iaik.security.ssl
Class DefaultTicketKeysManager

java.lang.Object
  extended by iaik.security.ssl.TicketKeysManager
      extended by iaik.security.ssl.DefaultTicketKeysManager
All Implemented Interfaces:
java.lang.Cloneable

public class DefaultTicketKeysManager
extends TicketKeysManager
implements java.lang.Cloneable

The default TicketKeysManager implementation.


Constructor Summary
DefaultTicketKeysManager()
          Creates a DefaultTicketKeysManager object.
 
Method Summary
 java.lang.Object clone()
          Returns a clone of this DefaultTicketKeysManager.
 TicketKeyBag getTicketKeys(TicketKeyBag.KeyName keyName)
          Gets the ticket keys for en- or decrypting a ticket.
 void setTicketKeys(TicketKeyBag ticketKeys)
          Sets the (initial) ticket keys for this DefaultTicketKeysManager.
 
Methods inherited from class iaik.security.ssl.TicketKeysManager
getDefault, setDefault
 
Methods inherited from class java.lang.Object
equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

DefaultTicketKeysManager

public DefaultTicketKeysManager()
Creates a DefaultTicketKeysManager object.

Method Detail

setTicketKeys

public void setTicketKeys(TicketKeyBag ticketKeys)
Sets the (initial) ticket keys for this DefaultTicketKeysManager.
This method is called by iSaSiLk to set the (initial) TicketKeyBag from the SessionTicket extension. The ticket keys will be used by the server for session ticket en/decryption and mac calcualtion/verification when sending a session ticket to the client within a NewSessionTicket handshake message, or receiving one from the client within a SessionTicket extension, respectively.

Specified by:
setTicketKeys in class TicketKeysManager
Parameters:
ticketKeys - the (initial) AES and MAC keys to be used for ticket en/decryption and mac calculation/verification

getTicketKeys

public TicketKeyBag getTicketKeys(TicketKeyBag.KeyName keyName)
                           throws java.security.NoSuchAlgorithmException
Gets the ticket keys for en- or decrypting a ticket.

If keyName is not null this method searches for a TicketKeyBag based on the key name. In this case this method is called when the server has to decrypt a session ticket received from the client within a SessionTicket extension.
If keyName is null this method gets the active TicketKeyBag for encrypting and integrity protecting a session ticket when sending it to the client within a NewSessionTicket handshake message.

Specified by:
getTicketKeys in class TicketKeysManager
Parameters:
keyName - the name of the key bag, if null get the active ticket keys
Returns:
the AES and MAC keys used for ticket en/decryption and MAC verification, respectively; or null if no keys (for the given key name) are available
Throws:
java.security.NoSuchAlgorithmException

clone

public java.lang.Object clone()
Returns a clone of this DefaultTicketKeysManager.

Overrides:
clone in class TicketKeysManager
Returns:
a clone of this DefaultTicketKeysManager

This Javadoc may contain text parts from text parts from IETF Internet Standard specifications (see copyright note).

iSaSiLk 5.104, (c) 2002 IAIK, (c) 2003 - 2015 SIC