Class Summary | |
---|---|
AccessDescription | The AccessDescription object. |
Accuracy | |
AdditionalInformationSyntax | Some other information of non-restrictive nature regarding the usage of this certificate. |
Admissions | An Admissions structure. |
AdmissionSyntax | Attribute to indicate admissions to certain professions. |
AEADBlockCipher | A block cipher mode that includes authenticated encryption with a streaming mode and optional associated data. |
AEADParameters | |
AES | |
AESEngine | an implementation of the AES (Rijndael), from FIPS-197. |
AESFastEngine | an implementation of the AES (Rijndael), from FIPS-197. |
AESLightEngine | an implementation of the AES (Rijndael), from FIPS-197. |
AESMappings | |
AESSICTest | test vectors based on NIST Special Publication 800-38A, "Recommendation for Block Cipher Modes of Operation" |
AESTest | basic test class for the AES cipher vectors from FIPS-197 |
AESWrapEngine | an implementation of the AES Key Wrapper from the NIST Key Wrap Specification. |
AES.AlgParamGen | |
AES.AlgParams | |
AES.CBC | |
AES.CFB | |
AES.ECB | |
AES.KeyGen | |
AES.KeyGen128 | |
AES.KeyGen192 | |
AES.KeyGen256 | |
AES.OFB | |
AES.RFC3211Wrap | |
AES.Wrap | |
AlgorithmIdentifier | |
AlgorithmParametersTest | |
AllTests | |
AllTests | |
AllTests | |
AllTests | |
AlwaysValidVerifyer | A certificate verifyer, that will always return true. |
AnnotatedException | |
Arrays | General array utilities. |
AsymmetricBlockCipher | base interface that a public/private key block cipher needs to conform to. |
AsymmetricCipherKeyPair | a holding class for public/private parameter pairs. |
AsymmetricCipherKeyPairGenerator | interface that a public/private key pair generator should conform to. |
AsymmetricKeyParameter | |
ASN1Choice | Marker interface for CHOICE objects - if you implement this in a role your own object any attempt to tag the object implicitly will convert the tag to an explicit one as the encoding rules require. |
ASN1Dump | |
ASN1Encodable | |
ASN1EncodableVector | the parent class for this will eventually disappear. |
ASN1Generator | |
ASN1InputStream | a general purpose ASN.1 decoder - note: this class differs from the others in that it returns null after it has read the last object in the stream. |
ASN1Null | A NULL object. |
ASN1Object | |
ASN1ObjectParser | |
ASN1OctetString | |
ASN1OctetStringParser | |
ASN1OutputStream | |
ASN1Sequence | |
ASN1SequenceParser | |
ASN1Set | |
ASN1SetParser | |
ASN1StreamParser | |
ASN1TaggedObject | ASN.1 TaggedObject - in ASN.1 nottation this is any object proceeded by a [n] where n is some number - these are assume to follow the construction rules (as with sequences). |
ASN1TaggedObjectParser | |
AttCertIssuer | |
AttCertValidityPeriod | |
AttrCertExample | A simple example that generates an attribute certificate. |
AttrCertSelectorTest | |
Attribute | |
Attribute | |
Attribute | |
AttributeCertificate | |
AttributeCertificateHolder | The Holder object. |
AttributeCertificateInfo | |
AttributeCertificateIssuer | Carrying class for an attribute certificate issuer. |
AttributeTable | |
AuthenticatedSafe | |
AuthorityInformationAccess | The AuthorityInformationAccess object. |
AuthorityKeyIdentifier | The AuthorityKeyIdentifier object. |
AuthorityKeyIdentifierStructure | A high level authority key identifier. |
Base64 | |
Base64Encoder | |
BaseBlockCipherTest | |
BaseKDFBytesGenerator |
Basic KDF generator for derived keys and ivs as defined by IEEE P1363a/ISO 18033
This implementation is based on ISO 18033/P1363a. |
BasicAgreement | The basic interface that basic Diffie-Hellman implementations conforms to. |
BasicConstraints | |
BasicOCSPResp |
BasicOCSPResponse ::= SEQUENCE { tbsResponseData ResponseData, signatureAlgorithm AlgorithmIdentifier, signature BIT STRING, certs [0] EXPLICIT SEQUENCE OF Certificate OPTIONAL } |
BasicOCSPRespGenerator | Generator for basic OCSP response objects. |
BasicOCSPResponse | |
BCKeyStore | all BC provider keystores implement this interface. |
BERConstructedOctetString | |
BERConstructedSequence | |
BERGenerator | |
BERInputStream | |
BERNull | A BER NULL object. |
BEROctetStringGenerator | |
BEROctetStringParser | |
BEROutputStream | |
BERSequence | |
BERSequenceGenerator | |
BERSequenceParser | |
BERSet | |
BERSetParser | |
BERTaggedObject | BER TaggedObject - in ASN.1 nottation this is any object proceeded by a [n] where n is some number - these are assume to follow the construction rules (as with sequences). |
BERTaggedObjectParser | |
BigIntegers | BigInteger utilities. |
BiometricData | The BiometricData object. |
BlockCipher | Block cipher engines are expected to conform to this interface. |
BlockCipherMac | |
BlockCipherPadding | Block cipher padders are expected to conform to this interface |
BlockCipherTest | basic test class for a block cipher, basically this just exercises the provider, and makes sure we are behaving sensibly, correctness of the implementation is shown in the lightweight test classes. |
BlowfishEngine | A class that provides Blowfish key encryption operations, such as encoding data and generating keys. |
BouncyCastleProvider |
To add the provider at runtime use:
import java.security.Security; import org.bouncycastle.jce.provider.BouncyCastleProvider; Security.addProvider(new BouncyCastleProvider());The provider can also be configured as part of your environment via static registration by adding an entry to the java.security properties file (found in $JAVA_HOME/jre/lib/security/java.security, where $JAVA_HOME is the location of your JDK/JRE distribution). |
BrokenJCEBlockCipher | |
BrokenJCEBlockCipher.BrokePBEWithMD5AndDES | PBEWithMD5AndDES |
BrokenJCEBlockCipher.BrokePBEWithSHA1AndDES | PBEWithSHA1AndDES |
BrokenJCEBlockCipher.BrokePBEWithSHAAndDES2Key | PBEWithSHAAnd2-KeyTripleDES-CBC |
BrokenJCEBlockCipher.BrokePBEWithSHAAndDES3Key | PBEWithSHAAnd3-KeyTripleDES-CBC |
BrokenJCEBlockCipher.OldPBEWithSHAAndDES3Key | OldPBEWithSHAAnd3-KeyTripleDES-CBC |
BrokenJCEBlockCipher.OldPBEWithSHAAndTwofish | OldPBEWithSHAAndTwofish-CBC |
BrokenKDF2BytesGenerator |
Generator for PBE derived keys and ivs as defined by IEEE P1363a
This implementation is based on draft 9 of IEEE P1363a. |
BrokenPBE | |
BrokenPBE.Util | uses the appropriate mixer to generate the key and IV if neccessary. |
BufferedAsymmetricBlockCipher | a buffer wrapper for an asymmetric block cipher, allowing input to be accumulated in a piecemeal fashion until final processing. |
BufferedBlockCipher | A wrapper class that allows block ciphers to be used to process data in a piecemeal fashion. |
BufferedDecoder | a buffering class to allow translation from one format to another to be done in discrete chunks. |
BufferedEncoder | a buffering class to allow translation from one format to another to be done in discrete chunks. |
ByteQueue | A queue for bytes. |
CAST5 | |
CAST5CBCParameters | |
CAST5Engine | A class that provides CAST key encryption operations, such as encoding data and generating keys. |
CAST5Mappings | |
CAST5.AlgParamGen | |
CAST5.AlgParams | |
CAST5.CBC | |
CAST5.ECB | |
CAST5.KeyGen | |
CAST6Engine | A class that provides CAST6 key encryption operations, such as encoding data and generating keys. |
Camellia | |
CamelliaEngine | Camellia - based on RFC 3713. |
CamelliaMappings | |
CamelliaTest | basic test class for Camellia |
