Package org.eclipse.keypop.calypso.crypto.asymmetric.certificate.spi

Interface CaCertificateSpi

public interface CaCertificateSpi

SPI dedicated to Certification Authority (CA) certificate management.

Since:

0.2.0

Method Summary

Modifier and Type	Method	Description
CaCertificateContentSpi	checkCertificateAndGetContent(CaCertificateContentSpi issuerCertificateContent)	Verifies the certificate signature and other relevant fields, then returns the certificate content.
byte[]	getIssuerPublicKeyReference()	Retrieves the reference of the issuer's public key as a byte array.

Method Details

getIssuerPublicKeyReference

byte[] getIssuerPublicKeyReference()

Retrieves the reference of the issuer's public key as a byte array.

Returns:

A non-empty byte array.

Since:

0.2.0

checkCertificateAndGetContent

CaCertificateContentSpi checkCertificateAndGetContent(CaCertificateContentSpi issuerCertificateContent)
                                               throws CertificateValidationException,
AsymmetricCryptoException

Verifies the certificate signature and other relevant fields, then returns the certificate content.

This method performs a comprehensive validation of the certificate, including but not limited to checking the validity of the signature. It also verifies other essential fields of the certificate, such as the validity period, the issuer and subject details, and any relevant constraints or extensions. The method ensures the certificate is not only properly signed by the issuer but also conforms to the expected standards and requirements.

Parameters:

issuerCertificateContent - The issuer certificate content to be used for signature verification.

Returns:

A non-null reference.

Throws:

CertificateValidationException - If the certificate is invalid, expired, revoked, or fails any other validation checks.

AsymmetricCryptoException - If a technical error occurs during the cryptographic computations.

Since:

0.2.0