��Ʒ� ��s ToolBox

ʹ�� Spring 2.5 ע�� IoC ��

wiselyman — 2009��10��28�� 10:39

http://www.ibm.com/developerworks/cn/java/j-lo-spring25-ioc/
��hibernate+spring �鿴��

ʹ�� Spring 2.5 ��ע�� Spring MVC

wiselyman — 2009��10��28�� 10:38

http://www.ibm.com/developerworks/cn/java/j-lo-spring25-mvc/
��hibernate+spring �鿴��

spring��

wiselyman — 2009��09��27�� 21:37

Bean scopes

sigleton��

Spring singleton is best described as per container and per bean.

The singleton scope is the default scope in Spring.

prototype��

creation of a new bean instance every time a request for that specific bean is made��

use the prototype scope for all beans that are stateful, while the singleton scope should be used for stateless beans.

prototype-scoped bean as somewhat of a replacement for the Java 'new' operator.

Spring does not manage the complete lifecycle of a prototype bean��It is the responsibility of the client code to clean up prototype scoped objects and release any expensive resources that the prototype bean(s) are holding onto.

request��webר�ã��session��webר�ã��globle session��webר�ã�

servlet 2.4+ web.xml

...

org.springframework.web.context.request.RequestContextListener

...

servlet 2.3 web.xml

..

requestContextFilter
org.springframework.web.filter.RequestContextFilter

requestContextFilter
/*

...

the global session scope is similar to the standard HTTP Session scope (described immediately above), and really only makes sense in the context of portlet-based web applications.

if you are writing a standard Servlet-based web application and you define one or more beans
as having global session scope, the standard HTTP Session scope will be used, and no error will be raised.

From the above configuration it is evident that the singleton bean 'userManager' is being injected with a
reference to the HTTP Session-scoped bean 'userPreferences'. The salient point here is that the
'userManager' bean is a singleton... it will be instantiated exactly once per container, and its dependencies (in
this case only one, the 'userPreferences' bean) will also only be injected (once!). This means that the
'userManager' will (conceptually) only ever operate on the exact same 'userPreferences' object, that is the
one that it was originally injected with. This is not what you want when you inject a HTTP Session-scoped
bean as a dependency into a collaborating object (typically). Rather, what we do want is a single
'userManager' object, and then, for the lifetime of a HTTP Session, we want to see and use a
'userPreferences' object that is specific to said HTTP Session.

��hibernate+spring �鿴��

1��1 JCA Design and Architecture��

wiselyman — 2009��09��14�� һ 16:36

�Ͻ�1��1 JCA Design and Architecture��

Storing and Managing Keys��洢��key��

Keystore��public keys��certificates��ݿ��

Ĭ��£��ݿ��Ϊkeystore��ļ��ʽ��û��homeĿ¼�¡�SUN provider��ṩ��ͨ��һ��˽�еĸ�ʽ��JKS��ļ��ÿһ��private key��뱣��ļ��Ҳ��뱣��KeyStore��ṩһ��׳�Ľӿ��ʵ��keystore provider��

KeyStore�洢2��͵��Ŀ��

��һ��һ��key��Ŀ��key entry��е�key��Ϣ��磺private key��authenticating certificate chain��һ��ܵ�key��

�ڶ��һ��֤��Ŀ��trusted certificate entry��֤�ض�public key��ӵ��ߡ�

Keystore��δ洢��ʵ�֣��ˣ��ָ��ġ�KeyStore ��ṩ��ز��һ��keystore��entry�ı��entry��ͣ��entry��keystore��Ϣ��

��׼��getInstance��keystore��

Load��ش�ָ��keystore��ѡ��֤keystore��Եķ��û��ָ��Լ�鲻��ִ�С�

��null��inputλ�þͻᴴ��һ��յ�keystore

final void load(InputStream stream, char[] password)

“store”��浱ǰ��keystore��ָ��ָ��룬��keystore��ݵ�У��ͣ�checksum��ӵ��β��У��ڼ��ִ��Լ��ʱʹ�á�

final void store(OutputStream stream, char[] password)

��java�߼� �鿴��

JAVA��ȥ��20��Ӣ��վ(ת)

wiselyman — 2009��09��14�� һ 06:23

1.[http://www.javaalmanac.com] – Java��һ��߰汾. Ҫ��ٲ鵽ĳ��Java��ɵ��÷��ʾ��, ��һ��ȥ��.

