![](\"https:\/\/kb.cdn.yimenapp.com\/yimen\/2023\/04\/20230412115052431.jpg\")
<\/figure>\n<\/p>\noutform PEM -out public_key.pem<\/p>\n
2. \u52a0\u8f7dRSA\u516c\u94a5\u548c\u79c1\u94a5<\/p>\n
RSA\u662f\u4e00\u79cd\u975e\u5bf9\u79f0\u52a0\u5bc6\u7b97\u6cd5\uff0c\u5e38\u7528\u4e8e\u6570\u5b57\u7b7e\u540d\u548c\u52a0\u5bc6\u3002\u5728iOS\u4e0a\u4f7f\u7528RSA\u8fdb\u884c\u7b7e\u540d\u548c\u9a8c\u8bc1\uff0c\u9700\u8981\u4f7f\u7528iOS\u5185\u7f6e\u7684Security\u6846\u67b6\u3002\u4e0b\u9762\u5c06\u5bf9RSA\u7684\u539f\u7406\u4ee5\u53ca\u5728iOS\u4e0a\u7684\u5177\u4f53\u5b9e\u73b0\u8fdb\u884c\u8be6\u7ec6\u4ecb\u7ecd\u3002<\/p>\n
1. RSA\u539f\u7406<\/p>\n
RSA\u7b97\u6cd5\u662f\u4e00\u79cd\u57fa\u4e8e\u5927\u7d20\u6570\u5206\u89e3\u7684\u975e\u5bf9\u79f0\u52a0\u5bc6\u7b97\u6cd5\uff0c\u5176\u57fa\u672c\u539f\u7406\u662f\u5c06\u4e24\u4e2a\u5927\u7d20\u6570\u76f8\u4e58\u5f97\u5230\u4e00\u4e2a\u5927\u7684\u5408\u6570\uff0c\u5e76\u5c06\u5176\u4f5c\u4e3a\u516c\u94a5\uff0c\u800c\u5c06\u4e24\u4e2a\u5927\u7d20\u6570\u7684\u4e58\u79ef\u7684\u6b27\u62c9\u51fd\u6570\u503c\u4f5c\u4e3a\u79c1\u94a5\u3002\u5728RSA\u4e2d\uff0c\u516c\u94a5\u548c\u79c1\u94a5\u662f\u4e0d\u540c\u7684\uff0c\u53ef\u4ee5\u901a\u8fc7\u516c\u94a5\u52a0\u5bc6\u6570\u636e\uff0c\u53ea\u6709\u901a\u8fc7\u79c1\u94a5\u624d\u80fd\u89e3\u5bc6\u6570\u636e\u3002<\/p>\n
RSA\u7684\u52a0\u5bc6\u8fc7\u7a0b\u5982\u4e0b\uff1a<\/p>\n
1. \u9009\u62e9\u4e24\u4e2a\u5927\u7d20\u6570p\u548cq\uff0c\u5e76\u8ba1\u7b97\u5b83\u4eec\u7684\u4e58\u79efn=p*q\u3002<\/p>\n
2. \u8ba1\u7b97n\u7684\u6b27\u62c9\u51fd\u6570\u503c\u03c6(n)=(p-1)*(q-1)\u3002<\/p>\n
3. \u9009\u62e9\u4e00\u4e2a\u5c0f\u4e8e\u03c6(n)\u4e14\u548c\u03c6(n)\u4e92\u8d28\u7684\u6574\u6570e\uff0c\u4f5c\u4e3a\u52a0\u5bc6\u6307\u6570\u3002e\u7684\u9009\u62e9\u901a\u5e38\u662f65537\u3002<\/p>\n
4. \u8ba1\u7b97e\u5bf9\u4e8e\u03c6(n)\u7684\u6a21\u53cd\u5143\u7d20d\uff0c\u4f5c\u4e3a\u89e3\u5bc6\u6307\u6570\u3002\u5373d*e mod \u03c6(n) = 1\u3002<\/p>\n
5. \u516c\u94a5\u4e3a(n, e)\uff0c\u79c1\u94a5\u4e3a(n, d)\u3002<\/p>\n
6. \u52a0\u5bc6\u65f6\uff0c\u5c06\u660e\u6587m\u8f6c\u6362\u4e3a\u6574\u6570M\uff0c\u8ba1\u7b97\u5bc6\u6587C=M^e mod n\u3002<\/p>\n
7. \u89e3\u5bc6\u65f6\uff0c\u5c06\u5bc6\u6587C\u8ba1\u7b97\u51fa\u660e\u6587M=C^d mod n\u3002<\/p>\n
2. \u5728iOS\u4e0a\u4f7f\u7528RSA\u8fdb\u884c\u7b7e\u540d\u548c\u9a8c\u8bc1<\/p>\n
\u5728iOS\u4e0a\u4f7f\u7528RSA\u8fdb\u884c\u7b7e\u540d\u548c\u9a8c\u8bc1\uff0c\u9700\u8981\u4f7f\u7528Security\u6846\u67b6\u4e2d\u7684SecKeyRef\u5bf9\u8c61\u6765\u8868\u793a\u516c\u94a5\u548c\u79c1\u94a5\u3002SecKeyRef\u5bf9\u8c61\u53ef\u4ee5\u901a\u8fc7\u5bc6\u94a5\u5bf9\u7684DER\u7f16\u7801\u6216PEM\u7f16\u7801\u6765\u521b\u5efa\u3002\u5177\u4f53\u6b65\u9aa4\u5982\u4e0b\uff1a<\/p>\n
1. \u751f\u6210RSA\u5bc6\u94a5\u5bf9<\/p>\n
\u53ef\u4ee5\u4f7f\u7528openssl\u547d\u4ee4\u884c\u5de5\u5177\u751f\u6210RSA\u5bc6\u94a5\u5bf9\uff0c\u751f\u6210\u547d\u4ee4\u5982\u4e0b\uff1a<\/p>\n
openssl genrsa -out private_key.pem 2048<\/p>\n
\u8fd9\u5c06\u751f\u6210\u4e00\u4e2a2048\u4f4d\u7684RSA\u79c1\u94a5\uff0c\u5e76\u5c06\u5176\u4fdd\u5b58\u5230private_key.pem\u6587\u4ef6\u4e2d\u3002\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u5c06\u79c1\u94a5\u8f6c\u6362\u4e3aDER\u7f16\u7801\uff1a<\/p>\n
openssl rsa -in private_key.pem -outform DER -out private_key.der<\/p>\n
\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u5c06\u79c1\u94a5\u8f6c\u6362\u4e3aPEM\u7f16\u7801\uff1a<\/p>\n
openssl rsa -in private_key.pem -outform PEM -out private_key.pem<\/p>\n
\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u4ece\u79c1\u94a5\u4e2d\u63d0\u53d6\u516c\u94a5\uff0c\u5e76\u5c06\u5176\u4fdd\u5b58\u5230public_key.der\u6587\u4ef6\u4e2d\uff1a<\/p>\n
openssl rsa -in private_key.pem -pubout -outform DER -out public_key.der<\/p>\n
\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u5c06\u516c\u94a5\u8f6c\u6362\u4e3aPEM\u7f16\u7801\uff1a<\/p>\n
openssl rsa -in private_key.pem -pubout –<\/p>\n
outform PEM -out public_key.pem<\/p>\n 2. \u52a0\u8f7dRSA\u516c\u94a5\u548c\u79c1\u94a5<\/p>\n<\/figure>\n<\/p>\n