CamelliaWrapEngine | An implementation of the Camellia key wrapper based on RFC 3657/RFC 3394. |
Camellia.AlgParamGen | |
Camellia.AlgParams | |
Camellia.CBC | |
Camellia.ECB | |
Camellia.KeyGen | |
Camellia.KeyGen128 | |
Camellia.KeyGen192 | |
Camellia.KeyGen256 | |
Camellia.RFC3211Wrap | |
Camellia.Wrap | |
CBCBlockCipher | implements Cipher-Block-Chaining (CBC) mode on top of a simple cipher. |
CBCBlockCipherMac | standard CBC Block Cipher MAC - if no padding is specified the default of pad of zeroes is used. |
CCMBlockCipher | Implements the Counter with Cipher Block Chaining mode (CCM) detailed in NIST Special Publication 800-38C. |
CCMParameters | |
CertBag | |
CertHash | ISIS-MTT PROFILE: The responder may include this extension in a response to send the hash of the requested certificate to the responder. |
Certificate | A representation for a certificate chain as used by an tls server. |
CertificateID | |
CertificateList | PKIX RFC-2459 The X.509 v2 CRL syntax is as follows. |
CertificatePair |
This class helps to support crossCerfificatePairs in a LDAP directory
according RFC 2587
crossCertificatePairATTRIBUTE::={ WITH SYNTAX CertificatePair EQUALITY MATCHING RULE certificatePairExactMatch ID joint-iso-ccitt(2) ds(5) attributeType(4) crossCertificatePair(40)} The forward elements of the crossCertificatePair attribute of a CA's directory entry shall be used to store all, except self-issued certificates issued to this CA. |
CertificatePolicies | |
CertificateStatus | |
CertificateVerifyer | This should be implemented by any class which can find out, if a given certificate chain is beeing accepted by an client. |
CertificationRequest | PKCS10 Certification request object. |
CertificationRequestInfo | PKCS10 CertificationRequestInfo object. |
CertID | |
CertPathBuilderTest | |
CertPathReviewerException | |
CertPathTest | |
CertPathValidatorTest | |
CertPathValidatorUtilities | |
CertPolicyId | CertPolicyId, used in the CertificatePolicies and PolicyMappings X509V3 Extensions. |
CertStatus | |
CertStoreCollectionSpi | |
CertStoreTest | |
CFBBlockCipher | implements a Cipher-FeedBack (CFB) mode on top of a simple cipher. |
CFBBlockCipherMac | |
CipherKeyGenerator | The base class for symmetric, or secret, cipher key generators. |
CipherParameters | all parameter classes implement this. |
CipherStreamTest | check that cipher input/output streams are working correctly |
CMac |
CMAC - as specified at www.nuee.nagoya-u.ac.jp/labs/tiwata/omac/omac.html
CMAC is analogous to OMAC1 - see also en.wikipedia.org/wiki/CMAC CMAC is a NIST recomendation - see csrc.nist.gov/CryptoToolkit/modes/800-38_Series_Publications/SP800-38B.pdf CMAC/OMAC1 is a blockcipher-based message authentication code designed and analyzed by Tetsu Iwata and Kaoru Kurosawa. |
CMSAttributes | |
CMSObjectIdentifiers | |
CollectionStore | A simple collection backed store. |
CombinedHash | A combined hash, which implements md5(m) || sha1(m). |
CommitmentTypeIdentifier | |
CommitmentTypeIndication | |
CommitmentTypeQualifier | Commitment type qualifiers, used in the Commitment-Type-Indication attribute (RFC3126). |
CompressedData | RFC 3274 - CMS Compressed Data. |
CompressedDataParser | RFC 3274 - CMS Compressed Data. |
ConfigurableProvider | Implemented by the BC provider. |
ContentHints | |
ContentIdentifier | |
ContentInfo | |
ContentInfo | |
ContentInfoParser | Produce an object suitable for an ASN1OutputStream. |
CrlID | |
CryptoException | the foundation class for the hard exceptions thrown by the crypto packages. |
CryptoProObjectIdentifiers | |
CRLDistPoint | |
CRLNumber | The CRLNumber object. |
CRLReason | The CRLReason enumeration. |
CTSBlockCipher | A Cipher Text Stealing (CTS) mode cipher. |
DataGroupHash | The DataGroupHash object. |
DataLengthException | this exception is thrown if a buffer that is meant to have output copied into it turns out to be too short, or if we've been given insufficient input. |
DeclarationOfMajority | A declaration of majority. |
DerivationFunction | base interface for general purpose byte derivation functions. |
DerivationParameters | Parameters for key/byte stream derivation classes |
DERApplicationSpecific | Base class for an application specific object |
DERBitString | |
DERBMPString | DER BMPString object. |
DERBoolean | |
DERConstructedSequence | |
DERConstructedSet | |
DERDump | |
DEREncodable | |
DEREncodableVector | a general class for building up a vector of DER encodable objects - this will eventually be superceded by ASN1EncodableVector so you should use that class in preference. |
DEREnumerated | |
DERGeneralizedTime | Generalized time object. |
DERGeneralString | |
DERGenerator | |
DERIA5String | DER IA5String object - this is an ascii string. |
DERInputStream | Don't use this class. |
DERInteger | |
DERNull | A NULL object. |
DERNumericString | DER NumericString object - this is an ascii string of characters {0,1,2,3,4,5,6,7,8,9, }. |
DERObject | |
DERObjectIdentifier | |
DEROctetString | |
DEROutputStream | |
DERPrintableString | DER PrintableString object. |
DERSequence | |
DERSequenceGenerator | |
DERSet | A DER encoded set object |
DERString | basic interface for DER string objects. |
DERT61String | DER T61String (also the teletex string) |
DERTaggedObject | DER TaggedObject - in ASN.1 nottation this is any object proceeded by a [n] where n is some number - these are assume to follow the construction rules (as with sequences). |
DERTags | |
DERUniversalString | DER UniversalString object. |
DERUnknownTag | We insert one of these when we find a tag we don't recognise. |
DERUTCTime | UTC time object. |
DERUTF8String | DER UTF8String object. |
DERVisibleString | DER VisibleString object. |
DESedeEngine | a class that provides a basic DESede (or Triple DES) engine. |
DESedeKeyGenerator | |
DESedeParameters | |
DESedeTest | basic test class for key generation for a DES-EDE block cipher, basically this just exercises the provider, and makes sure we are behaving sensibly, correctness of the implementation is shown in the lightweight test classes. |
DESedeWrapEngine | Wrap keys according to draft-ietf-smime-key-wrap-01.txt. |
DESEngine | a class that provides a basic DES engine. |
DESExample | DESExample is a simple DES based encryptor/decryptor. |
DESKeyGenerator | |
DESParameters | |
DHAgreement | a Diffie-Hellman key exchange engine. |
DHBasicAgreement | a Diffie-Hellman key agreement class. |
DHBasicKeyPairGenerator | a basic Diffie-Helman key pair generator. |
DHKDFParameters | |
DHKeyGenerationParameters | |
DHKeyPairGenerator | a Diffie-Helman key pair generator. |
DHKeyParameters | |
DHKEKGenerator | RFC 2631 Diffie-hellman KEK derivation function. |
DHParameter | |
DHParameters | |
DHParametersGenerator | |
DHPrivateKeyParameters | |
DHPublicKeyParameters | |
DHTest | |
DHUtil | utility class for converting jce/jca DH objects objects into their org.bouncycastle.crypto counterparts. |
DHValidationParameters | |
Digest | interface that a message digest conforms to. |
DigestInfo | The DigestInfo object. |
DigestInputStream | |
DigestOutputStream | |
DigestRandomGenerator | Random generation based on the digest with counter. |
DigestTest | |
DirectoryString | |
DisplayText |
DisplayText class, used in
CertificatePolicies X509 V3 extensions (in policy qualifiers).