2.[http://www.onjava.com] – O’Reilly��Java��վ. ÿ�ܶ��.

3.[http://java.sun.com] – �ٷ��Java��վ – ÿ�ܶ��·��.

4.[http://www.developer.com/java] – ��Gamelan.com ά��Java��վ.

5.[http://www.java.net] – Sun��˾ά��һ��Java��վ.

6.[http://www.builder.com] – Cnet��Builder.com��վ – ��еļ��, ��JavaΪ��.

7.[http://www.ibm.com/developerworks/java] – IBM��Developerworks��վ; ��е�Java��ҳ.

8.[http://www.javaworld.com] – ��һ��Javaվ��. ÿ�ܸ��Java��.

9.[http://www.devx.com/java] – DevXά��һ��Java��վ.

10.[http://www.fawcette.com/javapro] – JavaPro��־��վ.

11.[http://www.sys-con.com/java] – Java Developers Journal��־��վ.

12.[http://www.javadesktop.org] – λ��Java.net��һ��Java��漼��վ.

13.[http://www.theserverside.com] – ��һ��Java��˼��վ.

14.[http://www.jars.com] – �ṩJava��۷��. ��framework��Ӧ�ó��.

15.[http://www.jguru.com] – һ��ǳ��Ĳ��Q&A��ʽ��Java��Դ��.

16.[http://www.javaranch.com] – һ��̳��õ�Java��𰸵ĵط��ѧ�ߵĺ�ȥ��

17.[http://www.ibiblio.org/javafaq/javafaq.html] – comp.lang.java��FAQվ�� – �ռ��comp.lang.java��ʹ𰸵ķ��Ŀ¼.

18.[http://java.sun.com/docs/books/tutorial/] – ��SUN��˾�Ĺٷ�Javaָ�� – ��˽⼸��е�java��Էǳ��а��.

19.[http://www.javablogs.com] – ��Ծ��һ��Java Blog��վ.

20.[http://java.about.com/] – ��About.com��Java��źͼ��վ.

��java�� 鿴��

1��1 JCA Design and Architecture��

wiselyman — 2009��09��13�� 18:22

��1��1 JCA Design and Architecture��һ��

import java.security.Signature;
import java.security.KeyPair;
import java.security.PublicKey;
import java.security.PrivateKey;
import java.security.NoSuchAlgorithmException;
import java.security.InvalidKeyException;
import java.security.SignatureException;

public class SignatureExample {
    public byte[] signData(byte[] data, PrivateKey key)
    {
        try {
            Signature signer = Signature.getInstance("SHA1withDSA");

signer.initSign(key);

signer.update(data);

            return(signer.sign());
        } catch(NoSuchAlgorithmException nsae) {
            System.out.println("Exception: " + nsae);
            nsae.printStackTrace();
        } catch(InvalidKeyException ike) {
            System.out.println("Exception: " + ike);
            ike.printStackTrace();
        } catch(SignatureException se) {
            System.out.println("Exception: " + se);
            se.printStackTrace();
        }

return(null);
}

    public boolean verifySig(byte[] data, PublicKey key, byte[] sig)
    {
        try {
            Signature signer = Signature.getInstance("SHA1withDSA");

signer.initVerify(key);

signer.update(data);

            return(signer.verify(sig));
        } catch(NoSuchAlgorithmException nsae) {
            System.out.println("Exception: " + nsae);
            nsae.printStackTrace();
        } catch(InvalidKeyException ike) {
            System.out.println("Exception: " + ike);
            ike.printStackTrace();
        } catch(SignatureException se) {
            System.out.println("Exception: " + se);
            se.printStackTrace();
        }

return(false);
}

public static void main(String args[])
    {
        SignatureExample sigEx = new SignatureExample();
        KeyPairGeneratorExample kpge = new KeyPairGeneratorExample();
        KeyPair keyPair = kpge.generateKeyPair(717);

byte[] data = {65,66,67,68,69,70,71,72,73,74};
byte[] digitalSignature = sigEx.signData(data, keyPair.getPrivate());

boolean verified;

        // This verification will succeed
        verified = sigEx.verifySig(data, keyPair.getPublic(), digitalSignature);
        if(verified) {
            System.out.println("** The digital signature has been verified");
        } else {
            System.out.println("** The digital signature is invalid, the wrong " +
                               "key was used, or the data has been compromised");
        }

