Overview  Package   Class  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

iaik.security.ssl.chb
Class TLSServerEndPointChannelBinding

java.lang.Object
  extended by iaik.security.ssl.chb.ChannelBinding
      extended by iaik.security.ssl.chb.TLSServerEndPointChannelBinding
All Implemented Interfaces:
java.lang.Cloneable
public class TLSServerEndPointChannelBinding
extends ChannelBinding

This class implements the tls-server-end-point channel binding according to RFC 5929.

RFC 5929 specifies the tls-server-end-point channel binding as hash value calculated from the encoded server certificate.

An application that is interested to capture the tls-server-end-point channel binding value has to announce its interest by adding a ChannelBindings containing the TLSServerEndPointChannelBinding to the SSLContext object, e.g.: 

 ChannelBindings channelBindings = new ChannelBindings();
 channelBindings.addChannelBinding(new TLSServerEndPointChannelBinding());
 context.setChannelBindings(channelBindings);
After having completed the handshake the tls-server-end-point channel binding value can be obtained from the SSLSocket: 
 ChannelBindings chBndgs = socket.getChannelBindings();
 if (chBndgs != null) {
   TLSServerEndPointChannelBinding tlsServerEndPoint = (TLSServerEndPointChannelBinding)chBndgs.getChannelBinding(TLSServerEndPointChannelBinding.TYPE);
   if (tlsServerEndPoint != null) {
     System.out.println("tls-server-end-point: " + Util.toString(tlsServerEndPoint.getData()));
   }
 }

See Also:
ChannelBinding, ChannelBindings, ChannelBindingType

Field Summary
static ChannelBindingType TYPE
           
 
Constructor Summary
TLSServerEndPointChannelBinding()
          Default constructor.
TLSServerEndPointChannelBinding(java.security.cert.X509Certificate serverCert, byte[] data)
          Creates a TLSServerEndPointChannelBinding object for the given server certificate and hash of the encoded certificate.
 
Method Summary
 java.security.cert.X509Certificate getServerCert()
          Gets the server certificate.
 
Methods inherited from class iaik.security.ssl.chb.ChannelBinding
clone, equals, getChannelBindingType, getData, getName, getType, hashCode, toString, toString
 
Methods inherited from class java.lang.Object
finalize, getClass, notify, notifyAll, wait, wait, wait
 

Field Detail

TYPE

public static final ChannelBindingType TYPE
Constructor Detail

TLSServerEndPointChannelBinding

public TLSServerEndPointChannelBinding()
Default constructor.

TLSServerEndPointChannelBinding

public TLSServerEndPointChannelBinding(java.security.cert.X509Certificate serverCert,
                                       byte[] data)
Creates a TLSServerEndPointChannelBinding object for the given server certificate and hash of the encoded certificate.

Parameters:
serverCert - the server certificate
data - the hash of the encoded certificate
Method Detail

getServerCert

public java.security.cert.X509Certificate getServerCert()
Gets the server certificate.

Returns:
the server certificate or null if the server certificate is not available
Overview  Package   Class  Tree  Deprecated  Index  Help 
This Javadoc may contain text parts from text parts from IETF Internet Standard specifications (see copyright note).
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
iSaSiLk 6.0, (c) 2002 IAIK, (c) 2003 - 2015 SIC