|
DistributionPoint | The DistributionPoint object. |
DistributionPointName | The DistributionPointName object. |
DoFinalTest | check that doFinal is properly reseting the cipher. |
DSA | interface for classes implementing algorithms modeled similar to the Digital Signature Alorithm. |
DSAKeyGenerationParameters | |
DSAKeyPairGenerator | a DSA key pair generator. |
DSAKeyParameters | |
DSAParameter | |
DSAParameters | |
DSAParametersGenerator | generate suitable parameters for DSA, in line with FIPS 186-2. |
DSAPrivateKeyParameters | |
DSAPublicKeyParameters | |
DSASigner | The Digital Signature Algorithm - as described in "Handbook of Applied Cryptography", pages 452 - 453. |
DSATest | |
DSAUtil | utility class for converting jce/jca DSA objects objects into their org.bouncycastle.crypto counterparts. |
DSAValidationParameters | |
Dump | |
EAXBlockCipher | A Two-Pass Authenticated-Encryption Scheme Optimized for Simplicity and Efficiency - by M. |
ECDHBasicAgreement | P1363 7.2.1 ECSVDP-DH ECSVDP-DH is Elliptic Curve Secret Value Derivation Primitive, Diffie-Hellman version. |
ECDHCBasicAgreement | P1363 7.2.2 ECSVDP-DHC ECSVDP-DHC is Elliptic Curve Secret Value Derivation Primitive, Diffie-Hellman version with cofactor multiplication. |
ECDHKEKGenerator | X9.63 based key derivation function for ECDH CMS. |
ECDomainParameters | |
ECDSASigner | EC-DSA as described in X9.62 |
ECEncodingTest | |
ECGOST3410NamedCurves | table of the available named parameters for GOST 3410-2001. |
ECGOST3410NamedCurveTable | a table of locally supported named curves. |
ECGOST3410ParamSetParameters | |
ECGOST3410Signer | GOST R 34.10-2001 Signature Algorithm |
ECIESTest | test for ECIES - Elliptic Curve Integrated Encryption Scheme |
ECKey | generic interface for an Elliptic Curve Key. |
ECKeyGenerationParameters | |
ECKeyPairGenerator | |
ECKeyParameters | |
ECKeySpec | base class for an Elliptic Curve Key Spec |
ECNamedCurveParameterSpec | specification signifying that the curve parameters can also be refered to by name. |
ECNamedCurveTable | a table of locally supported named curves. |
ECNRSigner | EC-NR as described in IEEE 1363-2000 |
ECNRTest | |
ECParameterSpec | basic domain parameters for an Elliptic Curve public or private key. |
ECPointEncoder | All BC elliptic curve keys implement this interface. |
ECPrivateKey | interface for Elliptic Curve Private keys. |
ECPrivateKeyParameters | |
ECPrivateKeySpec | Elliptic Curve private key specification. |
ECPrivateKeyStructure | the elliptic curve private key object from SEC 1 |
ECPublicKey | interface for elliptic curve public keys. |
ECPublicKeyParameters | |
ECPublicKeySpec | Elliptic Curve public key specification |
ECUtil | utility class for converting jce/jca ECDSA, ECDH, and ECDHC objects into their org.bouncycastle.crypto counterparts. |
ElGamalEngine | this does your basic ElGamal algorithm. |
ElGamalGenParameterSpec | |
ElGamalKey | |
ElGamalKeyGenerationParameters | |
ElGamalKeyPairGenerator | a ElGamal key pair generator. |
ElGamalKeyParameters | |
ElGamalKeySpec | |
ElGamalParameter | |
ElGamalParameters | |
ElGamalParametersGenerator | |
ElGamalParameterSpec | |
ElGamalPrivateKey | |
ElGamalPrivateKeyParameters | |
ElGamalPrivateKeySpec | This class specifies an ElGamal private key with its associated parameters. |
ElGamalPublicKey | |
ElGamalPublicKeyParameters | |
ElGamalPublicKeySpec | This class specifies an ElGamal public key with its associated parameters. |
ElGamalTest | |
ElGamalUtil | utility class for converting jce/jca ElGamal objects objects into their org.bouncycastle.crypto counterparts. |
Encoder | Encode and decode byte arrays (typically from binary to 7-bit ASCII encodings). |
EncryptedContentInfo | |
EncryptedContentInfoParser |
EncryptedContentInfo ::= SEQUENCE { contentType ContentType, contentEncryptionAlgorithm ContentEncryptionAlgorithmIdentifier, encryptedContent [0] IMPLICIT EncryptedContent OPTIONAL } |
EncryptedData | The EncryptedData object. |
EncryptedPrivateKeyInfo | |
EncryptedPrivateKeyInfoTest | |
EncryptionScheme | |
EnvelopedData | |
EnvelopedDataParser |
EnvelopedData ::= SEQUENCE { version CMSVersion, originatorInfo [0] IMPLICIT OriginatorInfo OPTIONAL, recipientInfos RecipientInfos, encryptedContentInfo EncryptedContentInfo, unprotectedAttrs [1] IMPLICIT UnprotectedAttributes OPTIONAL } |
ESFAttributes | |
ESSCertID | |
ETSIQCObjectIdentifiers | |
ExtCertificateEncodingException | |
ExtCertPathBuilderException | |
ExtCertPathValidatorException | |
ExtendedDigest | |
ExtendedKeyUsage | The extendedKeyUsage object. |
ExtendedPKIXBuilderParameters | This class contains extended parameters for PKIX certification path builders. |
ExtendedPKIXParameters | This class extends the PKIXParameters with a validity model parameter. |
ExtException | This is an extended exception. |
ExtIOException | |
FixedSecureRandom | |
FIPSDESTest | basic FIPS test class for a block cipher, just to make sure ECB/CBC/OFB/CFB are behaving correctly. |
GeneralDigest | base implementation of MD4 family style digest as outlined in "Handbook of Applied Cryptography", pages 344 - 347. |
GeneralName | The GeneralName object. |
GeneralNames | |
GeneralSubtree | Class for containing a restriction object subtrees in NameConstraints. |
GNUObjectIdentifiers | |
GOFBBlockCipher | implements the GOST 28147 OFB counter mode (GCTR). |
GOST28147Engine | implementation of GOST 28147-89 |
GOST28147Mac | implementation of GOST 28147-89 MAC |
GOST28147Parameters | |
GOST28147ParameterSpec | A parameter spec for the GOST-28147 cipher. |
GOST28147Test | basic test class for the GOST28147 cipher |
GOST3410Key | Main interface for a GOST 3410-94 key. |
GOST3410KeyGenerationParameters | |
GOST3410KeyPairGenerator | a GOST3410 key pair generator. |
GOST3410KeyParameters | |
GOST3410NamedParameters | table of the available named parameters for GOST 3410-94. |
GOST3410Parameters | |
GOST3410ParametersGenerator | generate suitable parameters for GOST3410. |