System.out.println("");

        // Generate a new key pair. Guaranteed to be different and incompatible
        // with first set.
        keyPair = kpge.generateKeyPair(517);
        // This verification will fail
        verified = sigEx.verifySig(data, keyPair.getPublic(), digitalSignature);
        if(verified) {
            System.out.println("** The digital signature has been verified");
        } else {
            System.out.println("** The digital signature is invalid, the wrong " +
                               "key was used, or the data has been compromised");
        }
    }
}

KeyPairGeneratorExample��ں��ۣ��ù�Կ��Կ��ʹ��Կǩ��ʹ�ù�Կ��֤��

//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////

Digital Key Creation and Management(��key�Ĵ��͹��)

Security API��2��ʽ��key��ڡ�

͸��ʽ��key��key�ľ��Ϣ��key��㷨��

��͸��ʽ��key��Щֵ��ز�ֻ��ʴ��key��㷨��ʹ�õı��key��ı��ʽ��

͸��ʽ��key�̳н��KeySpec��ǽӿڡ��Ϊ��һ��ǽӿڣ��ӿ��û�з��塣

��java.security.spec��Key�Ľӿ��±��

��͸��ʽ��key�෴��͸��ʽ�̳��Key�ӿڣ��KeySpec�ӿڣ�key�ӿڶ��3��е�ʵ��ʵ�֡��£�

“algorithm”��һ��string��ʾʹ�ô��key��㷨��

String algorithm()

“getEncoded”��һ��ѱ��汾key��ѭ��׼��ʽ��X.509 or PKCS #8��

byte[] getEncoded()

“getFormat”��key�ı��ʽ��ơ�

String getFormat()

“java.security.interfaces”��12��ӿ�ֱ�Ӽ̳��Key interface��Java API�У��кܶ��ͱ�׼��key��±��

KeyFactory��ת��͸��ʽkey��͸��ʽ��֮��Ȼ��

��׼��getInstance��KeyFactory��2��ת��͸��key��͸��key��

һ��Ϊ��Կһ��Ϊ��Կ��1��ת��Щ��

��Щ��

generatePublic��generatePrivate��͸��ʽkey��ֱ�ӻ��Ӽ̳�KeySpec��KeySpec��ط�͸��public key��private key��

PublicKey generatePublic(KeySpec keySpec)

PrivateKey generatePrivate(KeySpec keySpec)

getKeySpec ��ܷ�͸��ʽ��keyͨ��key��һ��ָ��ĸ�key specification ��ת��ص��ࣺ

KeySpec getKeySpec(Key key, Class keySpec)

��Ĵӿͻ��˵ĽǶȿ��ǣ�KeyPair��KeyPairGenerator�Լ�KeyStore��洢��Щpublic/private key��֤�顣

KeyPair�ඨ��2��

PrivateKey getPrivate()

PublicKey getPublic()

��һ��ڱ��洢��private key��ڶ��public key��

KeyPairGenerator��public/private key �ԣ��ʹ��KeyPair��洢��ǡ�

KeyPairGenerator��һ��key��㷨�޹صģ��Ǻ�keyPairGenerator��γ�ʼ��йء��Ϊ��е��㷨ʹ�û��size�� randomness��ĸ����ʼ��ʹ��ض��㷨��Ǳ��ģ�

void initialize(int keysize, SecureRandom random)

void initialize(int keysize)

Keysize��ĺ��ǣ��ÿһ��㷨keysize��ͬ��

��㷨��Ҳ��Ѹ�Ԥ��úõĲ��磺һ��DSA�㷨��ض��keysize��ָ��Ĳ��ͬ��ֵ��һ��룬radomnessͨ��Ĭ��ϵͳ��

��ʽ��initializeʵ�ֳ�ʼ��ض��Ĳ��ͨ��params��ݡ��һ��ֲ��û�д��radomness��ϵͳ��

void initialize(AlgorithmParameterSpec params, SecureRandom random)

void initialize(AlgorithmParameterSpec params)

��淽��һ��KeyPair��ÿ�ε��᷵�ص��Ͳ�ͬ��key��

KeyPair generateKeyPair()

