public abstract class JceKEKRecipient extends java.lang.Object implements KEKRecipient
| Modifier and Type | Field and Description |
|---|---|
protected EnvelopedDataHelper |
contentHelper |
protected EnvelopedDataHelper |
helper |
protected boolean |
validateKeySize |
| Constructor and Description |
|---|
JceKEKRecipient(javax.crypto.SecretKey recipientKey) |
| Modifier and Type | Method and Description |
|---|---|
protected java.security.Key |
extractSecretKey(org.bouncycastle.asn1.x509.AlgorithmIdentifier keyEncryptionAlgorithm,
org.bouncycastle.asn1.x509.AlgorithmIdentifier encryptedKeyAlgorithm,
byte[] encryptedContentEncryptionKey) |
JceKEKRecipient |
setContentProvider(java.security.Provider provider)
Set the provider to use for content processing.
|
JceKEKRecipient |
setContentProvider(java.lang.String providerName)
Set the provider to use for content processing.
|
JceKEKRecipient |
setKeySizeValidation(boolean doValidate)
Set validation of retrieved key sizes against the algorithm parameters for the encrypted key where possible - default is off.
|
JceKEKRecipient |
setProvider(java.security.Provider provider)
Set the provider to use for key recovery and content processing.
|
JceKEKRecipient |
setProvider(java.lang.String providerName)
Set the provider to use for key recovery and content processing.
|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitgetRecipientOperatorprotected EnvelopedDataHelper helper
protected EnvelopedDataHelper contentHelper
protected boolean validateKeySize
public JceKEKRecipient setProvider(java.security.Provider provider)
provider - provider to use.public JceKEKRecipient setProvider(java.lang.String providerName)
providerName - the name of the provider to use.public JceKEKRecipient setContentProvider(java.security.Provider provider)
provider - the provider to use.public JceKEKRecipient setContentProvider(java.lang.String providerName)
providerName - the name of the provider to use.public JceKEKRecipient setKeySizeValidation(boolean doValidate)
This setting will not have any affect if the encryption algorithm in the recipient does not specify a particular key size, or if the unwrapper is a HSM and the byte encoding of the unwrapped secret key is not available.
doValidate - true if unwrapped key's should be validated against the content encryption algorithm, false otherwise.protected java.security.Key extractSecretKey(org.bouncycastle.asn1.x509.AlgorithmIdentifier keyEncryptionAlgorithm,
org.bouncycastle.asn1.x509.AlgorithmIdentifier encryptedKeyAlgorithm,
byte[] encryptedContentEncryptionKey)
throws CMSException
CMSException