GOST3410ParameterSpec | ParameterSpec for a GOST 3410-94 key. |
GOST3410Params | |
GOST3410ParamSetParameters | |
GOST3410PrivateKey | |
GOST3410PrivateKeyParameters | |
GOST3410PrivateKeySpec | This class specifies a GOST3410-94 private key with its associated parameters. |
GOST3410PublicKey | |
GOST3410PublicKeyAlgParameters | |
GOST3410PublicKeyParameters | |
GOST3410PublicKeyParameterSetSpec | ParameterSpec for a GOST 3410-94 key parameters. |
GOST3410PublicKeySpec | This class specifies a GOST3410-94 public key with its associated parameters. |
GOST3410Signer | GOST R 34.10-94 Signature Algorithm |
GOST3410Test | |
GOST3410Util | utility class for converting jce/jca GOST3410-94 objects objects into their org.bouncycastle.crypto counterparts. |
GOST3410ValidationParameters | |
GOST3411Digest | implementation of GOST R 34.11-94 |
HC128Engine | HC-128 is a software-efficient stream cipher created by Hongjun Wu. |
HC256Engine | HC-256 is a software-efficient stream cipher created by Hongjun Wu. |
Hex | |
HexEncoder | |
HexTranslator | Converters for going from hex to binary and back. |
HMac | HMAC implementation based on RFC2104 H(K XOR opad, H(K XOR ipad, text)) |
HMacTest | HMAC tester |
Holder | The Holder object. |
IANAObjectIdentifiers | |
ICAOObjectIdentifiers | |
IDEACBCPar | |
IDEAEngine | A class that provides a basic International Data Encryption Algorithm (IDEA) engine. |
IetfAttrSyntax |
Implementation of IetfAttrSyntax as specified by RFC3281. |
IEKeySpec | key pair for use with an integrated encryptor - together they provide what's required to generate the message. |
IESEngine | support class for constructing intergrated encryption ciphers for doing basic message exchanges on top of key agreement ciphers |
IESKey | key pair for use with an integrated encryptor |
IESParameters | parameters for using an integrated cipher in stream mode. |
IESParameterSpec | Parameter spec for an integrated encryptor, as in IEEE P1363a |
IESTest | test for ECIES - Elliptic Curve Integrated Encryption Scheme |
IESWithCipherParameters | |
ImplicitlyCaTest | |
InvalidCipherTextException | this exception is thrown whenever we find something we don't expect in a message. |
IPAddress | |
IPTest | |
Iso4217CurrencyCode | The Iso4217CurrencyCode object. |
IssuerAndSerialNumber | |
IssuerAndSerialNumber | |
IssuerSerial | |
IssuingDistributionPoint |
IssuingDistributionPoint ::= SEQUENCE { distributionPoint [0] DistributionPointName OPTIONAL, onlyContainsUserCerts [1] BOOLEAN DEFAULT FALSE, onlyContainsCACerts [2] BOOLEAN DEFAULT FALSE, onlySomeReasons [3] ReasonFlags OPTIONAL, indirectCRL [4] BOOLEAN DEFAULT FALSE, onlyContainsAttributeCerts [5] BOOLEAN DEFAULT FALSE } |
ISAACEngine | Implementation of Bob Jenkin's ISAAC (Indirection Shift Accumulate Add and Count). see: http://www.burtleburtle.net/bob/rand/isaacafa.html |
ISISMTTObjectIdentifiers | |
ISO10126d2Padding | A padder that adds ISO10126-2 padding to a block. |
ISO18033KDFParameters | parameters for Key derivation functions for ISO-18033 |
ISO7816d4Padding | A padder that adds the padding according to the scheme referenced in ISO 7814-4 - scheme 2 from ISO 9797-1. |
ISO9796d1Encoding | ISO 9796-1 padding. |
ISO9796d2PSSSigner | ISO9796-2 - mechanism using a hash function with recovery (scheme 2 and 3). |
ISO9796d2Signer | ISO9796-2 - mechanism using a hash function with recovery (scheme 1) |
ISO9797Alg3Mac | DES based CBC Block Cipher MAC according to ISO9797, algorithm 3 (ANSI X9.19 Retail MAC) This could as well be derived from CBCBlockCipherMac, but then the property mac in the base class must be changed to protected |
JCEBlockCipher | |
JCEBlockCipher.AES | AES |
JCEBlockCipher.AESCBC | AESCBC |
JCEBlockCipher.AESCFB | AESCFB |
JCEBlockCipher.AESOFB | AESOFB |
JCEBlockCipher.Blowfish | Blowfish |
JCEBlockCipher.CAST5 | CAST5 |
JCEBlockCipher.CAST5CBC | CAST5 CBC |
JCEBlockCipher.CAST6 | CAST6 |
JCEBlockCipher.DES | DES |
JCEBlockCipher.DESCBC | DESCBC |
JCEBlockCipher.DESede | DESede |
JCEBlockCipher.DESedeCBC | DESedeCBC |
JCEBlockCipher.GOST28147 | GOST28147 |
JCEBlockCipher.GOST28147cbc | |
JCEBlockCipher.IDEA | IDEA |
JCEBlockCipher.IDEACBC | IDEA CBC |
JCEBlockCipher.PBEWithAESCBC | PBEWithAES-CBC |
JCEBlockCipher.PBEWithMD5AndDES | PBEWithMD5AndDES |
JCEBlockCipher.PBEWithMD5AndRC2 | PBEWithMD5AndRC2 |
JCEBlockCipher.PBEWithSHA1AndDES | PBEWithSHA1AndDES |
JCEBlockCipher.PBEWithSHA1AndRC2 | PBEWithSHA1AndRC2 |
JCEBlockCipher.PBEWithSHAAnd128BitRC2 | PBEWithSHAAnd128BitRC2-CBC |
JCEBlockCipher.PBEWithSHAAnd40BitRC2 | PBEWithSHAAnd40BitRC2-CBC |
JCEBlockCipher.PBEWithSHAAndDES2Key | PBEWithSHAAnd2-KeyTripleDES-CBC |
JCEBlockCipher.PBEWithSHAAndDES3Key | PBEWithSHAAnd3-KeyTripleDES-CBC |
JCEBlockCipher.PBEWithSHAAndIDEA | PBEWithSHAAndIDEA-CBC |
JCEBlockCipher.PBEWithSHAAndTwofish | PBEWithSHAAndTwofish-CBC |
JCEBlockCipher.RC2 | RC2 |
JCEBlockCipher.RC2CBC | RC2CBC |
JCEBlockCipher.RC5 | RC5 |
JCEBlockCipher.RC564 | RC564 |
JCEBlockCipher.RC6 | RC6 |
JCEBlockCipher.Rijndael | Rijndael |
JCEBlockCipher.Serpent | Serpent |
JCEBlockCipher.SEED | SEED |
JCEBlockCipher.Skipjack | SKIPJACK |
JCEBlockCipher.TEA | TEA |
JCEBlockCipher.Twofish | Twofish |
JCEBlockCipher.XTEA | XTEA |
JCEDHKeyAgreement | Diffie-Hellman key agreement. |
JCEDHPrivateKey | |
JCEDHPublicKey | |
JCEECDHKeyAgreement | Diffie-Hellman key agreement using elliptic curve keys, ala IEEE P1363 both the simple one, and the simple one with cofactors are supported. |
JCEECDHKeyAgreement.DH | |
JCEECDHKeyAgreement.DHC | |
JCEECDHKeyAgreement.DHwithSHA1KDF | |
JCEECPrivateKey | |
JCEECPublicKey | |
JCEElGamalCipher | |
JCEElGamalCipher.NoPadding | classes that inherit from us. |
JCEElGamalCipher.PKCS1v1_5Padding | |
JCEElGamalPrivateKey | |
JCEElGamalPublicKey | |
JCEIESCipher | |
JCEIESCipher.BrokenECIES | classes that inherit from us. |
JCEIESCipher.BrokenIES | |
JCEIESCipher.ECIES | |
JCEIESCipher.IES | |
