|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
This is an interface for a permanent repository of cryptographic objects, such as keys, certs, and passwords.
Method Summary | |
void |
deleteCert(X509Certificate cert)
Deletes a certificate from a token. |
void |
deletePrivateKey(PrivateKey key)
Deletes the given PrivateKey from the CryptoToken. |
X509Certificate[] |
getCertificates()
Returns all user certificates stored on this token. |
PrivateKey[] |
getPrivateKeys()
Returns all private keys stored on this token. |
void |
importEncryptedPrivateKey(byte[] encodedKey,
Password password,
byte[] salt,
byte[] globalSalt)
Deprecated. A key type should be specified so that the correct usages can be enabled on the key. |
void |
importEncryptedPrivateKey(byte[] encodedKey,
Password password,
byte[] salt,
byte[] globalSalt,
PrivateKey.Type type)
Deprecated. Use importPrivateKey instead. |
void |
importPrivateKey(byte[] key,
PrivateKey.Type type)
Imports a raw private key into this token. |
void |
importTemporaryEncryptedPrivateKey(byte[] encodedKey,
Password password,
byte[] salt,
byte[] globalSalt,
PrivateKey.Type type)
Imports an encoded, encrypted private key into this token, and stores it as a temporary (session) object. |
Method Detail |
public void importEncryptedPrivateKey(byte[] encodedKey, Password password, byte[] salt, byte[] globalSalt) throws InvalidKeyFormatException, TokenException
encodedKey
- The encoded, encrypted private key. These bytes
are expected to be a DER-encoded PKCS #8 EncryptedKeyInfo.
Currently, the only encryption algorithm is RC4.password
- The password that encodes this key. The password
will be cleared by this method. This password,
together with the salt, are used to construct the decrypting key.salt
- The password salt.public void importEncryptedPrivateKey(byte[] encodedKey, Password password, byte[] salt, byte[] globalSalt, PrivateKey.Type type) throws InvalidKeyFormatException, TokenException
encodedKey
- The encoded, encrypted private key. These bytes
are expected to be a DER-encoded PKCS #8 EncryptedKeyInfo.
Currently, the only encryption algorithm is RC4.password
- The password that encodes this key. The password
will be cleared by this method. This password,
together with the salt, are used to construct the decrypting key.salt
- The password salt.type
- The type of the private key. This is used to enable the
right operations for the key.public void importPrivateKey(byte[] key, PrivateKey.Type type) throws TokenException, KeyAlreadyImportedException
key
- The private key.public void importTemporaryEncryptedPrivateKey(byte[] encodedKey, Password password, byte[] salt, byte[] globalSalt, PrivateKey.Type type) throws InvalidKeyFormatException, TokenException
encodedKey
- The encoded, encrypted private key. These bytes
are expected to be a DER-encoded PKCS #8 EncryptedKeyInfo.
Currently, the only encryption algorithm is RC4.password
- The password that encodes this key. The password
will be cleared by this method. This password,
together with the salt, are used to construct the decrypting key.salt
- The password salt.type
- The type of the private key. This is used to enable the
right operations for the key.public PrivateKey[] getPrivateKeys() throws TokenException
public void deletePrivateKey(PrivateKey key) throws NoSuchItemOnTokenException, TokenException
key
- A PrivateKey to be permanently deleted. It must reside
on this token.public X509Certificate[] getCertificates() throws TokenException
public void deleteCert(X509Certificate cert) throws NoSuchItemOnTokenException, TokenException
cert
- A certificate to be deleted from this token. The cert
must actually reside on this token.
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |