Class CertStoreService

java.lang.Object

br.ufsc.labsec.validationDataServices.services.CertStoreService

public class CertStoreService
extends Object

Constructor Summary

Constructors

Constructor	Description
CertStoreService()

Method Summary

Modifier and Type	Method	Description
static CertStore	createCertStore(CertPath certPath, SignatureObject signature, Set<TrustAnchor> trustAnchors, Date timeReference, CRLRevocationCache revocationCache, List<CRLRevocationInformation> revocationInformations)	Cria o conjunto de certificados na cadeia de certificação e LCRs do certificado a partir de um caminho de certificados construído
static CertStore	createCertStore(List<? extends Certificate> certificates, SignatureObject signature, Date timeReference, CRLRevocationCache revocationCache, List<CRLRevocationInformation> revocationInformations)	Cria o conjunto de certificados na cadeia de certificação e LCRs do certificado a partir de um caminho de certificados construído
static CertStore	createCertStoreVariable(X509Certificate x509Certificate, Set<TrustAnchor> trustAnchors, CertificateCollectionCache cache, List<CertificateCollection> collections, Map<URL, List<X509Certificate>> aiaCache)	Cria o conjunto de certificados na cadeia de certificação e LCRs do certificado dado
static Optional<X509CRL>	getCRLFromCertificateAndIssuer(Object certificate, Object issuer, CRLRevocationCache revocationCache, List<CRLRevocationInformation> revocationInformations, SignatureObject... signatureObject)
static Optional<X509CRL>	getCRLFromCertificateAndIssuer(Object certificate, Object issuer, Date timeReference, CRLRevocationCache revocationCache, List<CRLRevocationInformation> revocationInformations, SignatureObject... signatureObjects)
static Optional<X509CRL>	getCRLFromCertificateAndSelector(Object certificate, AbstractSignatureIdentityInformation.CRLSelector selector, Date timeReference, CRLRevocationCache revocationCache, List<CRLRevocationInformation> revocationInformations, SignatureObject... signatureObject)
static Optional<X509CRL>	getCRLFromCertificateWithoutIssuer(Certificate certificate, Date timeReference, CRLRevocationCache revocationCache, List<CRLRevocationInformation> revocationInformations, SignatureObject... signatureObject)
static Optional<X509CRL>	getCRLFromSelector(AbstractSignatureIdentityInformation.CRLSelector selector, Date timeReference, List<CRLRevocationInformation> revocationInformations, SignatureObject... signatureObjects)
static Optional<Certificate>	getCRLIssuer(Object certificate, SignatureObject signature, Set<TrustAnchor> trustAnchors, CRLRevocationCache revocationCache, List<CRLRevocationInformation> revocationInformations, CertificateCollection collection, List<CertificateCollection> collections, CertificateCollectionCache cache, Map<URL, List<X509Certificate>> aiaCache)
static Optional<Certificate>	getCRLIssuerCertificate(org.bouncycastle.cert.X509AttributeCertificateHolder certificate, X509CRL crl, Certificate issuer, Set<TrustAnchor> trustAnchor, List<CertificateCollection> certificateCollections, CertificateCollectionCache certificateCache, Map<URL, List<X509Certificate>> aiaCache, SignatureObject... signatureObjects)
static List<X509CRL>	getCRLsFromSelector(AbstractSignatureIdentityInformation.CRLSelector selector, Date timeReference, List<CRLRevocationInformation> revocationInformations, SignatureObject... signatureObjects)
static Optional<Certificate>	getIssuerCertificate(SignatureObject signatureObject, Object certificate, List<CertificateCollection> collections, CertificateCollectionCache cache, Map<URL, List<X509Certificate>> aiaCache, Set<TrustAnchor> trustAnchors)
static AbstractSignatureIdentityInformation.CRLSelector	selectFromPublicKey(Object issuer)

Methods inherited from class Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

CertStoreService

public CertStoreService()

Method Details

createCertStore

public static CertStore createCertStore(List<? extends Certificate> certificates,
 SignatureObject signature,
 Date timeReference,
 CRLRevocationCache revocationCache,
 List<CRLRevocationInformation> revocationInformations)
                                 throws InvalidAlgorithmParameterException,
NoSuchAlgorithmException

Cria o conjunto de certificados na cadeia de certificação e LCRs do certificado a partir de um caminho de certificados construído

Parameters:

certificates - Lista de certificados do caminho de certificação

Returns:

O conjunto de certificados e CRLs em CertStore

Throws:

