Package eu.europa.esig.dss.validation.process.bbb.sav.checks

Class CryptographicConstraintWrapper

java.lang.Object

eu.europa.esig.dss.validation.process.bbb.sav.checks.CryptographicConstraintWrapper

public class CryptographicConstraintWrapper
extends Object

The wrapper for cryptographic information retrieved from a validation policy

Constructor Summary

Constructors

Constructor	Description
CryptographicConstraintWrapper(CryptographicConstraint constraint)	Default constructor

Method Summary

Modifier and Type	Method	Description
LevelConstraint	getAcceptableDigestAlgoLevel()	Returns a level constraint for AcceptableDigestAlgo constraint if present, the global getLevel otherwise.
LevelConstraint	getAcceptableEncryptionAlgoLevel()	Returns a level constraint for AcceptableEncryptionAlgo constraint if present, the global getLevel otherwise.
Level	getAlgoExpirationDateAfterUpdateLevel()	Returns a level constraint for AlgoExpirationDate constraint if present, the global getLevel otherwise.
LevelConstraint	getAlgoExpirationDateLevel()	Returns a level constraint for AlgoExpirationDate constraint if present, the global getLevel otherwise.
CryptographicConstraint	getConstraint()	Gets the constraint
Date	getCryptographicSuiteUpdateDate()	Returns a date of the update of the cryptographic suites within the validation policy
Date	getExpirationDate(DigestAlgorithm digestAlgorithm)	Gets an expiration date for the digest algorithm with name digestAlgoToSearch.
Date	getExpirationDate(EncryptionAlgorithm encryptionAlgorithm, Integer keySize)	Gets an expiration date for the encryption algorithm with name algoToSearch and keyLength.
Date	getExpirationDate(EncryptionAlgorithm encryptionAlgorithm, String keyLength)	Gets an expiration date for the encryption algorithm with name algoToSearch and keyLength.
Level	getLevel()	Returns the global validation level of the cryptographic constraints for the current token
LevelConstraint	getMiniPublicKeySizeLevel()	Returns a level constraint for MiniPublicKeySize constraint if present, the global getLevel otherwise.
List<DigestAlgorithm>	getReliableDigestAlgorithmsAtTime(Date validationTime)	This method returns a list of reliable DigestAlgorithm according to the current validation policy at the given validation time
Map<EncryptionAlgorithm,Integer>	getReliableEncryptionAlgorithmsWithMinimalKeyLengthAtTime(Date validationTime)	This method returns a map between reliable EncryptionAlgorithm according to the current validation policy and their minimal accepted key length at the given time.
boolean	isDigestAlgorithmReliable(DigestAlgorithm digestAlgorithm)	Checks if the given DigestAlgorithm is reliable (acceptable)
boolean	isEncryptionAlgorithmReliable(EncryptionAlgorithm encryptionAlgorithm)	Checks if the given EncryptionAlgorithm is reliable (acceptable)
boolean	isEncryptionAlgorithmWithKeySizeReliable(EncryptionAlgorithm encryptionAlgorithm, Integer keySize)	Checks if the {code keyLength} for EncryptionAlgorithm is reliable (acceptable)
boolean	isEncryptionAlgorithmWithKeySizeReliable(EncryptionAlgorithm encryptionAlgorithm, String keyLength)	Checks if the {code keyLength} for EncryptionAlgorithm is reliable (acceptable)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

CryptographicConstraintWrapper

public CryptographicConstraintWrapper(CryptographicConstraint constraint)

Default constructor

Parameters:

constraint - CryptographicConstraint

Method Details

isEncryptionAlgorithmReliable

public boolean isEncryptionAlgorithmReliable(EncryptionAlgorithm encryptionAlgorithm)

Checks if the given EncryptionAlgorithm is reliable (acceptable)

Parameters:

encryptionAlgorithm - EncryptionAlgorithm to check

Returns:

TRUE if the algorithm is reliable, FALSE otherwise

isDigestAlgorithmReliable

public boolean isDigestAlgorithmReliable(DigestAlgorithm digestAlgorithm)

Checks if the given DigestAlgorithm is reliable (acceptable)

Parameters:

digestAlgorithm - DigestAlgorithm to check

Returns:

TRUE if the algorithm is reliable, FALSE otherwise

isEncryptionAlgorithmWithKeySizeReliable

public boolean isEncryptionAlgorithmWithKeySizeReliable(EncryptionAlgorithm encryptionAlgorithm,
 String keyLength)

