org.objectweb.proactive.ext.security
Class ProActiveSecurity
java.lang.Object
org.objectweb.proactive.ext.security.ProActiveSecurity
public class ProActiveSecurity
- extends java.lang.Object
|
Method Summary |
static void |
checkCertificateChain(java.security.cert.X509Certificate acCert,
java.security.cert.X509Certificate[] serverCerts)
Checks a X509 certificate for validity, expiration,
and other problems. |
static org.bouncycastle.asn1.x509.AuthorityKeyIdentifier |
createAuthorityKeyId(java.security.PublicKey pubKey)
|
static org.bouncycastle.asn1.x509.AuthorityKeyIdentifier |
createAuthorityKeyId(java.security.PublicKey pubKey,
org.bouncycastle.asn1.x509.X509Name name,
int sNumber)
|
static org.bouncycastle.asn1.x509.SubjectKeyIdentifier |
createSubjectKeyId(java.security.PublicKey pubKey)
|
static java.security.cert.X509Certificate |
decodeCertificate(byte[] encodedCert)
|
static java.lang.Object[] |
genCert(java.lang.String dn,
long validity,
java.lang.String policyId,
java.security.PrivateKey privKey,
java.security.PublicKey pubKey,
boolean isCA,
java.lang.String caDn,
java.security.PrivateKey caPrivateKey,
java.security.PublicKey acPubKey)
|
static java.lang.Object[] |
generateCertificate(java.lang.String dnName,
java.lang.String issuerName,
java.security.PrivateKey caPrivKey,
java.security.PublicKey caPubKey)
|
static java.lang.Object[] |
generateGenericCertificateSelfSigned()
|
static java.security.cert.X509Certificate |
getMyCertificate()
|
static java.security.cert.X509Certificate[] |
getMyCertificateChain()
|
static void |
loadProvider()
Creates a new certificate with given subject and issuer DN, public key,
for specified amount of time (from current time) and signs it with a given
private key. |
static java.lang.String |
retrieveVNName(java.lang.String nodeName)
|
static void |
verifyCertificates(java.security.cert.X509Certificate[] certs,
boolean checkVadility)
Verifies a chain of X509 certificates (checks signatures)
Optionally, can also check for vadility, expiration of
individual certificates. |
| Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
ProActiveSecurity
public ProActiveSecurity()
generateGenericCertificateSelfSigned
public static java.lang.Object[] generateGenericCertificateSelfSigned()
genCert
public static java.lang.Object[] genCert(java.lang.String dn,
long validity,
java.lang.String policyId,
java.security.PrivateKey privKey,
java.security.PublicKey pubKey,
boolean isCA,
java.lang.String caDn,
java.security.PrivateKey caPrivateKey,
java.security.PublicKey acPubKey)
throws java.security.NoSuchAlgorithmException,
java.security.SignatureException,
java.security.InvalidKeyException
- Throws:
java.security.NoSuchAlgorithmException
java.security.SignatureException
java.security.InvalidKeyException
generateCertificate
public static java.lang.Object[] generateCertificate(java.lang.String dnName,
java.lang.String issuerName,
java.security.PrivateKey caPrivKey,
java.security.PublicKey caPubKey)
createSubjectKeyId
public static org.bouncycastle.asn1.x509.SubjectKeyIdentifier createSubjectKeyId(java.security.PublicKey pubKey)
createAuthorityKeyId
public static org.bouncycastle.asn1.x509.AuthorityKeyIdentifier createAuthorityKeyId(java.security.PublicKey pubKey,
org.bouncycastle.asn1.x509.X509Name name,
int sNumber)
createAuthorityKeyId
public static org.bouncycastle.asn1.x509.AuthorityKeyIdentifier createAuthorityKeyId(java.security.PublicKey pubKey)
retrieveVNName
public static java.lang.String retrieveVNName(java.lang.String nodeName)
decodeCertificate
public static java.security.cert.X509Certificate decodeCertificate(byte[] encodedCert)
verifyCertificates
public static void verifyCertificates(java.security.cert.X509Certificate[] certs,
boolean checkVadility)
throws java.security.GeneralSecurityException
- Verifies a chain of X509 certificates (checks signatures)
Optionally, can also check for vadility, expiration of
individual certificates.
- Parameters:
certs - X509 certificate chaincheckVadility - if true, the vadility of each certificate
will be checked.
- Throws:
CertificateExceptionjava.security.GeneralSecurityException
checkCertificateChain
public static void checkCertificateChain(java.security.cert.X509Certificate acCert,
java.security.cert.X509Certificate[] serverCerts)
throws java.security.cert.CertificateException
- Checks a X509 certificate for validity, expiration,
and other problems.
- Parameters:
acCert - certification authority X509 certificateserverCerts - chain to validate
- Throws:
CertificateExceptionjava.security.cert.CertificateException
loadProvider
public static void loadProvider()
- Creates a new certificate with given subject and issuer DN, public key,
for specified amount of time (from current time) and signs it with a given
private key.
getMyCertificate
public static java.security.cert.X509Certificate getMyCertificate()
getMyCertificateChain
public static java.security.cert.X509Certificate[] getMyCertificateChain()
Copyright 2001-2007 INRIA All Rights Reserved.