InvalidAlgorithmParameterException - Exceção em caso de algoritmo inválido

NoSuchAlgorithmException - Exceção em caso de algoritmo inexistente

createCertStore

public static CertStore createCertStore(CertPath certPath,
 SignatureObject signature,
 Set<TrustAnchor> trustAnchors,
 Date timeReference,
 CRLRevocationCache revocationCache,
 List<CRLRevocationInformation> revocationInformations)
                                 throws InvalidAlgorithmParameterException,
NoSuchAlgorithmException

Cria o conjunto de certificados na cadeia de certificação e LCRs do certificado a partir de um caminho de certificados construído

Parameters:

certPath - O caminho de certificados que se deseja-se obter o conjunto

Returns:

O conjunto de certificados e CRLs em CertStore

Throws:

InvalidAlgorithmParameterException - Exceção em caso de algoritmo inválido

NoSuchAlgorithmException - Exceção em caso de algoritmo inexistente

createCertStoreVariable

public static CertStore createCertStoreVariable(X509Certificate x509Certificate,
 Set<TrustAnchor> trustAnchors,
 CertificateCollectionCache cache,
 List<CertificateCollection> collections,
 Map<URL, List<X509Certificate>> aiaCache)

Cria o conjunto de certificados na cadeia de certificação e LCRs do certificado dado

Parameters:

x509Certificate - O certificado no qual será construído o CertStore

trustAnchors - O conjunto de âncoras de confiança

Returns:

O conjunto de certificados criado

selectFromPublicKey

public static AbstractSignatureIdentityInformation.CRLSelector selectFromPublicKey(Object issuer)
                                                                            throws CertificateException

Throws:

CertificateException

getCRLFromCertificateAndIssuer

public static Optional<X509CRL> getCRLFromCertificateAndIssuer(Object certificate,
 Object issuer,
 Date timeReference,
 CRLRevocationCache revocationCache,
 List<CRLRevocationInformation> revocationInformations,
 SignatureObject... signatureObjects)
                                                        throws CRLException

Throws:

CRLException

getCRLFromCertificateAndSelector

public static Optional<X509CRL> getCRLFromCertificateAndSelector(Object certificate,
 AbstractSignatureIdentityInformation.CRLSelector selector,
 Date timeReference,
 CRLRevocationCache revocationCache,
 List<CRLRevocationInformation> revocationInformations,
 SignatureObject... signatureObject)

getCRLFromSelector

public static Optional<X509CRL> getCRLFromSelector(AbstractSignatureIdentityInformation.CRLSelector selector,
 Date timeReference,
 List<CRLRevocationInformation> revocationInformations,
 SignatureObject... signatureObjects)

getCRLsFromSelector

public static List<X509CRL> getCRLsFromSelector(AbstractSignatureIdentityInformation.CRLSelector selector,
 Date timeReference,
 List<CRLRevocationInformation> revocationInformations,
 SignatureObject... signatureObjects)

getCRLFromCertificateWithoutIssuer

public static Optional<X509CRL> getCRLFromCertificateWithoutIssuer(Certificate certificate,
 Date timeReference,
 CRLRevocationCache revocationCache,
 List<CRLRevocationInformation> revocationInformations,
 SignatureObject... signatureObject)
                                                            throws CRLException

Throws:

CRLException

getIssuerCertificate

public static Optional<Certificate> getIssuerCertificate(SignatureObject signatureObject,
 Object certificate,
 List<CertificateCollection> collections,
 CertificateCollectionCache cache,
 Map<URL, List<X509Certificate>> aiaCache,
 Set<TrustAnchor> trustAnchors)

getCRLFromCertificateAndIssuer

public static Optional<X509CRL> getCRLFromCertificateAndIssuer(Object certificate,
 Object issuer,
 CRLRevocationCache revocationCache,
 List<CRLRevocationInformation> revocationInformations,
 SignatureObject... signatureObject)
                                                        throws CRLException

Throws:

CRLException

getCRLIssuer

public static Optional<Certificate> getCRLIssuer(Object certificate,
 SignatureObject signature,
 Set<TrustAnchor> trustAnchors,
 CRLRevocationCache revocationCache,
 List<CRLRevocationInformation> revocationInformations,
 CertificateCollection collection,
 List<CertificateCollection> collections,
 CertificateCollectionCache cache,
 Map<URL, List<X509Certificate>> aiaCache)
                                          throws CRLException

Throws:

CRLException

getCRLIssuerCertificate

public static Optional<Certificate> getCRLIssuerCertificate(org.bouncycastle.cert.X509AttributeCertificateHolder certificate,
 X509CRL crl,
 Certificate issuer,
 Set<TrustAnchor> trustAnchor,
 List<CertificateCollection> certificateCollections,
 CertificateCollectionCache certificateCache,
 Map<URL, List<X509Certificate>> aiaCache,
 SignatureObject... signatureObjects)