com.entrust.toolkit.security.provider

Class EntrustECDSA

java.lang.Object

java.security.SignatureSpi

java.security.Signature

com.entrust.toolkit.security.provider.EntrustECDSA

All Implemented Interfaces:

ExtendedSignature

Deprecated.

since 7.2 SP2; use EcdsaWithSha1Signature instead

public class EntrustECDSA
extends java.security.Signature
implements ExtendedSignature

EntrustECDSA is the ECDSA signature class that allows ECDSA signatures to be signed and verified.

Do not use this class directly — use the java.security.Signature class.

Field Summary

Fields

Modifier and Type	Field and Description
static ObjectID	ecdsa Deprecated. Object identifier for ecdsa is 1.2.840.10045.4
static ObjectID	ecdsaWithSHA1 Deprecated. Object identifier for ecdsaWithSHA1 is 1.2.840.10045.4.1

Fields inherited from class java.security.Signature

SIGN, state, UNINITIALIZED, VERIFY

Fields inherited from class java.security.SignatureSpi

appRandom

Constructor Summary

Constructors

Constructor and Description
EntrustECDSA() Deprecated. Default constructor.

Method Summary

Methods

Modifier and Type	Method and Description
protected java.lang.Object	engineGetParameter(java.lang.String param) Deprecated. Retrieves the value of the specified algorithm parameter.
protected void	engineInitSign(java.security.PrivateKey privateKey) Deprecated. Initializes this signature object with the specified private key for signing operations.
protected void	engineInitVerify(java.security.PublicKey publicKey) Deprecated. Initializes this signature object with the specified public key for verification operations.
protected void	engineSetParameter(java.security.spec.AlgorithmParameterSpec params) Deprecated. Initializes the signature engine with the specified parameter.
protected void	engineSetParameter(java.lang.String param, java.lang.Object value) Deprecated. Sets the specified algorithm parameter to the specified value.
protected byte[]	engineSign() Deprecated. Returns the signature byte array containing all of the updated data.
protected void	engineUpdate(byte b) Deprecated. Updates the data to be signed or verified using the specified byte.
protected void	engineUpdate(byte[] b, int off, int len) Deprecated. Updates the data to be signed or verified, using the specified array of bytes, starting at the specified offset.
protected boolean	engineVerify(byte[] sigBytes) Deprecated. Verifies the signature.
byte[]	getDigest() Deprecated. Returns the digest that was calculated during signature generation or verification.

Methods inherited from class java.security.Signature

clone, getAlgorithm, getInstance, getInstance, getInstance, getParameter, getParameters, getProvider, initSign, initSign, initVerify, initVerify, setParameter, setParameter, sign, sign, toString, update, update, update, update, verify, verify

Methods inherited from class java.security.SignatureSpi

engineGetParameters, engineInitSign, engineSign, engineUpdate, engineVerify

Methods inherited from class java.lang.Object

equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Field Detail

ecdsaWithSHA1

public static final ObjectID ecdsaWithSHA1

Deprecated.

Object identifier for ecdsaWithSHA1 is 1.2.840.10045.4.1

ecdsa

public static final ObjectID ecdsa

Deprecated.

Object identifier for ecdsa is 1.2.840.10045.4

Constructor Detail

EntrustECDSA

public EntrustECDSA()

Deprecated.

Default constructor.

Method Detail

engineInitVerify

protected void engineInitVerify(java.security.PublicKey publicKey)
                         throws java.security.InvalidKeyException

Deprecated.

Initializes this signature object with the specified public key for verification operations.

Specified by:

engineInitVerify in class java.security.SignatureSpi

Parameters:

publicKey - the public key of the identity whose signature is to be verified

Throws:

java.security.InvalidKeyException - if the key type is wrong (if it is not an ECDSAPublicKey object, for example)

engineInitSign

protected void engineInitSign(java.security.PrivateKey privateKey)
                       throws java.security.InvalidKeyException

Deprecated.

Initializes this signature object with the specified private key for signing operations.