��һ��ʵ��KeyGenerator��private key��public key��KeyPair��

import java.security.KeyPairGenerator;
import java.security.KeyPair;
import java.security.SecureRandom;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.PublicKey;
import java.security.PrivateKey;
public class KeyPairGeneratorExample {
public KeyPair generateKeyPair(long seed)
{
try {
// Get a DSA key generator from first
// provider that provides it
KeyPairGenerator keyGenerator =
KeyPairGenerator.getInstance(“DSA”);
// Get a random number generator using
// algorithm SHA1PRNG from the SUN provider package.
SecureRandom rng =
SecureRandom.getInstance(“SHA1PRNG”, “SUN”);
// Configure RNG and initialize key pair generator
rng.setSeed(seed);
keyGenerator.initialize(1024, rng);
return(keyGenerator.generateKeyPair());
} catch(NoSuchProviderException nspe) {
System.out.println(“Exception: “ + nspe);
nspe.printStackTrace();
} catch(NoSuchAlgorithmException nsae) {
System.out.println(“Exception: “ + nsae);
nsae.printStackTrace();
}
return(null);
}

public static void main(String args[])

{

KeyPairGeneratorExample kpge = new KeyPairGeneratorExample();

KeyPair kp = kpge.generateKeyPair(717);

System.out.println(“-- Public Key ----”);

PublicKey pubKey = kp.getPublic();

System.out.println(“ Algorithm=” + pubKey.getAlgorithm());

System.out.println(“ Encoded=” + pubKey.getEncoded());

System.out.println(“ Format=” + pubKey.getFormat());

System.out.println(“\n-- Private Key ----”);

PrivateKey priKey = kp.getPrivate();

System.out.println(“ Algorithm=” + priKey.getAlgorithm());

System.out.println(“ Encoded=” + priKey.getEncoded());

System.out.println(“ Format=” + priKey.getFormat());

}

��ض��-SHA1PRNG��SUN provider��

��ῴ��private��public key�Ĳ�ͬ��

-- Public Key ----

Algorithm=DSA

Encoded=[B@1a46e30

Format=X.509

-- Private Key ----

Algorithm=DSA

Encoded=[B@3e25a5

Format=PKCS#8

Public key�ı��ʽ��X509,private key�ı��ʽPKCS#8��

�½ӣ�1��1 JCA Design and Architecture��

��java�߼� �鿴��

1��2 Java Cryptography Extension

wiselyman — 2009��09��12�� 18:47

1.2
��java�߼� �鿴��

1��1 JCA Design and Architecture��һ��

wiselyman — 2009��09��11�� 17:26

JCA�γ��˰�ȫAPI�ĺ��ġ��֮��2��Ҫ��ԭ��

��һ��JCA��ʵ��޹ص��ҿɻ��ġ�ʵ��޹��ͨ��ܷ��ṩ�ߣ�cryptography service providers��ʵ�ֵġ�

һ��providerʵ��һ�ּ��ܷ��ֻ��ߴ��һ��ǩ��

��Ա�֤��ͬ��provider��һ��磬��ͬ��providerʹ��ͬ��㷨��һ��provider��ܿ��Ա��һ��provider��ܡ�

�ڶ��JCA��㷨�޹��ԺͿ��չ�Եġ�

�㷨�޹��ͨ��ࣨengine classes��ṩ�ض��ļ��ܷ��Կ��ϢժҪ��񣩵Ĺ淶��ʵ�ֵġ�

�㷨��չ��ȷ��Щ��Ժ��׵��µ��㷨��¡�

JDK��һЩĬ�ϵļ��ܷ��ṩ�ߣ��ΪSUN�İ��£��provider��

❑ Implementation of DSA (Digital Signature Algorithm)

❑ Implementation of MD5 and SHA-1 message digest algorithms

❑ Key pair generator to generate public and private key pairs for the DSA algorithm

❑ DSA algorithm parameter generator

❑ DSA algorithm parameter manager

❑ DSA key factory that supports converting public keys to and from private keys

❑ SHA1PRNG pseudo-random number generator

❑ X.509 Certificate path builder and validator for PKIX

❑ A certificate store using the PKIX LDAP V2 Schema

❑ Certificate factory for X.509 certificates and Certificate Revocation Lists (CRLs)