JCEKeyGenerator | |
JCEKeyGenerator.Blowfish | Blowfish |
JCEKeyGenerator.CAST6 | CAST6 |
JCEKeyGenerator.DES | DES |
JCEKeyGenerator.DESede | DESede - the default for this is to generate a key in a-b-a format that's 24 bytes long but has 16 bytes of key material (the first 8 bytes is repeated as the last 8 bytes). |
JCEKeyGenerator.DESede3 | generate a desEDE key in the a-b-c format. |
JCEKeyGenerator.GOST28147 | GOST28147 |
JCEKeyGenerator.HC128 | HC128 |
JCEKeyGenerator.HC256 | HC256 |
JCEKeyGenerator.HMACSHA1 | HMACSHA1 |
JCEKeyGenerator.HMACSHA224 | HMACSHA224 |
JCEKeyGenerator.HMACSHA256 | HMACSHA256 |
JCEKeyGenerator.HMACSHA384 | HMACSHA384 |
JCEKeyGenerator.HMACSHA512 | HMACSHA512 |
JCEKeyGenerator.HMACTIGER | HMACTIGER |
JCEKeyGenerator.IDEA | IDEA |
JCEKeyGenerator.MD2HMAC | MD2HMAC |
JCEKeyGenerator.MD4HMAC | MD4HMAC |
JCEKeyGenerator.MD5HMAC | MD5HMAC |
JCEKeyGenerator.RC2 | RC2 |
JCEKeyGenerator.RC4 | RC4 |
JCEKeyGenerator.RC5 | RC5 |
JCEKeyGenerator.RC564 | RC5 |
JCEKeyGenerator.RC6 | RC6 |
JCEKeyGenerator.Rijndael | Rijndael |
JCEKeyGenerator.RIPEMD128HMAC | RIPE128HMAC |
JCEKeyGenerator.RIPEMD160HMAC | RIPE160HMAC |
JCEKeyGenerator.Salsa20 | Salsa20 |
JCEKeyGenerator.Serpent | Serpent |
JCEKeyGenerator.Skipjack | SKIPJACK |
JCEKeyGenerator.TEA | TEA |
JCEKeyGenerator.Twofish | Twofish |
JCEKeyGenerator.XTEA | XTEA |
JCEMac | |
JCEMac.DES | DES |
JCEMac.DES9797Alg3 | DES9797Alg3 |
JCEMac.DES9797Alg3with7816d4 | DES9797Alg3with7816-4Padding |
JCEMac.DESCFB8 | DES |
JCEMac.DESede | DESede |
JCEMac.DESede64 | DESede64 |
JCEMac.DESede64with7816d4 | DESede64with7816-4Padding |
JCEMac.DESedeCFB8 | DESede |
JCEMac.GOST28147 | GOST28147 |
JCEMac.IDEA | IDEA |
JCEMac.IDEACFB8 | IDEACFB8 |
JCEMac.MD2 | MD2 HMac |
JCEMac.MD4 | MD4 HMac |
JCEMac.MD5 | MD5 HMac |
JCEMac.OldSHA384 | |
JCEMac.OldSHA512 | SHA-512 HMac |
JCEMac.PBEWithRIPEMD160 | PBEWithHmacRIPEMD160 |
JCEMac.PBEWithSHA | PBEWithHmacSHA |
JCEMac.PBEWithTiger | PBEWithHmacTiger |
JCEMac.RC2 | RC2 |
JCEMac.RC2CFB8 | RC2CFB8 |
JCEMac.RC5 | RC5 |
JCEMac.RC5CFB8 | RC5CFB8 |
JCEMac.RIPEMD128 | RIPEMD128 HMac |
JCEMac.RIPEMD160 | RIPEMD160 HMac |
JCEMac.SHA1 | SHA1 HMac |
JCEMac.SHA224 | SHA-224 HMac |
JCEMac.SHA256 | SHA-256 HMac |
JCEMac.SHA384 | SHA-384 HMac |
JCEMac.SHA512 | SHA-512 HMac |
JCEMac.Skipjack | SKIPJACK |
JCEMac.SkipjackCFB8 | SKIPJACK |
JCEMac.Tiger | Tiger HMac |
JCEPBEKey | |
JCERSACipher | |
JCERSACipher.ISO9796d1Padding | |
JCERSACipher.NoPadding | classes that inherit from us. |
JCERSACipher.OAEPPadding | |
JCERSACipher.PKCS1v1_5Padding | |
JCERSACipher.PKCS1v1_5Padding_PrivateOnly | |
JCERSACipher.PKCS1v1_5Padding_PublicOnly | |
JCERSAPrivateCrtKey | A provider representation for a RSA private key, with CRT factors included. |
JCERSAPrivateKey | |
JCERSAPublicKey | |
JCESecretKeyFactory | |
JCESecretKeyFactory.DES | |
JCESecretKeyFactory.DESede | |
JCESecretKeyFactory.DESPBEKeyFactory | |
JCESecretKeyFactory.PBEKeyFactory | |
JCESecretKeyFactory.PBEWithMD5And128BitAESCBCOpenSSL | PBEWithMD5And128BitAES-OpenSSL |
JCESecretKeyFactory.PBEWithMD5And192BitAESCBCOpenSSL | PBEWithMD5And192BitAES-OpenSSL |
JCESecretKeyFactory.PBEWithMD5And256BitAESCBCOpenSSL | PBEWithMD5And256BitAES-OpenSSL |
JCESecretKeyFactory.PBEWithMD5AndDES | PBEWithMD5AndDES |
JCESecretKeyFactory.PBEWithMD5AndRC2 | PBEWithMD5AndRC2 |
JCESecretKeyFactory.PBEWithRIPEMD160 | PBEWithHmacRIPEMD160 |
JCESecretKeyFactory.PBEWithSHA | PBEWithHmacSHA |
JCESecretKeyFactory.PBEWithSHA1AndDES | PBEWithSHA1AndDES |
JCESecretKeyFactory.PBEWithSHA1AndRC2 | PBEWithSHA1AndRC2 |
JCESecretKeyFactory.PBEWithSHA256And128BitAESBC | PBEWithSHA256And128BitAES-BC |
JCESecretKeyFactory.PBEWithSHA256And192BitAESBC | PBEWithSHA256And192BitAES-BC |
JCESecretKeyFactory.PBEWithSHA256And256BitAESBC | PBEWithSHA256And256BitAES-BC |
JCESecretKeyFactory.PBEWithSHAAnd128BitAESBC | PBEWithSHA1And128BitAES-BC |
JCESecretKeyFactory.PBEWithSHAAnd128BitRC2 | PBEWithSHAAnd128BitRC2-CBC |
JCESecretKeyFactory.PBEWithSHAAnd128BitRC4 | PBEWithSHAAnd128BitRC4 |
JCESecretKeyFactory.PBEWithSHAAnd192BitAESBC | PBEWithSHA1And192BitAES-BC |
JCESecretKeyFactory.PBEWithSHAAnd256BitAESBC | PBEWithSHA1And256BitAES-BC |
JCESecretKeyFactory.PBEWithSHAAnd40BitRC2 | PBEWithSHAAnd40BitRC2-CBC |
JCESecretKeyFactory.PBEWithSHAAnd40BitRC4 | PBEWithSHAAnd40BitRC4 |
JCESecretKeyFactory.PBEWithSHAAndDES2Key | PBEWithSHAAnd2-KeyTripleDES-CBC |
JCESecretKeyFactory.PBEWithSHAAndDES3Key | PBEWithSHAAnd3-KeyTripleDES-CBC |
JCESecretKeyFactory.PBEWithSHAAndIDEA | PBEWithSHAAndIDEA-CBC |
JCESecretKeyFactory.PBEWithSHAAndTwofish | PBEWithSHAAndTwofish-CBC |
JCESecretKeyFactory.PBEWithTiger | PBEWithHmacTiger |
JCEStreamCipher | |
JCEStreamCipher.Blowfish_CFB8 | Blowfish |
JCEStreamCipher.Blowfish_OFB8 | Blowfish |
JCEStreamCipher.DESede_CFB8 | DESede |
JCEStreamCipher.DESede_OFB8 | DESede |
JCEStreamCipher.DES_CFB8 | DES |
JCEStreamCipher.DES_OFB8 | DES |
JCEStreamCipher.HC128 | HC-128 |
JCEStreamCipher.HC256 | HC-256 |
JCEStreamCipher.IDEA_CFB8 | IDEA |
JCEStreamCipher.IDEA_OFB8 | IDEA |
JCEStreamCipher.PBEWithSHAAnd128BitRC4 | PBEWithSHAAnd128BitRC4 |
JCEStreamCipher.PBEWithSHAAnd40BitRC4 | PBEWithSHAAnd40BitRC4 |
JCEStreamCipher.RC4 | RC4 |
JCEStreamCipher.Salsa20 | Salsa20 |
JCEStreamCipher.Skipjack_CFB8 | SKIPJACK |
JCEStreamCipher.Skipjack_OFB8 | SKIPJACK |
JCEStreamCipher.Twofish_CFB8 | Twofish |
JCEStreamCipher.Twofish_OFB8 | Twofish |
JDKAlgorithmParameterGenerator | |
JDKAlgorithmParameterGenerator.DES | |
JDKAlgorithmParameterGenerator.DH | |
JDKAlgorithmParameterGenerator.DSA | |
JDKAlgorithmParameterGenerator.ElGamal | |
JDKAlgorithmParameterGenerator.GOST3410 | |
JDKAlgorithmParameterGenerator.IDEA | |
JDKAlgorithmParameterGenerator.RC2 | |
JDKAlgorithmParameters | |
JDKAlgorithmParameters.CAST5AlgorithmParameters | |
JDKAlgorithmParameters.DH | |
JDKAlgorithmParameters.DSA | |
JDKAlgorithmParameters.ElGamal | |
JDKAlgorithmParameters.GOST3410 | |
