| Package | Description |
|---|---|
| com.entrust.toolkit |
Contains various high-level classes that provide Toolkit JCA cryptographic provider initialization,
an Entrust User representation, a key/certificate source, a certificate set representation,
JNI initialization capabilities, PKCS #7 encoding and decoding, CMS and PKCS#7 User related
utilities, transaction counting, and an XML trust manager.
|
| com.entrust.toolkit.archive |
Contains classes for reading and writing files in the legacy Entrust Archive format.
|
| com.entrust.toolkit.credentials |
Contains classes the enable creation, recovery, reading, and writing of
digital identities using a
variety of key sources, classes for implementing the Toolkit's KeyStore
capabilities, and classes to support integration with a Smart Card
Management System.
|
| com.entrust.toolkit.roaming |
Contains Toolkit classes that support SSL and TLS communication with
Entrust Authority™ Roaming Server (formerly Entrust/Roaming Server).
|
| com.entrust.toolkit.x509.directory |
Contains LDAP Directory implementations and various supporting classes.
|
| com.entrust.toolkit.x509.jsse |
Contains classes that implement the Java Secure Sockets Extension
(JSSE).
|
| com.entrust.toolkit.xencrypt.core |
Contains classes used to encrypt and decrypt XML elements and sets of
XML elements.
|
| iaik.security.smime | |
| iaik.smime |
| Modifier and Type | Method and Description |
|---|---|
void |
User.blockELILogout()
Deprecated.
since 8.0; There is no longer a need to maintain this feature as
the Entrust Login Interface has been discontinued. This method will be removed in a
future release.
|
void |
User.changePassword(SecureStringBuffer oldPassword,
SecureStringBuffer newPassword)
Changes the password protecting the Digital Identity.
|
void |
User.completeUserExport(LdapDirectory directory,
ManagerTransport managerTransport)
Completes a user export operation.
|
void |
User.doRequiredKeyManagement()
Does all required key management for a user.
|
boolean |
User.encryptionKeyUpdateRequired()
Determines whether the user's encryption/decryption key/certificate needs
to be updated.
|
X509Certificate |
User.getCaCertificate()
Returns the Certification Authority (CA) certificate stored in the credentials
if the user is logged in.
|
X509Certificate[] |
KeyAndCertContainer.getCaCertificateChain()
Returns an array of CA certificates forming a chain to the user's root
CA.
|
X509Certificate[] |
User.getCaCertificateChain()
Returns an array of CA certificates forming a chain to the user's root
CA.
|
CollectionCS |
KeyAndCertContainer.getCertificateStore()
Returns the main certificate store used for certificate validation.
|
CollectionCS |
User.getCertificateStore()
Returns the main certificate store used for certificate validation.
|
ValidationInfo |
User.getCertVerifier()
Returns the object that validates certificates for this user.
|
Name[] |
User.getDecryptionIssuers()
Returns the history of the decryption key issuers.
|
java.security.PrivateKey |
User.getDecryptionKey()
Returns the latest decryption private key stored in the credentials.
|
java.security.PrivateKey |
KeyAndCertContainer.getDecryptionKey(Name issuer,
java.lang.String serialNumber)
Returns the decryption private key and serial number for the given issuer.
|
java.security.PrivateKey |
KeyAndCertificateSource.getDecryptionKey(Name issuer,
java.lang.String serialNumber)
Convienance method for returning the private key that matches the given issuer DN and serial
number.
|
java.security.PrivateKey |
User.getDecryptionKey(Name issuer,
java.lang.String serialNumber)
Returns the decryption private key and serial number for the given issuer.
|
java.security.PrivateKey[] |
User.getDecryptionKeys()
Returns the decryption keys stored in the credentials.
|
java.lang.String[] |
User.getDecryptionSerialNumbers()
Returns the history of the decryption key serial numbers.
|
X509Certificate |
KeyAndCertContainer.getEncryptionCertificate()
Returns the encryption certificate.
|
X509Certificate |
User.getEncryptionCertificate()
Returns the user's encryption certificate.
|
ExtensionTester |
User.getExtensionTester()
Returns the extension tester used for certificate validation.
|
java.lang.String |
User.getOption(java.lang.String optionName)
Returns the option Value that corresponds to the provided option Name if
one exists; otherwise
null is returned. |
java.util.Date |
User.getPasswordExpiryDate()
Returns the date/time at which the user's password expires.
|
static java.lang.Object[] |
CMSUtil.getRecipientDecryptionKey(User user,
RecipientInfo[] recipients)
Finds the user's decryption key that can be used to decrypt a message that
contains the indicated recipient information.
|
static java.lang.Object[] |
PKCS7Util.getRecipientDecryptionKey(User user,
RecipientInfo[] recipients)
Finds the user's decryption key that can be used to decrypt a message that
contains the indicated recipient information.
