|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
Object | +--CVC
Class implementing a decoder for card verifiable certificates or requests according to
Extended Access Control (EAC) as defined in BSI TR-03110 1.11 and 2.02.
Defined in cvc.js
Field Summary | |
Object |
asn
|
Object |
bin
|
Object |
body
|
<static> Object |
ATRIGHTS
Table of rights description for id-AT |
<static> Object |
id_TA_ECDSA
TA constants |
<static> Object |
id_TA_ECDSA_SHA_1
|
<static> Object |
id_TA_ECDSA_SHA_224
|
<static> Object |
id_TA_ECDSA_SHA_256
|
<static> Object |
id_TA_ECDSA_SHA_384
|
<static> Object |
id_TA_ECDSA_SHA_512
|
<static> Object |
id_TA_RSA_PSS_SHA_1
|
<static> Object |
id_TA_RSA_PSS_SHA_256
|
<static> Object |
id_TA_RSA_PSS_SHA_512
|
<static> Object |
id_TA_RSA_v1_5_SHA_1
|
<static> Object |
id_TA_RSA_v1_5_SHA_256
|
<static> Object |
id_TA_RSA_v1_5_SHA_512
|
<static> Object |
idAT
|
<static> Object |
idIS
|
<static> Object |
idSC_HSM
|
<static> Object |
idST
|
<static> Object |
ISRIGHTS
Table of rights description for id-IS |
<static> Object |
OBJECTNAMES
Table of tag names |
<static> Object |
STRIGHTS
Table of rights description for id-ST |
<static> Object |
TAG_AT
Authentication Template |
<static> Object |
TAG_BODY
Certificate Body |
<static> Object |
TAG_CAR
Certification Authority Reference |
<static> Object |
TAG_CED
Certificate Effective Date |
<static> Object |
TAG_CHAT
Certificate Holder Authorisation Template |
<static> Object |
TAG_CHR
Certificate Holder Reference |
<static> Object |
TAG_CPI
Certificate Profile Identifier |
<static> Object |
TAG_CVC
CV Certificate |
<static> Object |
TAG_CXD
Certificate Expiration Date |
<static> Object |
TAG_ECC_A
First coefficient a |
<static> Object |
TAG_ECC_B
Second coefficient b |
<static> Object |
TAG_ECC_G
Base Point G |
<static> Object |
TAG_ECC_H
Cofactor f |
<static> Object |
TAG_ECC_N
Order of the base point |
<static> Object |
TAG_ECC_P
Prime Modulus |
<static> Object |
TAG_ECC_Q
Public Point y |
<static> Object |
TAG_EXTN
Certificate Extension |
<static> Object |
TAG_PUK
Public Key |
<static> Object |
TAG_SIG
Signature |
Constructor Summary | |
CVC()
Create a CVC object from a DER encoded ByteString. |
Method Summary | |
boolean
|
containsDomainParameter()
Return true of the certificate contains domain parameter |
void
|
decorate()
Decorate the ASN.1 object with the correct name |
ASN1
|
getASN1()
Returns the certificate as ASN1 structure |
ByteString
|
getBytes()
Returns the encoded certificate |
PublicKeyReference
|
getCAR()
Returns the certification authority reference (CAR). |
Date
|
getCED()
Returns the certificate effective date (CED). |
ASN1
|
getCHAT()
Returns the extension identified by the object identifier. |
PublicKeyReference
|
getCHR()
Returns the certificate holder reference (CHR). |
Date
|
getCXD()
Returns the certificate expiration date (CXD). |
Key
|
getECPublicKey(<Key> domParam)
Returns the EC public key contained in the certificate. |
ASN1
|
getExtension(extoid)
Returns the extension identified by the object identifier. |
PublicKeyReference
|
getOuterCAR()
Returns the outer certification authority reference (CAR). |
Key
|
getPublicKey(<Key> domParam)
Returns the public key contained in the certificate. |
ByteString
|
getPublicKeyOID()
Returns the public key object identifier |
String[]
|
getRightsAsList()
Return list of rights granted by the certificate |
Key
|
getRSAPublicKey()
Returns the RSA public key contained in the certificate. |
String
|
getType()
Return a string describing the certificate type |
Boolean
|
isAuthenticatedRequest()
Determine if this is an authenticated request |
Boolean
|
isCertificateRequest()
Determine if this is a certificate request |
Boolean
|
isCountersignedRequest()
Determine if this is a countersigned authenticated request |
Boolean
|
isExpired()
Determine if this certificate is expired |