JDKAlgorithmParameters.IDEAAlgorithmParameters | |
JDKAlgorithmParameters.IES | |
JDKAlgorithmParameters.IVAlgorithmParameters | |
JDKAlgorithmParameters.PKCS12PBE | |
JDKAlgorithmParameters.PSS | |
JDKAlgorithmParameters.RC2AlgorithmParameters | |
JDKDigestSignature | |
JDKDigestSignature.MD2WithRSAEncryption | |
JDKDigestSignature.MD4WithRSAEncryption | |
JDKDigestSignature.MD5WithRSAEncryption | |
JDKDigestSignature.RIPEMD128WithRSAEncryption | |
JDKDigestSignature.RIPEMD160WithRSAEncryption | |
JDKDigestSignature.RIPEMD256WithRSAEncryption | |
JDKDigestSignature.SHA1WithRSAEncryption | |
JDKDigestSignature.SHA224WithRSAEncryption | |
JDKDigestSignature.SHA256WithRSAEncryption | |
JDKDigestSignature.SHA384WithRSAEncryption | |
JDKDigestSignature.SHA512WithRSAEncryption | |
JDKDSAPrivateKey | |
JDKDSAPublicKey | |
JDKDSASigner | |
JDKDSASigner.dsa224 | |
JDKDSASigner.dsa256 | |
JDKDSASigner.dsa384 | |
JDKDSASigner.dsa512 | |
JDKDSASigner.ecDSA | |
JDKDSASigner.ecDSA224 | |
JDKDSASigner.ecDSA256 | |
JDKDSASigner.ecDSA384 | |
JDKDSASigner.ecDSA512 | |
JDKDSASigner.ecDSARipeMD160 | |
JDKDSASigner.ecNR | |
JDKDSASigner.ecNR224 | |
JDKDSASigner.ecNR256 | |
JDKDSASigner.ecNR384 | |
JDKDSASigner.ecNR512 | |
JDKDSASigner.noneDSA | |
JDKDSASigner.stdDSA | |
JDKECDSAAlgParameters | |
JDKECDSAAlgParameters.SigAlgParameters | |
JDKGOST3410PrivateKey | |
JDKGOST3410PublicKey | |
JDKGOST3410Signer | |
JDKGOST3410Signer.ecgost3410 | |
JDKGOST3410Signer.gost3410 | |
JDKISOSignature | |
JDKISOSignature.MD5WithRSAEncryption | |
JDKISOSignature.RIPEMD160WithRSAEncryption | |
JDKISOSignature.SHA1WithRSAEncryption | |
JDKKeyFactory | |
JDKKeyFactory.DH | |
JDKKeyFactory.DSA | |
JDKKeyFactory.EC | |
JDKKeyFactory.ECDH | |
JDKKeyFactory.ECDHC | |
JDKKeyFactory.ECDSA | |
JDKKeyFactory.ECGOST3410 | |
JDKKeyFactory.ElGamal | |
JDKKeyFactory.GOST3410 | |
JDKKeyFactory.RSA | |
JDKKeyFactory.X509 | This isn't really correct, however the class path project API seems to think such a key factory will exist. |
JDKKeyPairGenerator | |
JDKKeyPairGenerator.DH | |
JDKKeyPairGenerator.DSA | |
JDKKeyPairGenerator.EC | |
JDKKeyPairGenerator.ECDH | |
JDKKeyPairGenerator.ECDHC | |
JDKKeyPairGenerator.ECDSA | |
JDKKeyPairGenerator.ECGOST3410 | |
JDKKeyPairGenerator.ElGamal | |
JDKKeyPairGenerator.GOST3410 | |
JDKKeyPairGenerator.RSA | |
JDKKeyStore | |
JDKKeyStore.BouncyCastleStore | the BouncyCastle store. |
JDKMessageDigest | |
JDKMessageDigest.GOST3411 | |
JDKMessageDigest.MD2 | |
JDKMessageDigest.MD4 | |
JDKMessageDigest.MD5 | |
JDKMessageDigest.RIPEMD128 | |
JDKMessageDigest.RIPEMD160 | |
JDKMessageDigest.RIPEMD256 | |
JDKMessageDigest.RIPEMD320 | |
JDKMessageDigest.SHA1 | classes that extend directly off us. |
JDKMessageDigest.SHA224 | |
JDKMessageDigest.SHA256 | |
JDKMessageDigest.SHA384 | |
JDKMessageDigest.SHA512 | |
JDKMessageDigest.Tiger | |
JDKMessageDigest.Whirlpool | |
JDKPKCS12KeyStore | |
JDKPKCS12KeyStore.BCPKCS12KeyStore | |
JDKPKCS12KeyStore.DefPKCS12KeyStore | |
JDKPSSSigner | |
JDKPSSSigner.PSSwithRSA | |
JDKPSSSigner.SHA1withRSA | |
JDKPSSSigner.SHA224withRSA | |
JDKPSSSigner.SHA256withRSA | |
JDKPSSSigner.SHA384withRSA | |
JDKPSSSigner.SHA512withRSA | |
JDKX509CertificateFactory | class for dealing with X509 certificates. |
KDF1BytesGenerator |
KDF1 generator for derived keys and ivs as defined by IEEE P1363a/ISO 18033
This implementation is based on ISO 18033/IEEE P1363a. |
KDF2BytesGenerator |
KFD2 generator for derived keys and ivs as defined by IEEE P1363a/ISO 18033
This implementation is based on IEEE P1363/ISO 18033. |
KDFParameters | parameters for Key derivation functions for IEEE P1363a |
KeyAgreeRecipientIdentifier | |
KeyAgreeRecipientInfo | |
KeyDerivationFunc | |
KeyGenerationParameters | The base class for parameters to key generators. |
KeyParameter | |
KeyPurposeId | The KeyPurposeId object. |
KeySpecificInfo | ASN.1 def for Diffie-Hellman key exchange KeySpecificInfo structure. |
KeyStoreTest | Exercise the various key stores, making sure we at least get back what we put in! |
KeyTransRecipientInfo | |
KeyUsage | The KeyUsage object. |
KEKIdentifier | |
KEKRecipientInfo | |
KISAObjectIdentifiers | |
LDAPStoreHelper | This is a general purpose implementation to get X.509 certificates, CRLs, attribute certificates and cross certificates from a LDAP location. |
LDSSecurityObject | The LDSSecurityObject object. |
LongDigest | Base class for SHA-384 and SHA-512. |
Mac | The base interface for implementations of message authentication codes (MACs). |
MacData | |
MacInputStream | |
MacOutputStream | |
MacTest | MAC tester - vectors from FIP 81 and FIP 113. |
MaxBytesExceededException | this exception is thrown whenever a cipher requires a change of key, iv or similar after x amount of bytes enciphered |
MD2Digest | implementation of MD2 as outlined in RFC1319 by B.Kaliski from RSA Laboratories April 1992 |
MD4Digest | implementation of MD4 as RFC 1320 by R. |
MD5Digest | implementation of MD5 as outlined in "Handbook of Applied Cryptography", pages 346 - 347. |
MessageImprint | |
MGF1BytesGenerator | Generator for MGF1 as defined in PKCS 1v2 |
MGFParameters | parameters for mask derivation functions. |
MicrosoftObjectIdentifiers | |
MiscObjectIdentifiers | |
MonetaryLimit | Monetary limit for transactions. |
MonetaryValue | The MonetaryValue object. |
MultiCertStoreParameters | |
MultiCertStoreSpi | |
MultiCertStoreTest | |
NaccacheSternEngine | NaccacheStern Engine. |
NaccacheSternKeyGenerationParameters | Parameters for NaccacheStern public private key generation. |
NaccacheSternKeyPairGenerator | Key generation parameters for NaccacheStern cipher. |
NaccacheSternKeyParameters | Public key parameters for NaccacheStern cipher. |
NaccacheSternPrivateKeyParameters | Private key parameters for NaccacheStern cipher. |
NameConstraints | |
NamedCurveTest | |
NameOrPseudonym | Structure for a name or pseudonym. |
NamingAuthority | Names of authorities which are responsible for the administration of title registers. |