❑ A keystore

��е�provider��ϸ��ۡ��е��Ӷ��ʹ��SUN��Ĭ�ϵ�provider��ʵ�֡��ʹ�õ��provider��ο��ĵ��

��ࣨEngine Classes��

һ��ṩһ��ض��ܷ��Ľӿڡ��ӿڹ涨��Ա��ʹ��ض��ķ��һ��ض��಻ͬ��ʵ�֣��ǩ��ʵ��ʹ��SHA-1��MD5�㷨��

ÿһ��඼�ж�Ӧ�ķ��ṩ�ӿڣ�SPI��SPI��һ��װ�ĳ��ࡣ

��Ϊ��࣬SPI��뱻�̳С�ÿһ��඼��һ��ʵ��ʹ��getInstance��

JDK��12��࣬��3��certificate path classes ��the certificate store��jdk1.4��ġ�

��Щ��£�

SPI��ǽ�Spi�ӵ�engine class��ƺ��棬��SecureRadom ��SPI��SecureRadomSpi��

ÿһ��engine class��һ��getInstance��һ��ض��㷨��һ��ض��provider��

��װһ��ͬ��provider�� ͨ��JAR�ļ��classpath��߲��JAR�ļ��Ϊ��JRE��չ��Providerһ��Ҫ��java.security�ļ��б����ļ��JDK��JRE��װĿ¼��lib/securityĿ¼��ҵ��ļ��µ��ʽ��֣�

security.provider.n=masterClassName

“n”��1��2��û��ض�provider��ʱ�򣬻��engine class��getInstance��

“masterClassName ”��provider��ʸ��ȫ��ȥ��档

JDK 6.0�ļ��ָ��provider��£�

security.provider.1=sun.security.provider.Sun

security.provider.2=sun.security.rsa.SunRsaSign

security.provider.3=com.sun.net.ssl.internal.ssl.Provider

security.provider.4=com.sun.crypto.provider.SunJCE

security.provider.5=sun.security.jgss.SunProvider

security.provider.6=com.sun.security.sasl.Provider

security.provider.7=org.jcp.xml.dsig.internal.dom.XMLDSigRI

security.provider.8=sun.security.smartcardio.SunPCSC

security.provider.9=sun.security.mscapi.SunMSCAPI

��һ��ÿһ��engine class��н��⡣��ӵ�ʵ��ʹ�õ�SUN�ṩ�İ��

Calculating and Verifying Message Digests��֤��ϢժҪ��

MessageDigest��ⳤ�ȵ�byte��Ϊ��벢��hashֵ��ϢժҪ��һ��Ĳ��һ��ϢժҪ��ܵõ�ԭʼ��Ϣ��ԵĻ��Ͽ϶��һ��õ�ѹ��㷨��ڡ��ˣ��Խ��ϢժҪ��ݵ�“ָ��”��Ϊÿһ��뼯��ΪΨһ��hashֵ��

��ڿ�һ��е��඼��ϸ��ÿһ��඼��̬��

static [engine class name] getInstance(String algorithm)

static [engine class name] getInstance(String algorithm,String provider)

static [engine class name] getInstance(String algorithm,Provider provider)

��2��ʽ��getInstance��ָ��ض��provider��һ��㴫��һ��provider��ʵ��ڶ��ʽ��ʹ��provider��֡�

��е��ַ��㷨��Ǵ�Сд��еġ�[engine class name] ��档

SUN�ṩ�İ��2��ϢժҪ�㷨��MD5��SHA-1��

MD5�㷨��ܲ��128λ��ϢժҪ��SHA-1��Secure Hash Algorithm��д��ṩ160λ��ϢժҪ��

�ڵ��getInstance��֮��һ��ѳ�ʼ��MessageDigest �ʹ��ˡ��һ��ṩ��MessageDigest��ϢժҪ��ݵ�MessageDigest��

void update(byte input)

void update(byte[] input)

void update(byte[] input, int offset, int len)

��һ��ʽ��ܼ򵥵��ֽ��롣�ڶ��ֽ��ֽ��飬��һ�ֽ��ֽ��飬��ϢժҪ��ʼλ��offset��Ĵ�С��len��

��ַ��ϢժҪ��ֽ��顣

byte[] digest()

byte[] digest(byte[] input)

int digest(byte[] buf, int offset, int len)

��һ��digest��update��ϢժҪ��ڶ��в��ϢժҪ��ֻ��ڻ��update��Ȼ��洢��ϢժҪ��buf�ֽ��鲢��Ϊ��Len��ָ��ϢժҪ�Ŀ��󳤶ȡ�Offsetָ����ϢժҪ��￪ʼ��ֵ��buf��ֽڵĸ��

