Overview  Package   Class  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

iaik.security.ssl
Class TLS13Certificate

java.lang.Object
  extended by iaik.security.ssl.SSLCertificate
      extended by iaik.security.ssl.TLS13Certificate

public class TLS13Certificate
extends SSLCertificate

TLS 1.3 Certificate handshake message.

A Certificate message may be sent from the server to the client if the server authenticating with a certificate or from the client to the server if the server has requested authentication of the client.

For each certificate of the client/server certificate chain the TLS 1.3 certificate message contains a CertificateEntry element holding of a raw public key or X.509 certificate and an optional list of extensions (OCSP Status and the SignedCertificateTimestamp), see RFC 8446: 

      enum {
        X509(0),
        RawPublicKey(2),
        (255)
    } CertificateType;

    struct {
        select (certificate_type) {
            case RawPublicKey:
              // From RFC 7250 ASN.1_subjectPublicKeyInfo 
              opaque ASN1_subjectPublicKeyInfo<1..2^24-1>;

            case X509:
              opaque cert_data<1..2^24-1>;
        };
        Extension extensions<0..2^16-1>;
    } CertificateEntry;

    struct {
        opaque certificate_request_context<0..2^8-1>;
        CertificateEntry certificate_list<0..2^24-1>;
    } Certificate;

Nested Class Summary
static class TLS13Certificate.CertificateEntry
          TLS 1.3 CertificateEntry.
static class TLS13Certificate.X509CertificateEntry
          TLS 1.3 X.509 CertificateEntry.
 
Method Summary
 java.security.cert.X509Certificate[] getCertificateChain()
          Returns the certificate list within this Certificate.
 TLS13Certificate.CertificateEntry[] getCertificateEntries()
          Returns the certificate entries.
 byte[] getCertificateRequestContext()
          Gets the certificate_request_context.
 java.lang.String toString()
          Returns a string representation of this SSLCertificate.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
 

Method Detail

getCertificateRequestContext

public byte[] getCertificateRequestContext()
Gets the certificate_request_context.

Returns:
the certificate_request_context

getCertificateEntries

public TLS13Certificate.CertificateEntry[] getCertificateEntries()
Returns the certificate entries.

Returns:
the certificate entries

getCertificateChain

public java.security.cert.X509Certificate[] getCertificateChain()
Returns the certificate list within this Certificate.

Overrides:
getCertificateChain in class SSLCertificate
Returns:
the certificate list

toString

public java.lang.String toString()
Returns a string representation of this SSLCertificate.

Overrides:
toString in class SSLCertificate
Returns:
a string representation
Overview  Package   Class  Tree  Deprecated  Index  Help 
This Javadoc may contain text parts from text parts from IETF Internet Standard specifications (see copyright note).
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
iSaSiLk 6.0, (c) 2002 IAIK, (c) 2003 - 2015 SIC