NetscapeCertRequest |
Handles NetScape certificate request (KEYGEN), these are constructed as:
PublicKey's encoded-format has to be X.509.
|
NetscapeCertRequestTest | |
NetscapeCertType | The NetscapeCertType object. |
NetscapeRevocationURL | |
NistCertPathTest | NIST CertPath test data for RFC 3280 |
NISTCertPathTest | |
NISTNamedCurves | Utility class for fetching curves using their NIST names as published in FIPS-PUB 186-2 |
NISTObjectIdentifiers | |
Noekeon | |
NoekeonEngine | A Noekeon engine, using direct-key mode. |
NoekeonMappings | |
NoekeonTest | basic test class for SEED |
Noekeon.AlgParamGen | |
Noekeon.AlgParams | |
Noekeon.ECB | |
Noekeon.KeyGen | |
NoSuchParserException | |
NoSuchStoreException | |
NoticeReference |
NoticeReference class, used in
CertificatePolicies X509 V3 extensions
(in policy qualifiers).
|
NTTObjectIdentifiers | From RFC 3657 |
NullEngine | The no-op engine that just copies bytes through, irrespective of whether encrypting and decrypting. |
NumberParsing | Parsing |
OAEPEncoding | Optimal Asymmetric Encryption Padding (OAEP) - see PKCS 1 V 2. |
ObjectDigestInfo | ObjectDigestInfo ASN.1 structure used in v2 attribute certificates. |
OCSPException | |
OCSPObjectIdentifiers | |
OCSPReq |
OCSPRequest ::= SEQUENCE { tbsRequest TBSRequest, optionalSignature [0] EXPLICIT Signature OPTIONAL } TBSRequest ::= SEQUENCE { version [0] EXPLICIT Version DEFAULT v1, requestorName [1] EXPLICIT GeneralName OPTIONAL, requestList SEQUENCE OF Request, requestExtensions [2] EXPLICIT Extensions OPTIONAL } Signature ::= SEQUENCE { signatureAlgorithm AlgorithmIdentifier, signature BIT STRING, certs [0] EXPLICIT SEQUENCE OF Certificate OPTIONAL} Version ::= INTEGER { v1(0) } Request ::= SEQUENCE { reqCert CertID, singleRequestExtensions [0] EXPLICIT Extensions OPTIONAL } CertID ::= SEQUENCE { hashAlgorithm AlgorithmIdentifier, issuerNameHash OCTET STRING, -- Hash of Issuer's DN issuerKeyHash OCTET STRING, -- Hash of Issuers public key serialNumber CertificateSerialNumber } |
OCSPReqGenerator | |
OCSPRequest | |
OCSPResp | |
OCSPRespGenerator | base generator for an OCSP response - at the moment this only supports the generation of responses containing BasicOCSP responses. |
OCSPResponse | |
OCSPResponseStatus | |
OCSPRespStatus | |
OCSPTest | |
OCSPTestUtil | |
OFBBlockCipher | implements a Output-FeedBack (OFB) mode on top of a simple cipher. |
OIDTokenizer | class for breaking up an OID into it's component tokens, ala java.util.StringTokenizer. |
OIWObjectIdentifiers | |
OldHMac | HMAC implementation based on RFC2104 H(K XOR opad, H(K XOR ipad, text)) |
OpenPGPCFBBlockCipher | Implements OpenPGP's rather strange version of Cipher-FeedBack (CFB) mode on top of a simple cipher. |
OpenSSLPBEParametersGenerator | Generator for PBE derived keys and ivs as usd by OpenSSL. |
OriginatorIdentifierOrKey | |
OriginatorInfo | |
OriginatorPublicKey | |
OtherCertID | |
OtherInfo | ANS.1 def for Diffie-Hellman key exchange OtherInfo structure. |
OtherKeyAttribute | |
OtherRecipientInfo | |
OtherSigningCertificate | |
PaddedBlockCipher | A wrapper class that allows block ciphers to be used to process data in a piecemeal fashion with PKCS5/PKCS7 padding. |
PaddedBufferedBlockCipher | A wrapper class that allows block ciphers to be used to process data in a piecemeal fashion with padding. |
ParametersWithIV | |
ParametersWithRandom | |
ParametersWithSalt | Cipher parameters with a fixed salt value associated with them. |
ParametersWithSBox | |
PasswordFinder | call back to allow a password to be fetched when one is requested. |
PasswordRecipientInfo | |
PBE | |
PBEParametersGenerator | super class for all Password Based Encryption (PBE) parameter generator classes. |
PBES2Algorithms | |
PBES2Parameters | |
PBETest | test out the various PBE modes, making sure the JCE implementations are compatible woth the light weight ones. |
PBE.Util | uses the appropriate mixer to generate the key and IV if neccessary. |
PBKDF2Params | |
PersonalData | Contains personal data for the otherName field in the subjectAltNames extension. |
PEMData | |
PEMReader | Class for reading OpenSSL PEM encoded streams containing X509 certificates, PKCS8 encoded keys and PKCS7 objects. |
PEMUtil | |
PEMWriter | General purpose writer for OpenSSL PEM objects. |
Pfx | the infamous Pfx from PKCS12 |
PGPCFBBlockCipher | Implements OpenPGP's rather strange version of Cipher-FeedBack (CFB) mode on top of a simple cipher. |
PKCS10CertificationRequest | A class for verifying and creating PKCS10 Certification requests. |
PKCS12BagAttributeCarrier | allow us to set attributes on objects that can go into a PKCS12 store. |
PKCS12Example | Example of how to set up a certificiate chain and a PKCS 12 store for a private individual - obviously you'll need to generate your own keys, and you may need to add a NetscapeCertType extension or add a key usage extension depending on your application, but you should get the idea! |
PKCS12ParametersGenerator | Generator for PBE derived keys and ivs as defined by PKCS 12 V1.0. |
PKCS12PBEParams | |
PKCS12StoreTest | Exercise the various key stores, making sure we at least get back what we put in! |
PKCS1Encoding | this does your basic PKCS 1 v1.5 padding - whether or not you should be using this depends on your application - see PKCS1 Version 2 for details. |
PKCS5S1ParametersGenerator | Generator for PBE derived keys and ivs as defined by PKCS 5 V2.0 Scheme 1. |
PKCS5S2ParametersGenerator | Generator for PBE derived keys and ivs as defined by PKCS 5 V2.0 Scheme 2. |
PKCS7Padding | A padder that adds PKCS7/PKCS5 padding to a block. |
PKCS7SignedData | Represents a PKCS#7 object - specifically the "Signed Data" type. |
PKCS7SignedDataTest | |
PKCSObjectIdentifiers | |
PKIFailureInfo |