��ʹ��MessageDigest��֤��ݵ��ԡ��ڱ�дһ��ȫ��Ե��ݰ�ȫ�Ժ��Ե�ϵͳ��Ҫȷ��û��û��Ĺ��һ�ַ��ǣ��ڴ��ʱ�򣬴洢��Щ��ݶ�Ӧ��ϢժҪ��Щ��ϢժҪֵ��ڻ��ϵͳ�Ȼ��ÿһ��ڵ��Ŀ�ĵغ��Щ��ϢժҪ�ɱ��¼��㡣��Կ��һ��ӻ��ϵͳ��ϢժҪ��¼��ϢժҪ��Ƚϡ��Ӿ��Ǽ��ϢժҪ��Ѿ��ҵ��ϢժҪ�Ƚϣ�

import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;

public class MessageDigestExample {
public static void main(String args[]) {
   try {
    MessageDigest sha = MessageDigest.getInstance("SHA-1");
    byte[] data1 = { 65, 66, 67, 68, 69 };
    byte[] data2 = { 70, 71, 72, 73, 74 };
    sha.update(data1);
    sha.update(data2);
    byte[] msgDigest = sha.digest();
    // Can also combine the final update with digest like this:
    // byte[] msgDigest = sha.digest(data2);
    System.out.println("--- Message Digest ---");
    for (int i = 0; i < msgDigest.length; i++) {
     System.out.print(msgDigest[i] + " ");
    }
    System.out.println("");
   } catch (NoSuchAlgorithmException nsae) {
    System.out.println("Exception: " + nsae);
    nsae.printStackTrace();
   }
}

��£�

--- Message Digest ---

-97 103 -17 -58 -81 -87 95 26 -17 -101 51 81 -42 -80 29 126 5 -111 -73 72

��¼��㲢�ͽ��ն��Ƚ��֤��Ƿ��

Digital Signing and Verification of Data��ǩ��֤��

ʹ��Կ��ʵ�ֵ��ǩ��ݣ�ʹ�ù�Կ��ʵ��ǩ��Ƿ��֤��ɡ��ܱ�֤��Դ��ض��ˣ��ʹ��Կ��ǩ��ÿ��Ʊǩ��һ��Կ��ǩ��һ��ֽڣ��һ��̵ġ��ǩ��ǩ��ͨ��Կ��֤��ͼ��ʾ��

��Ҫ�Ǵӱ�̵ĽǶ��DSA�㷨��ʵ��ϣ�DSA�㷨��ϢժҪ�㷨MD5��SHA-1һ��ʹ�á��ϢժҪ��Կһ��ΪDSA�㷨��롣��һ��棬��ݱ��һ�α��ϢժҪ��ͬʱ�͹�Կ��ΪDSA��֤��ݵ��ԡ�

��ϢժҪһ��ǩ��㷨Ҳ��2��Ҫ��ԭ��

��һ��ԭ��Ǻ��Կ��Ӧ�Ĺ�Կ��֤��ݵ��ԡ�

�ڶ��ԭ��ǩ��͹�Կ��¶�κι��Կ�Ķ��

ʵ�ʵ�ǩ��״̬��£�

ǩ��״̬ ��

UNINITIALIZED �ٶ��Ǵ��֮��״̬

SIGN ��ζ�Ŷ��Ϊǩ��ʼ��initSign֮��á�

VERIFY ��ζ�Ŷ��ѱ��ʼ��Ϊ��֤ǩ��initVerify֮��

SUN�ṩ��DSA�㷨��ʵ��Digital Signature Standard (DSS)��һ��֡�SHA-1��MD5��DSA�㷨��ֵ��Զ��׼��ġ��Խ��ϢժҪ��ܺ��ǩ��ܽ��Ǻܼ򵥵ġ��MessageDigest��һ��Signature��Ҳ��ͬ��getInstance��

һ��Signature��뱻��ʼ��Ȼ��ʹ��淽��׼��ǩ��ݣ�

final void initSign(PrivateKey privateKey)

��֮��Signature��״̬��SIGN��һ��ݷ��͵�Signature��ʵ��϶��ݽ��ǩ��ͨ��update��sign��ʵ�֣�

final void update(byte b)

final void update(byte[] data)

final void update(byte[] data, int offset, int len)

