org.mozilla.jss.crypto
Interface TokenCertificate
- X509Certificate
- PK11InternalTokenCert, PK11TokenCert
public interface TokenCertificate
An X509 Certificate that lives on a PKCS #11 token.
Many of the X509Certificates returned by JSS calls are actually
TokenCertificates.
To find out if an X509Certificate is a TokenCertificate, use
instanceof
.
getOwningToken
public abstract CryptoToken getOwningToken()
Returns the CryptoToken that owns this certificate. Cryptographic
operations with this key may only be performed on the token that
owns the key.
getUniqueID
public abstract byte[] getUniqueID()
This ID is based on an implementation that might change.
If this functionality is required, it should be provided in
another way, such as a function that directly matches a cert and
key.
Returns the unique ID of this key. Unique IDs can be used to match
certificates to keys.