All Packages  Class Hierarchy  This Package  Previous  Next  Index

Interface semper.certificate.RCModuleInterface

public interface RCModuleInterface
This is the interface, that all RCModules should implement in order to provide registration, issuing and general handling of certificates via SEMPER.

Method Index

o getCertificate(ComPointAddress, Vector, long, Certificate)
After registration I can get certificates from a CA that accepts my registration.
o getKeyHashAlg()
Retrieves the algorithm for computing hash values of keys to be shown to the user.
o getTrustedPK(ComPointAddress, Vector)
Method for retrieving the public key of the CA.
o initRCmodule(boolean, String)
This function initialises the module.
o sendFilledTemplate(ComPointAddress, Vector, Template, CryptoKeyInfo)
Method for sending a template (or registration form) to the CA.
o templateRequest(ComPointAddress, Vector)
Method for getting a template (or registration form) from the CA.
o verifyCertificate(boolean, Certificate, CryptoKeyInfo)
Verify Certificates correctness.

Methods

o initRCmodule 
 public abstract void initRCmodule(boolean isCA,
                                   String myName) throws CertificateException
This function initialises the module. It is called when the manager is initialised.

Parameters:
isCA - indicates if the module is initialised for a CA (true corresponds to CA)
myName - is the name of the CA.
Throws: CertificateException
if the module for some reason could not be initialised
o verifyCertificate 
 public abstract boolean verifyCertificate(boolean policy,
                                           Certificate cert,
                                           CryptoKeyInfo trustedKey) throws CertificateException
Verify Certificates correctness. Should at least verify whether Certificates Signature is correct. The Certificate Manager will check whether Certificate is of correct type, not outdated, etc. If requested by the policy parameter the module will make an online verification (against directory). If not explicitly the module determines itself whether to make an on-line verification.

Parameters:
policy - is a boolean which indicates if on-line verification is required (true)
Certificate - cert that is to be checked.
if - trustedKey is not null the certificate should be verified against this key
Returns:
true if Certificate is signed correctly false if Signature doesn't match input.
Throws: CertificateException
if the verification could not be carried out
o getTrustedPK 
 public abstract CryptoKeyInfo getTrustedPK(ComPointAddress srvAddr,
                                            Vector options) throws CertificateException
Method for retrieving the public key of the CA.

Parameters:
srvAddr - is the address of the server, where the key will be retrieved.
options - is a placeholder for special options for the communication
Returns:
the retrieved public key (null is returned if the key could not be retrieved)
Throws: CertificateException
in case of errors in the modules
o templateRequest 
 public abstract Template templateRequest(ComPointAddress srvAddr,
                                          Vector options) throws CertificateException
Method for getting a template (or registration form) from the CA.

Parameters:
srvAddr - is the address of the server, where the key will be retrieved.
options - is a placeholder for special options for the communication
Returns:
the retrieved template (null is returned if a template could not be retrieved)
Throws: CertificateException
in case of errors in the module
o sendFilledTemplate 
 public abstract boolean sendFilledTemplate(ComPointAddress srvAddr,
                                            Vector options,
                                            Template templ,
                                            CryptoKeyInfo secKey) throws CertificateException
Method for sending a template (or registration form) to the CA. If necessary the secret key given as parameter can be used to form a proof that the user knows this key.

Parameters:
srvAddr - is the address of the server, where the key will be retrieved.
options - is a placeholder for special options for the communication
templ - is the filled out template
secKey - is the secret key corresponding to the public key to be registered
Returns:
true if the registration form was received.
Throws: CertificateException
in case of errors in the module
o getCertificate 
 public abstract RegistrationStatus getCertificate(ComPointAddress caAddr,
                                                   Vector options,
                                                   long serialNo,
                                                   Certificate certificate) throws CertificateException
After registration I can get certificates from a CA that accepts my registration. This services can be used to get a certificate from a CA (either my own or that another party). If the certificate is not issued a status message is returned.

Parameters:
caAddr - ComPointAddress of the CA-server.
options - my contain additional options for the module
serialNo - of the certificate
certificate - contains the certificate returned from the CA (may be null)
Throws: CertificateManException
if an error happened during the communication.
o getKeyHashAlg 
 public abstract HashingAlgorithm getKeyHashAlg()
Retrieves the algorithm for computing hash values of keys to be shown to the user. 

All Packages  Class Hierarchy  This Package  Previous  Next  Index