String
|
toString()
Return a textual description of the certificate |
Boolean
|
verifyATWith(crypto, <Key> puk, <ByteString> oid)
Verify outer signature of an authenticated request with public key |
Boolean
|
verifyATWithCVC(crypto, <CVC> cvc)
Verify outer signature of an authenticated request with public key from card verifiable certificate |
Boolean
|
verifyWith(crypto, <Key> puk, <ByteString> oid)
Verify certificate signature with public key |
Boolean
|
verifyWithCVC(crypto, <CVC> cvc)
Verify certificate signature with public key from card verifiable certificate |
<static> void
|
decodeECPublicKey(<ASN1> pdo, <Key> key)
Decode a public key from the TR-03110 format |
<static> void
|
decorateTree(node)
Function to recursively walk the ASN.1 tree |
<static> Number
|
getHashMech(<ByteString> oid)
Return hash mechanism for object identifier |
<static> Number
|
getSignatureMech(<ByteString> oid)
Return signature mechanism for object identifier |
<static> boolean
|
isECDSA(oid)
Return true of the object identifier starts with id-TA-ECDSA |
Field Detail |
Object asn
Object bin
Object body
<static> Object ATRIGHTS
<static> Object id_TA_ECDSA
<static> Object id_TA_ECDSA_SHA_1
<static> Object id_TA_ECDSA_SHA_224
<static> Object id_TA_ECDSA_SHA_256
<static> Object id_TA_ECDSA_SHA_384
<static> Object id_TA_ECDSA_SHA_512
<static> Object id_TA_RSA_PSS_SHA_1
<static> Object id_TA_RSA_PSS_SHA_256
<static> Object id_TA_RSA_PSS_SHA_512
<static> Object id_TA_RSA_v1_5_SHA_1
<static> Object id_TA_RSA_v1_5_SHA_256
<static> Object id_TA_RSA_v1_5_SHA_512
<static> Object idAT
<static> Object idIS
<static> Object idSC_HSM
<static> Object idST
<static> Object ISRIGHTS
<static> Object OBJECTNAMES
<static> Object STRIGHTS
<static> Object TAG_AT
<static> Object TAG_BODY
<static> Object TAG_CAR
<static> Object TAG_CED
<static> Object TAG_CHAT
<static> Object TAG_CHR
<static> Object TAG_CPI
<static> Object TAG_CVC
<static> Object TAG_CXD
<static> Object TAG_ECC_A
<static> Object TAG_ECC_B
<static> Object TAG_ECC_G
<static> Object TAG_ECC_H
<static> Object TAG_ECC_N
<static> Object TAG_ECC_P
<static> Object TAG_ECC_Q
<static> Object TAG_EXTN
<static> Object TAG_PUK
<static> Object TAG_SIG
Constructor Detail |
CVC()
param
- the DER encoded certificate
Method Detail |
boolean containsDomainParameter()
void decorate()
ASN1 getASN1()
ByteString getBytes()
PublicKeyReference getCAR()
Date getCED()
ASN1 getCHAT()
PublicKeyReference getCHR()
Date getCXD()
Key getECPublicKey(<Key> domParam)
domParam
- optional domain parameter if they are not contained in certificate
ASN1 getExtension(extoid)
PublicKeyReference getOuterCAR()
Key getPublicKey(<Key> domParam)
domParam
- optional domain parameter if they are not contained in certificate
ByteString getPublicKeyOID()
String[] getRightsAsList()
Key getRSAPublicKey()
String getType()
Boolean isAuthenticatedRequest()
Boolean isCertificateRequest()
Boolean isCountersignedRequest()
Boolean isExpired()
String toString()
Boolean verifyATWith(crypto, <Key> puk, <ByteString> oid)
puk
- the public key
oid
- the signature algorithm
Boolean verifyATWithCVC(crypto, <CVC> cvc)
cvc
- the card verifiable certificate used to obtain the public key
Boolean verifyWith(crypto, <Key> puk, <ByteString> oid)
puk
- the public key
oid
- the signature algorithm
Boolean verifyWithCVC(crypto, <CVC> cvc)
cvc
- the card verifiable certificate used to obtain the public key
<static> void decodeECPublicKey(<ASN1> pdo, <Key> key)
pdo
- the public key data object
key
- the key object to fill
<static> void decorateTree(node)
<static> Number getHashMech(<ByteString> oid)
oid
- the object identifer from the public key object
<static> Number getSignatureMech(<ByteString> oid)
oid
- the object identifer from the public key object
<static> boolean isECDSA(oid)
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |