|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object | +--com.rsa.certj.crmf.Control | +--com.rsa.certj.crmf.PKIArchiveOptions
This class holds, encodes, and decodes the PKI Archive OPtions control. It is defined in CRMF.
The pkiArchiveOptions control enables subscribers to supply information needed to establish an archive of the private key corresponding to the public key of the certification request. It is defined by the following syntax:PKIArchiveOptions ::= CHOICE { encryptedPrivKey [0] EncryptedKey, -- the actual value of the private key keyGenParameters [1] KeyGenParameters, -- parameters which allow the private key to be re-generated archiveRemGenPrivKey [2] BOOLEAN } -- set to TRUE if sender wishes receiver to archive the private -- key of a key pair which the receiver generates in response to -- this request; set to FALSE if no archival is desired. EncryptedKey ::= CHOICE { encryptedValue EncryptedValue, envelopedData [0] EnvelopedData } -- The encrypted private key MUST be placed in the envelopedData -- encryptedContentInfo encryptedContent OCTET STRING. EncryptedValue ::= SEQUENCE { intendedAlg [0] AlgorithmIdentifier OPTIONAL, -- the intended algorithm for which the value will be used symmAlg [1] AlgorithmIdentifier OPTIONAL, -- the symmetric algorithm used to encrypt the value encSymmKey [2] BIT STRING OPTIONAL, -- the (encrypted) symmetric key used to encrypt the value keyAlg [3] AlgorithmIdentifier OPTIONAL, -- algorithm used to encrypt the symmetric key valueHint [4] OCTET STRING OPTIONAL, -- a brief description or identifier of the encValue content -- (may be meaningful only to the sending entity, and used only -- if EncryptedValue might be re-examined by the sending entity -- in the future) encValue BIT STRING } KeyGenParameters ::= OCTET STRING -- An alternative to sending the key is to send the information about -- how to re-generate the key using the KeyGenParameters choice (e.g., -- for many RSA implementations one could send the first random numbers -- tested for primality). The actual syntax for this parameter may be -- defined in a subsequent version of this document or in another -- standard. |
See Also
Fields inherited from class com.rsa.certj.crmf.Control |
AUTHENTICATOR, NON_STANDARD, OLD_CERT_ID, PKI_ARCHIVE_OPTIONS, PKI_PUBLICATION_INFO, PROTOCOL_ENCR_KEY, REG_TOKEN |
Constructor Summary |
|
PKIArchiveOptions()
Constructs an empty |
Method Summary |
|
clone()
Overrides the default |
|
boolean |
equals(Object obj)
Returns true if this object and obj contain the same PKIArchiveOptions , returns false otherwise. |
boolean |
getArchivePrivateKey()
Gets the Archive Private Key flag |
getEncryptedKey()
Gets the EncryptedKey structure that holds the actual value of the private key |
|
byte[] |
getParameters()
Gets the Key Generation Parameters |
void |
setArchivePrivateKey(boolean flag)
Sets the Archive Private Key flag |
void |
setEncryptedKey(EncryptedKey encKey)
Sets the EncryptedKey structure that holds the actual value of the private key |
void |
setParameters(byte[] param,
int offset,
int len)
Sets the Key Generation Parameters |
Methods inherited from class com.rsa.certj.crmf.Control |
compareOID, derEncodeControlLen, getControlType, getControlTypeString, getDEREncoding, getDERLen, getInstance, getInstance, getNextBEROffset, getOID, isControlType, setEnvironment |
Methods inherited from class java.lang.Object |
getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
public PKIArchiveOptions()
PKIArchiveOptions
object.Method Detail |
public void setEncryptedKey(EncryptedKey encKey) throws CRMFException
Parameters
encKey | The EncryptedKey structure |
Throws
CRMFException
- If the passed value is nullpublic EncryptedKey getEncryptedKey()
Returns
public void setParameters(byte[] param, int offset, int len) throws CRMFException
Parameters
param | The parameters which alllow the private key to be re-generated | ||
offset | The offset into | ||
len | The length of the parameters |
Throws
CRMFException
- If the passed value is nullpublic byte[] getParameters()
Returns
public void setArchivePrivateKey(boolean flag)
Parameters
flag | The boolean that if set to TRUE indicates that sender wishes receiver to archive the private key of a key pair which the receiver generates in response to this request; set to FALSE if no archival is desired. |
public boolean getArchivePrivateKey()
Returns
public Object clone() throws CloneNotSupportedException
clone
method
to get a deeper clone.
Overrides
clone
in class Control
Returns
Throws
CloneNotSupportedException
- If the cloning operation
is not successful.public boolean equals(Object obj)
Overrides
equals
in class Control
Parameters
obj | The instance of PKIArchiveOptions object |
Returns
boolean
that indicates whether
these objects are equal.
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |