iaik.security.ssl
Interface ClientTrustDecider

All Superinterfaces:
TrustDecider

Deprecated. see SSLContext JavaDoc and separate document for the new authentication framework

public interface ClientTrustDecider
extends TrustDecider


Field Summary
static byte dss_ephemeral_dh
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte dss_fixed_dh
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte dss_sign
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte fortezza_dms
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte rsa_ephemeral_dh
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte rsa_fixed_dh
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte rsa_sign
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
 
Method Summary
 SSLCertificate getCertificate(byte[] certificateTypes, java.security.Principal[] certificateAuthorities, java.lang.String keyExchangeAlgorithm)
          Deprecated. Returns a client certificate.
 java.security.PrivateKey getPrivateKey()
          Deprecated. Returns the private key belonging to the certificate returned by getCertificate().
 
Methods inherited from interface iaik.security.ssl.TrustDecider
isTrustedPeer
 

Field Detail

rsa_sign

static final byte rsa_sign
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a RSA certificate which can be used for signing.

See Also:
Constant Field Values

dss_sign

static final byte dss_sign
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a DSS certificate which can be used for signing.

See Also:
Constant Field Values

rsa_fixed_dh

static final byte rsa_fixed_dh
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a RSA certificate which includes fixed Diffie-Hellman parameters.

See Also:
Constant Field Values

dss_fixed_dh

static final byte dss_fixed_dh
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a DSS certificate which includes fixed Diffie-Hellman parameters.

See Also:
Constant Field Values

rsa_ephemeral_dh

static final byte rsa_ephemeral_dh
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a RSA certificate which includes ephemeral Diffie-Hellman parameters.

See Also:
Constant Field Values

dss_ephemeral_dh

static final byte dss_ephemeral_dh
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a DSS certificate which includes ephemeral Diffie-Hellman parameters.

See Also:
Constant Field Values

fortezza_dms

static final byte fortezza_dms
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a fortezza certificate.

See Also:
Constant Field Values
Method Detail

getCertificate

SSLCertificate getCertificate(byte[] certificateTypes,
                              java.security.Principal[] certificateAuthorities,
                              java.lang.String keyExchangeAlgorithm)
Deprecated. 
Returns a client certificate. If a SSL server requests a client certificate it sends a CertificateRequest message. This message also includes a list of accepted certificate types and a list oft accepted certification authorities (subject or issuer of self signed top level CAs). If a client SSLSocket receives such a message it calls this method to get a certificate which can be sendet back to the server. Immediately after calling this method the getPrivateKey() method is called to retrieve the corresponding private key.

If there is no TrustDecider set in a SSLClientContext a NoCertificate warning is sent to the server.

By implementing this interface someone can use his own procedure to access the client certificates.

Parameters:
certificateTypes - the certificate types the server requieres
certificateAuthorities - the certification authorities the server accepts
Returns:
a client certificate list (list[0] = client certificate) or null if no appropriate certificate is found.

getPrivateKey

java.security.PrivateKey getPrivateKey()
Deprecated. 
Returns the private key belonging to the certificate returned by getCertificate().

Returns:
the private key

This Javadoc may contain text parts from text parts from IETF Internet Standard specifications (see copyright note).

iSaSiLk 5.104, (c) 2002 IAIK, (c) 2003 - 2015 SIC