|
CollectionRS |
User.getRevocationStore()
Returns the main revocation store used for certificate validation.
|
X509Certificate |
User.getRootCaCertificate()
Returns the top-level trusted root CA certificate for users in a CA
hierarchy.
|
java.security.PrivateKey |
KeyAndCertContainer.getSigningKey()
Returns the signing key stored in the KeyAndCertContainer
|
java.security.PrivateKey |
User.getSigningKey()
Returns the latest signing key stored in the credentials.
|
X509Certificate |
User.getUserCertificate(Name issuer,
java.math.BigInteger serialNumber)
Returns the user's certificate that corresponds to the specified issuer
DN and serial number.
|
X509Certificate[] |
User.getUserCertificates()
Returns all the user's current certificates (excludes superseded
certificates).
|
X509Certificate[] |
User.getUserCertificates(boolean includedSuperseded)
Returns all the user's certificates (includes superseded certificates)
|
X509Certificate[] |
User.getUserCertificates(KeyUsage keyUsage)
Returns the user's certificates that can be used for purposes indicated
by the key usage provided.
|
X509Certificate[] |
User.getUserCertificatesByExactKeyUsage(KeyUsage keyUsage)
Returns the user's certificates that can ONLY be used for purposes indicated
by the key usage provided.
|
Name |
User.getUserDN()
Returns the user's distinguished name (DN).
|
java.security.PrivateKey |
User.getUserPrivateKey(Name issuer,
java.math.BigInteger serialNumber)
Returns the user's private key that corresponds to the specified certificate
issuer and serial number.
|
java.security.PrivateKey |
User.getUserPrivateKey(X509Certificate certificate)
Returns the user's private key that corresponds to the specified
certificate.
|
X509Certificate |
KeyAndCertContainer.getVerificationCertificate()
Returns the verification certificate.
|
X509Certificate |
User.getVerificationCertificate()
Returns the user's verification certificate.
|
boolean |
User.isDuplicatePassword(SecureStringBuffer password)
This method may be used to determine if the supplied password
is contained in the User's password history.
|
boolean |
User.keyUpdateRequired()
Determines whether any of the user's keys/certificates need to be updated.
|
boolean |
User.keyUpdateRequired(X509Certificate certificate)
Determines whether the user's key/certificate that corresponds to the
specified certificate needs to be updated.
|
X509Certificate[] |
User.keyUpdatesRequired()
Determines whether any of the user's keys/certificates need to be updated.
|
void |
Trustmanager.load(User user)
Deprecated.
use the
Trustmanager(KeyAndCertificateSource source) constructor instead. |
void |
User.logout()
Logs out a user.
|
void |
User.requireCRL(boolean required)
Determines whether certificate validation fails when no CRL can be found.
|
boolean |
User.signingKeyUpdateRequired()
Determines whether the user's signing/verification key/certificate needs to
be updated.
|
void |
User.unblockELILogout()
Deprecated.
since 8.0; There is no longer a need to maintain this feature as
the Entrust Login Interface has been discontinued. This method will be removed in a
future release.
|
void |
User.updateAllKeys()
Updates all the user's keys/certificates, which HAVE NOT been superseded.
|
boolean |
User.updateEncryptionKeys()
Attempts to update the user's encryption/decryption key/certificate.
|
boolean |
User.updateSigningKeys()
Attempts to update the user's signing/verification key/certificate.
|
void |
User.updateUserKeys(X509Certificate[] certificates)
Updates the user's keys/certificates that correspond to the indicated
certificates, which MUST NOT have been superseded.
|
X509Certificate[] |
User.validate(X509Certificate certificate)
Validates an X.509 certificate.
|
void |
User.write()
Writes a user's credentials to the
CredentialWriter
that was set in setCredentialWriter(). |
static void |
MacEpfOptionWriter.writeOption(User user,
java.lang.String optionName,
java.lang.String optionValue) |
| Constructor and Description |
|---|
KeyAndCertificateSource(User user)
Create a new
KeyAndCertificateSource object. |
Trustmanager(User user)
Deprecated.
use the
Trustmanager(KeyAndCertificateSource source) constructor instead.
