public class POPOSigningKey
extends org.bouncycastle.asn1.ASN1Object
Constructor and Description |
---|
POPOSigningKey(POPOSigningKeyInput poposkIn,
org.bouncycastle.asn1.x509.AlgorithmIdentifier aid,
org.bouncycastle.asn1.ASN1BitString signature)
Creates a new Proof of Possession object for a signing key.
|
Modifier and Type | Method and Description |
---|---|
org.bouncycastle.asn1.x509.AlgorithmIdentifier |
getAlgorithmIdentifier() |
static POPOSigningKey |
getInstance(org.bouncycastle.asn1.ASN1TaggedObject obj,
boolean explicit) |
static POPOSigningKey |
getInstance(java.lang.Object o) |
POPOSigningKeyInput |
getPoposkInput() |
org.bouncycastle.asn1.ASN1BitString |
getSignature() |
org.bouncycastle.asn1.ASN1Primitive |
toASN1Primitive()
POPOSigningKey ::= SEQUENCE {
poposkInput [0] POPOSigningKeyInput OPTIONAL,
algorithmIdentifier AlgorithmIdentifier,
signature BIT STRING }
-- The signature (using "algorithmIdentifier") is on the
-- DER-encoded value of poposkInput.
|
public POPOSigningKey(POPOSigningKeyInput poposkIn, org.bouncycastle.asn1.x509.AlgorithmIdentifier aid, org.bouncycastle.asn1.ASN1BitString signature)
poposkIn
- the POPOSigningKeyInput structure, or null if the
CertTemplate includes both subject and publicKey values.aid
- the AlgorithmIdentifier used to sign the proof of possession.signature
- a signature over the DER-encoded value of poposkIn,
or the DER-encoded value of certReq if poposkIn is null.public static POPOSigningKey getInstance(java.lang.Object o)
public static POPOSigningKey getInstance(org.bouncycastle.asn1.ASN1TaggedObject obj, boolean explicit)
public POPOSigningKeyInput getPoposkInput()
public org.bouncycastle.asn1.x509.AlgorithmIdentifier getAlgorithmIdentifier()
public org.bouncycastle.asn1.ASN1BitString getSignature()
public org.bouncycastle.asn1.ASN1Primitive toASN1Primitive()
POPOSigningKey ::= SEQUENCE { poposkInput [0] POPOSigningKeyInput OPTIONAL, algorithmIdentifier AlgorithmIdentifier, signature BIT STRING } -- The signature (using "algorithmIdentifier") is on the -- DER-encoded value of poposkInput. NOTE: If the CertReqMsg -- certReq CertTemplate contains the subject and publicKey values, -- then poposkInput MUST be omitted and the signature MUST be -- computed on the DER-encoded value of CertReqMsg certReq. If -- the CertReqMsg certReq CertTemplate does not contain the public -- key and subject values, then poposkInput MUST be present and -- MUST be signed. This strategy ensures that the public key is -- not present in both the poposkInput and CertReqMsg certReq -- CertTemplate fields.
toASN1Primitive
in interface org.bouncycastle.asn1.ASN1Encodable
toASN1Primitive
in class org.bouncycastle.asn1.ASN1Object