boundscheck)
if($a&0x80000000&&$b>0){//ifleft-mostbitset
$a=($a>>1)&0x7fffffff;//right-shiftonebit&clearleft-mostbit
$a=$a>>($b-1);//remainingright-shifts
}else{//otherwise
$a=($a>>$b);//usenormalright-shift
}
return$a;
}
}
?>

Demo实例程序如下：

<?php
require'aes.class.php';//AESPHPimplementation
require'aesctr.class.php';//AESCounterModeimplementation

echo'eachchange<br>';

$mstr=AesCtr::encrypt('HelloWorld','key',256);
echo"EncryptString:$mstr<br/>";

$dstr=AesCtr::decrypt($mstr,'key',256);
echo"DecryptString:$dstr<br/>";

echo'eachnotchange<br>';

$mstr=AesCtr::encrypt('HelloWorld','key',256,1);//keep=1
echo"EncryptString:$mstr<br/>";

$dstr=AesCtr::decrypt($mstr,'key',256);
echo"DecryptString:$dstr<br/>";
?>

这里再介绍另一使用PHPmcrypt加解密方法：

/*aes256encrypt
*@paramString$ostr
*@paramString$securekey
*@paramString$typeencrypt,decrypt
*/
functionaes($ostr,$securekey,$type='encrypt'){
if($ostr==''){
return'';
}

$key=$securekey;
$iv=strrev($securekey);
$td=mcrypt_module_open('rijndael-256','','ofb','');
mcrypt_generic_init($td,$key,$iv);

$str='';

switch($type){
case'encrypt':
$str=base64_encode(mcrypt_generic($td,$ostr));
break;

case'decrypt':
$str=mdecrypt_generic($td,base64_decode($ostr));
break;
}

mcrypt_generic_deinit($td);

return$str;
}

//Demo
$key="fdipzone201314showmethemoney!@#$";
$str="showmethemoney";

$ostr=aes($str,$key);
echo"String1:$ostr<br/>";

$dstr=aes($ostr,$key,'decrypt');
echo"String2:$dstr<br/>";

希望本文所述对大家php程序设计的学习有所帮助。

PHP实现AES256加密算法实例

热门推荐

随机推荐