Specified by:

engineInitSign in class java.security.SignatureSpi

Parameters:

privateKey - the private key of the identity whose signature is to be generated

Throws:

java.security.InvalidKeyException - if the key is not of type EcConfinedPrivateKey (with algorithm ECDSA) or of type ECDSAPrivateKey

engineUpdate

protected void engineUpdate(byte b)
                     throws java.security.SignatureException

Deprecated.

Updates the data to be signed or verified using the specified byte.

Specified by:

engineUpdate in class java.security.SignatureSpi

Parameters:

b - the byte to use for the update operation

Throws:

java.security.SignatureException - if off and len are larger than the size of b.

engineUpdate

protected void engineUpdate(byte[] b,
                int off,
                int len)
                     throws java.security.SignatureException

Deprecated.

Updates the data to be signed or verified, using the specified array of bytes, starting at the specified offset.

Specified by:

engineUpdate in class java.security.SignatureSpi

Parameters:

b - the byte array

off - the offset from which to start (in the byte array)

len - the number of bytes to use, starting at offset

Throws:

java.security.SignatureException - if off and len are larger than the size of b.

engineSign

protected byte[] engineSign()
                     throws java.security.SignatureException

Deprecated.

Returns the signature byte array containing all of the updated data.

The format of the signature is a DER encoded ASN1 structure as defined in X9.62 (a SEQUENCE consisting of two INTEGER components).

Specified by:

engineSign in class java.security.SignatureSpi

Returns:

the signature byte array (the result of the signing operation)

Throws:

java.security.SignatureException - if the engine is not properly initialized

engineVerify

protected boolean engineVerify(byte[] sigBytes)
                        throws java.security.SignatureException

Deprecated.

Verifies the signature.

Specified by:

engineVerify in class java.security.SignatureSpi

Parameters:

sigBytes - the signature byte array to be verified

Returns:

true if the signature is valid — false otherwise

Throws:

java.security.SignatureException - if the engine is not properly initialized, or if the signature is improperly encoded or of the wrong type

engineSetParameter

protected void engineSetParameter(java.lang.String param,
                      java.lang.Object value)
                           throws java.security.InvalidParameterException

Deprecated.

Sets the specified algorithm parameter to the specified value.

Note

This method is not supported because the parameter is part of the public/private key. The method always throws an exception.

Specified by:

engineSetParameter in class java.security.SignatureSpi

Throws:

java.security.InvalidParameterException - always thrown

engineSetParameter

protected void engineSetParameter(java.security.spec.AlgorithmParameterSpec params)
                           throws java.security.InvalidAlgorithmParameterException

Deprecated.

Initializes the signature engine with the specified parameter.

Note

This method is not supported because the parameter is part of the public/private key. The method always throws an exception.

Overrides:

engineSetParameter in class java.security.SignatureSpi

Throws:

java.security.InvalidAlgorithmParameterException - always thrown

engineGetParameter

protected java.lang.Object engineGetParameter(java.lang.String param)
                                       throws java.security.InvalidParameterException

Deprecated.

Retrieves the value of the specified algorithm parameter.

Note

This method is not supported and always throws InvalidParameterException.

Specified by:

engineGetParameter in class java.security.SignatureSpi

Throws:

java.security.InvalidParameterException - always thrown for security reasons

getDigest

public byte[] getDigest()

Deprecated.

Description copied from interface: ExtendedSignature

Returns the digest that was calculated during signature generation or verification.

During both a signature generation and verification operation a digest is calculated over the message; this digest is then used as an input to the signature generation or verification process. This API simply provides access to the digest once it has been calculated; it always returns the digest from the last operation. If a signature generation or verification operation has not yet been executed or is in the process of being executed, null is returned.

To ensure a non-null result, this method should only be called after Signature.sign() or Signature.verify() has called.

FIPS 140-2:

FIPS Service: Query Object

This API is part of the logical interface to the Toolkit's FIPS 140-2 cryptographic module; use of this API causes the caller to assume the FIPS 140-2 user role and accesses the following FIPS 140-2 logical interfaces:

• control input interface (API call)
• data output interface (return value)
• status output interface (exceptions)

Specified by:

getDigest in interface ExtendedSignature

Returns:

[FIPS 140-2 data output] the digest that was calculated during signature generation or verification