Checks if the {code keyLength} for EncryptionAlgorithm is reliable (acceptable)

Parameters:

encryptionAlgorithm - EncryptionAlgorithm to check key length for

keyLength - String the key length to be checked

Returns:

TRUE if the key length for the algorithm is reliable, FALSE otherwise

isEncryptionAlgorithmWithKeySizeReliable

public boolean isEncryptionAlgorithmWithKeySizeReliable(EncryptionAlgorithm encryptionAlgorithm,
 Integer keySize)

Checks if the {code keyLength} for EncryptionAlgorithm is reliable (acceptable)

Parameters:

encryptionAlgorithm - EncryptionAlgorithm to check key length for

keySize - Integer the key length to be checked

Returns:

TRUE if the key length for the algorithm is reliable, FALSE otherwise

getExpirationDate

public Date getExpirationDate(EncryptionAlgorithm encryptionAlgorithm,
 String keyLength)

Gets an expiration date for the encryption algorithm with name algoToSearch and keyLength. Returns null if the expiration date is not defined for the algorithm.

Parameters:

encryptionAlgorithm - EncryptionAlgorithm to get expiration date for

keyLength - String key length used to sign the token

Returns:

Date

getExpirationDate

public Date getExpirationDate(EncryptionAlgorithm encryptionAlgorithm,
 Integer keySize)

Gets an expiration date for the encryption algorithm with name algoToSearch and keyLength. Returns null if the expiration date is not defined for the algorithm.

Parameters:

encryptionAlgorithm - EncryptionAlgorithm to get expiration date for

keySize - Integer key length used to sign the token

Returns:

Date

getExpirationDate

public Date getExpirationDate(DigestAlgorithm digestAlgorithm)

Gets an expiration date for the digest algorithm with name digestAlgoToSearch. Returns null if the expiration date is not defined for the algorithm.

Parameters:

digestAlgorithm - DigestAlgorithm the algorithm to get expiration date for

Returns:

Date

getReliableDigestAlgorithmsAtTime

public List<DigestAlgorithm> getReliableDigestAlgorithmsAtTime(Date validationTime)

This method returns a list of reliable DigestAlgorithm according to the current validation policy at the given validation time

Parameters:

validationTime - Date to verify against

Returns:

a list of DigestAlgorithms

getReliableEncryptionAlgorithmsWithMinimalKeyLengthAtTime

public Map<EncryptionAlgorithm,Integer> getReliableEncryptionAlgorithmsWithMinimalKeyLengthAtTime(Date validationTime)

This method returns a map between reliable EncryptionAlgorithm according to the current validation policy and their minimal accepted key length at the given time.

Parameters:

validationTime - Date to verify against

Returns:

a map of EncryptionAlgorithms or their minimal accepted key length

getLevel

public Level getLevel()

Returns the global validation level of the cryptographic constraints for the current token

Returns:

Level

getAcceptableEncryptionAlgoLevel

public LevelConstraint getAcceptableEncryptionAlgoLevel()

Returns a level constraint for AcceptableEncryptionAlgo constraint if present, the global getLevel otherwise.

Returns:

LevelConstraint

getMiniPublicKeySizeLevel

public LevelConstraint getMiniPublicKeySizeLevel()

Returns a level constraint for MiniPublicKeySize constraint if present, the global getLevel otherwise.

Returns:

LevelConstraint

getAcceptableDigestAlgoLevel

public LevelConstraint getAcceptableDigestAlgoLevel()

Returns a level constraint for AcceptableDigestAlgo constraint if present, the global getLevel otherwise.

Returns:

LevelConstraint

getAlgoExpirationDateLevel

public LevelConstraint getAlgoExpirationDateLevel()

Returns a level constraint for AlgoExpirationDate constraint if present, the global getLevel otherwise.

Returns:

LevelConstraint

getCryptographicSuiteUpdateDate

public Date getCryptographicSuiteUpdateDate()

Returns a date of the update of the cryptographic suites within the validation policy

Returns:

Date

getAlgoExpirationDateAfterUpdateLevel

public Level getAlgoExpirationDateAfterUpdateLevel()

Returns a level constraint for AlgoExpirationDate constraint if present, the global getLevel otherwise.

Returns:

Level

getConstraint

public CryptographicConstraint getConstraint()

Gets the constraint

Returns:

CryptographicConstraint