Class POPOSigningKey

  • All Implemented Interfaces:
    org.bouncycastle.asn1.ASN1Encodable, org.bouncycastle.util.Encodable

    public class POPOSigningKey
    extends org.bouncycastle.asn1.ASN1Object
    • Constructor Detail

      • POPOSigningKey

        public POPOSigningKey​(POPOSigningKeyInput poposkIn,
                              org.bouncycastle.asn1.x509.AlgorithmIdentifier aid,
                              org.bouncycastle.asn1.DERBitString signature)
        Creates a new Proof of Possession object for a signing key.
        Parameters:
        poposkIn - the POPOSigningKeyInput structure, or null if the CertTemplate includes both subject and publicKey values.
        aid - the AlgorithmIdentifier used to sign the proof of possession.
        signature - a signature over the DER-encoded value of poposkIn, or the DER-encoded value of certReq if poposkIn is null.
    • Method Detail

      • getInstance

        public static POPOSigningKey getInstance​(org.bouncycastle.asn1.ASN1TaggedObject obj,
                                                 boolean explicit)
      • getAlgorithmIdentifier

        public org.bouncycastle.asn1.x509.AlgorithmIdentifier getAlgorithmIdentifier()
      • getSignature

        public org.bouncycastle.asn1.DERBitString getSignature()
      • toASN1Primitive

        public org.bouncycastle.asn1.ASN1Primitive toASN1Primitive()
         POPOSigningKey ::= SEQUENCE {
                              poposkInput           [0] POPOSigningKeyInput OPTIONAL,
                              algorithmIdentifier   AlgorithmIdentifier,
                              signature             BIT STRING }
          -- The signature (using "algorithmIdentifier") is on the
          -- DER-encoded value of poposkInput.  NOTE: If the CertReqMsg
          -- certReq CertTemplate contains the subject and publicKey values,
          -- then poposkInput MUST be omitted and the signature MUST be
          -- computed on the DER-encoded value of CertReqMsg certReq.  If
          -- the CertReqMsg certReq CertTemplate does not contain the public
          -- key and subject values, then poposkInput MUST be present and
          -- MUST be signed.  This strategy ensures that the public key is
          -- not present in both the poposkInput and CertReqMsg certReq
          -- CertTemplate fields.
         
        Specified by:
        toASN1Primitive in interface org.bouncycastle.asn1.ASN1Encodable
        Specified by:
        toASN1Primitive in class org.bouncycastle.asn1.ASN1Object
        Returns:
        a basic ASN.1 object representation.