You could construct that KeyAndCertificateSource from a User. |
| Constructor and Description |
|---|
ArchiveCreator(User user,
java.io.File toProtect,
PemOptions pemOptions,
LargeFileOptions largeFileOptions,
java.io.OutputStream outStream)
This constructor provides support for protection of large files (larger
than available memory) with Entrust Archive format.
|
ArchiveCreator(User user,
java.io.File toProtect,
PemOptions options,
java.io.OutputStream outStream)
This constructor only supports protection of small files (smaller than
available memory) with Entrust Archive format.
|
PemOutputStream(User user,
PemOptions options,
java.io.OutputStream outStream)
Create a PemOutputStream that does not write the header.
|
PemOutputStream(User user,
PemOptions options,
java.io.OutputStream outStream,
java.io.OutputStream headerStream)
Create a PemOutputStream that writes the protected data and header
to separate streams.
|
| Modifier and Type | Method and Description |
|---|---|
void |
RoamingCredentialReader.deregister()
Requests the Roaming Server remove all of the User's roaming files from
the Directory.
|
CollectionCS |
EntrustKeyStore.getCertStore()
Retrieves the user's certificate store.
|
GeneralMessageInfo |
PKIXCMPUtils.getGeneralMessageInfo(User user)
This API performs a PKIX general message transaction using the supplied
User object. |
| Constructor and Description |
|---|
UALCreator(User user,
SecureStringBuffer password)
Instantiates a
UALCreator using an already logged in user. |
| Modifier and Type | Method and Description |
|---|---|
void |
RoamingUser.changePassword(SecureStringBuffer oldPassword,
SecureStringBuffer newPassword)
Deprecated.
As of 7.0, use
User.changePassword() with a
RoamingCredentialWriter object set to perform this task. |
void |
RoamingUser.deregister()
Deprecated.
as of 7.0, the method
RoamingCredentialReader.deregister() should
be used to perform this function. |
boolean |
RoamingUser.encryptionKeyUpdateRequired()
Deprecated.
As of 7.0, use a
RoamingCredentialReader and
RoamingCredentialWriter object with a User
object for key management tasks. |
byte[] |
RoamingUser.getProfile()
Returns the user's profile as a
byte array. |
void |
RoamingUser.logout()
Logs out the user and deletes all user-specific information.
|
boolean |
RoamingUser.signingKeyUpdateRequired()
Deprecated.
As of 7.0, use a
RoamingCredentialReader and
RoamingCredentialWriter object with a User
object for key management tasks. |
void |
RoamingUser.updateAnother(java.lang.String subjectDN,
EntrustFiles files)
Updates another User's files in the Directory, or places them
in the Directory if they do not already exist.
|
boolean |
RoamingUser.updateEncryptionKeys()
Deprecated.
As of 7.0, use a
RoamingCredentialReader and
RoamingCredentialWriter object with a User
object, and let the User perform key management automtically. |
boolean |
RoamingUser.updateSigningKeys()
Deprecated.
As of 7.0, use a
RoamingCredentialReader and
RoamingCredentialWriter object with a User
object, and let the User perform key management automtically. |
| Constructor and Description |
|---|
RoamingFileUpdater(RoamingConfiguration configuration,
User user)
Creates a
RoamingFileUpdater object when a logged in
User object is available. |
| Modifier and Type | Method and Description |
|---|---|
void |
SMProxyDirectory.setClientCredentials(User user)
Sets the client credentials using the provided
User object. |
| Constructor and Description |
|---|
LDAPSTrustManager(KeyAndCertContainer keyAndCertContainer)
Creates a
LDAPSTrustManager instance that uses an
Entrust key/certificate container's certificate validation mechanism for
trust decisions. |
| Constructor and Description |
|---|
JSSEX509KeyManager(User user)
Creates a
JSSEX509KeyManager instance that uses an
Entrust User object as the key store. |
JSSEX509TrustManager(KeyAndCertContainer keyAndCertContainer)
Creates a
JSSEX509TrustManager instance that uses an
Entrust key/certificate container's certificate validation mechanism for
trust decisions. |
JSSEX509TrustManager(User user)
Creates a
JSSEX509TrustManager instance that uses an
Entrust user's certificate validation mechanism for trust decisions. |
| Modifier and Type | Method and Description |
|---|---|
void |
Encryptor.setTrustmanager(User validator)
Deprecated.
use setTrustmanager(
Trustmanager trustmanager) instead. |
| Modifier and Type | Method and Description |
|---|---|
void |
EncryptedContent.decryptSymmetricKey(User user)
Locates one of user's decryption keys that is appropriate for decrypting one
of the content-encryption keys, decrypts the content-encryption key, and
prepares the cipher for decrypting the encrypted content.
|
void |
SMimeEncrypted.decryptSymmetricKey(User user)
Locates one of user's decryption keys that is appropriate for decrypting one
of the content-encryption keys, decrypts the content-encryption key, and
prepares the cipher for decrypting the encrypted content.
|
| Modifier and Type | Method and Description |
|---|---|
int |
EncryptedContent.decryptSymmetricKey(User user)
Locates one of user's decryption keys that is appropriate for decrypting one
of the content-encryption keys, decrypts the content-encryption key, and
prepares the cipher for decrypting the encrypted content.
|
int |
SMimeEncrypted.decryptSymmetricKey(User user)
Locates one of user's decryption keys that is appropriate for decrypting one
of the content-encryption keys, decrypts the content-encryption key, and
prepares the cipher for decrypting the encrypted content.
|