{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 太酷不给撩 的问题《Using “RSA/ECB/PKCS7Padding” with Bouncy Castle》','https://www.manongdao.com/q-1345535.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I tried to use "RSA/ECB/PKCS7Padding" for encryption. It is not supported in JCE. So I downloaded Bouncy Castle but it seems that Bouncy Castle also does not support this transformation. The following codes:
Security.insertProviderAt(new BouncyCastleProvider(), 1);
Cipher cipher = Cipher.getInstance("RSA/ECB/PKCS7Padding");
throws
Caused by: java.security.NoSuchAlgorithmException: Cannot find any provider supporting RSA/ECB/PKCS7Padding
at javax.crypto.Cipher.getInstance(Cipher.java:524)
....
Caused by: javax.crypto.NoSuchPaddingException: Unsupported padding PKCS7Padding
at sun.security.pkcs11.P11RSACipher.engineSetPadding(P11RSACipher.java:129)
at javax.crypto.Cipher$Transform.setModePadding(Cipher.java:360)
at javax.crypto.Cipher.getInstance(Cipher.java:517)
... 4 more
Am I doing it correctly?
TIA.
Even if such a thing would exist, using RSA with PKCS#7 padding or a scheme directly derived from PKCS#7 padding would be insecure (or, to be more precise, it would not be CPA-secure).
What is infinitely more likely is that the client doesn't require PKCS#7 padding but that the encrypted data should be contained in a CMS message format. PKCS#7 is a predecessor of this format, the PKCS#7 padding is only a small part of this specification.
Bouncy Castle contains an implementation of this format:
currently contained in the
bcpkix*JAR files.It's not possible to implement PKCS#7 padding as described in RFC2315 section 10.3 note 2 for all RSA key sizes:
and specifically:
Which means that you could implement this for RSA with 2048-bit keys, but already 4096-bit keys are too much for arbitrary data. This is why PKCS7Padding is reserved for block ciphers where each block is usually between 128 and 256-bit. This is also why libraries don't generally support this sort of combination.
The above specification contains everything you need to know to implement the PKCS#7 padding scheme. When you do, you will pad your data using it and then encrypt with
RSA/ECB/NoPadding. You might run into the problem that although the padded plaintext and the key size are the same, the encryption doesn't work. That's because your padded plaintext might still exceed the key. You may need to add a zero byte to the front of the plaintext and only pad (0x00 + plaintext) so that the most significant bits are unset.To summaries my commenta, According to the java7 doc, There list of standard algorithms must be supported by every implementation of JCE Cipher API. Bouncy castle support additional algorithms as well. I use "
AES/ECB/PKCS7Padding" in my application. You could find supported algorithms by bouncy castle in algorithm section and"RSA/ECB/PKCS1Padding"or"RSA/NONE/PKCS1Padding"should work.