//////////////////////////////////////////////////////////////////////

final byte[] sign()

final int sign(byte[] outbuf, int offset, int len)

��sign��֮��Signature��SIGN״̬��Կ��в�ͬ��Կ��initSign��

��һ��Signature��֧��֤��ݡ�Signature��ʹ��initVerify��֤��ݣ�

final void initVerify(PublicKey publicKey)

final void initVerify(Certificate certificate)

Public key �� certificate ��֤��ǩ��initVerify��ú�SignatureΪVERIFY״̬��

Update��ݵ�Signature��֤��÷��ͷ��ǩ��ͬ��

��֤�ķ��ã�Ȼ��ݵ�ǩ��͹�Կ��Կ�Ƿ�ƥ�䣺

final boolean verify(byte[] signature)

final boolean verify(byte[] signature, int offset, int length)

verify��غ�Signature��VERIFY״̬��ʹ�ò�ͬ�Ĺ�Կ��initVerify��

һ��ʹ�ù�Կ��Կ�ķ�ʽ��:ǩ��Ȼ��֤��Դͷ��

��磺�ٶ��Ϊһ��а��̹��ǹ��һ��ȫ��ϵͳ��ǰ�ȫ�ĵ��ʼ�ϵͳ��ȫ�ĵ��ʼ��Ŀͻ��һ��Ҫ��ǩ��Ϣ��֤��Ϣ��͹��key��ϸ�ں��ۡ��key��ڡ��㽫��һ��ǩ��֤�İ�ȫ��ͨ��

�½ӣ�1��1 JCA Design and Architecture��

��java�߼� �鿴��

Java Security--Java��ȫ��

wiselyman — 2009��09��11�� 07:26

Java�ṩ��2��ʵ�ְ�ȫ��Ƶķ��

Java Cryptography�ṩ��û�identification/authentication ��Ϣǩ��

Java Authentication and Authorization Services �ṩ�˱��ʽ�ķ��ʿ��ƺ��û��Ȩ��ɺͰ�ȫ��Ȩ��ʳ��

��ȫ��Ƶ�Javaʵ�ֽ��˺ܶ��׼�İ�ȫ��Ƶ�ʵ�֣��磺��ʿ��ƣ�access control��Կ/˽Կ(public/private key)��ɺ͹��ݵ�ǩ��͵��֤��Ĺ��

1��JCA ��JCE

2009��09��11�� 17:13

.Java Cryptography Architecture (JCA)��JDK1.1�б��Դ��İ汾��JCA��ṩ��ǩ��ϢժҪ��֤��Ⱥ��õķ��ʿ��Ƶ�API��

��ȫ��ʵ�ֵ��Ҫ��м��ݵĽ��Կ��ͻ��Ϣ��֤��{MessageAuthentication Code (MAC)}��֧�֡�

��Щ��Զ��Java Cryptography Extension��JCE�У��ҵ��JCE��JDK1.4��ʱ��ɵġ�

��JCA��JCE�Ĺ��ܽ�ϣ��һ��Ƶİ�ȫ��ƺͼ��صİ�ȫ��ϵͳʵ�֡�

1��1 JCA ��ƺͼܹ�

1��2 Java Cryptography Extension

2��ʹ��JAASʵ�ְ�ȫ

δ�ꡣ��

��java�߼� �鿴��

��List�е��

wiselyman — 2009��09��09�� 12:53

ArrayList list=new ArrayList(); list.add(2); list.add(5); list.add(3); Collections.sort(list)
��java�� 鿴��

���Ʒ� ��s ToolBox

ʹ�� Spring 2.5 ע�������� IoC ����

ʹ�� Spring 2.5 ����ע�������� Spring MVC

spring���

1��1 JCA Design and Architecture������

JAVA�������ȥ��20��Ӣ����վ(ת)

1��1 JCA Design and Architecture������

1��2 Java Cryptography Extension

1��1 JCA Design and Architecture��һ��

Java Security--Java��ȫ����

��List�е���������

��Ʒ� ��s ToolBox

ʹ�� Spring 2.5 ע�� IoC ��

ʹ�� Spring 2.5 ��ע�� Spring MVC

spring��

1��1 JCA Design and Architecture��

JAVA��ȥ��20��Ӣ��վ(ת)

1��1 JCA Design and Architecture��

Java Security--Java��ȫ��

��List�е��