PKIFailureInfo ::= BIT STRING { badAlg (0), -- unrecognized or unsupported Algorithm Identifier badMessageCheck (1), -- integrity check failed (e.g., signature did not verify) badRequest (2), -- transaction not permitted or supported badTime (3), -- messageTime was not sufficiently close to the system time, as defined by local policy badCertId (4), -- no certificate could be found matching the provided criteria badDataFormat (5), -- the data submitted has the wrong format wrongAuthority (6), -- the authority indicated in the request is different from the one creating the response token incorrectData (7), -- the requester's data is incorrect (for notary services) missingTimeStamp (8), -- when the timestamp is missing but should be there (by policy) badPOP (9) -- the proof-of-possession failed timeNotAvailable (14), -- the TSA's time source is not available unacceptedPolicy (15), -- the requested TSA policy is not supported by the TSA unacceptedExtension (16), -- the requested extension is not supported by the TSA addInfoNotAvailable (17) -- the additional information requested could not be understood -- or is not available systemFailure (25) -- the request cannot be handled due to system failure |
PKIFreeText | |
PKIStatus | |
PKIStatusInfo | |
PKIXAttrCertChecker | |
PKIXAttrCertPathBuilderSpi | |
PKIXAttrCertPathValidatorSpi | CertPathValidatorSpi implementation for X.509 Attribute Certificates la RFC 3281. |
PKIXCertPath | CertPath implementation for X.509 certificates. |
PKIXCertPathBuilderSpi | Implements the PKIX CertPathBuilding algorithem for BouncyCastle. |
PKIXCertPathValidatorSpi |
CertPathValidatorSpi implemenation for X.509 Certificate validation ala rfc 3280 |
PKIXNameConstraints | |
PKIXNameConstraintsTest | Test class for PKIXNameConstraints. |
PKIXPolicyMappingTest | |
PKIXPolicyNode | |
PKIXTest | |
PolicyInformation | |
PolicyMappings | PolicyMappings V3 extension, described in RFC3280. |
PolicyQualifierId | PolicyQualifierId, used in the CertificatePolicies X509V3 extension. |
PolicyQualifierInfo | Policy qualifiers, used in the X509V3 CertificatePolicies extension. |
PrincipalUtil | a utility class that will extract X509Principal objects from X.509 certificates. |
PrivateKeyFactory | Factory for creating private key objects from PKCS8 PrivateKeyInfo objects. |
PrivateKeyInfo | |
PrivateKeyUsagePeriod |
PrivateKeyUsagePeriod ::= SEQUENCE { notBefore [0] GeneralizedTime OPTIONAL, notAfter [1] GeneralizedTime OPTIONAL } |
ProcurationSyntax | Attribute to indicate that the certificate holder may sign in the name of a third person. |
ProfessionInfo | Professions, specializations, disciplines, fields of activity, etc. |
ProviderConfigurationPermission | A permission class to define what can be done with the ConfigurableProvider interface. |
PSSSigner | RSA-PSS as described in PKCS# 1 v 2.1. |
PSSTest | |
PublicKeyAndChallenge | This is designed to parse the PublicKeyAndChallenge created by the KEYGEN tag included by Mozilla based browsers. |
PublicKeyFactory | Factory to create asymmetric public key parameters for asymmetric ciphers from range of ASN.1 encoded SubjectPublicKeyInfo objects. |
QCStatement | The QCStatement object. |
RandomGenerator | Generic interface for objects generating random bytes. |
RC2CBCParameter | |
RC2Engine | an implementation of RC2 as described in RFC 2268 "A Description of the RC2(r) Encryption Algorithm" R. |
RC2Parameters | |
RC2WrapEngine | Wrap keys according to RFC 3217 - RC2 mechanism |
RC4Engine | |
RC532Engine |
The specification for RC5 came from the RC5 Encryption Algorithm
publication in RSA CryptoBytes, Spring of 1995.
|
RC564Engine |
The specification for RC5 came from the RC5 Encryption Algorithm
publication in RSA CryptoBytes, Spring of 1995.
|
RC5Parameters | |
RC6Engine | An RC6 engine. |
ReaderTest | basic class for reading test.pem - the password is "secret" |
ReasonFlags | The ReasonFlags object. |
RecipientEncryptedKey | |
RecipientIdentifier | |
RecipientInfo | |
RecipientKeyIdentifier | |
RecordStream | An implementation of the TLS 1.0 record layer. |
RegressionTest | |
Req | |
Request | |
RequestedCertificate | ISIS-MTT-Optional: The certificate requested by the client by inserting the RetrieveIfAllowed extension in the request, will be returned in this extension. |
RespData | |
RespID | Carrier for a ResponderID. |
ResponderID | |
ResponseBytes | |
ResponseData | |
Restriction | Some other restriction regarding the usage of this certificate. |
ReversedWindowGenerator | Takes bytes generated by an underling RandomGenerator and reverses the order in each small window (of configurable size). |
RevokedInfo | |
RevokedStatus | wrapper for the RevokedInfo object |
RFC3211WrapEngine | an implementation of the RFC 3211 Key Wrap Specification. |
RFC3394WrapEngine | an implementation of the AES Key Wrapper from the NIST Key Wrap Specification as described in RFC 3394. |
RFC3739QCObjectIdentifiers | |
RijndaelEngine | an implementation of Rijndael, based on the documentation and reference implementation by Paulo Barreto, Vincent Rijmen, for v2.0 August '99. |
RIPEMD128Digest | implementation of RIPEMD128 |
RIPEMD160Digest | implementation of RIPEMD see, http://www.esat.kuleuven.ac.be/~bosselae/ripemd160.html |
RIPEMD256Digest | implementation of RIPEMD256. |
RIPEMD320Digest | implementation of RIPEMD 320. |
RoleSyntax | Implementation of the RoleSyntax object as specified by the RFC3281. |
RSA3CertTest | Marius Schilder's Bleichenbacher's Forgery Attack Tests |
RSABlindedEngine | this does your basic RSA algorithm with blinding |
RSABlindingEngine | This does your basic RSA Chaum's blinding and unblinding as outlined in "Handbook of Applied Cryptography", page 475. |
RSABlindingFactorGenerator | Generate a random factor suitable for use with RSA blind signatures as outlined in Chaum's blinding and unblinding as outlined in "Handbook of Applied Cryptography", page 475. |
RSABlindingParameters | |
RSAEngine | this does your basic RSA algorithm. |
RSAESOAEPparams | |
RSAKeyGenerationParameters | |
RSAKeyPairGenerator | an RSA key pair generator. |
RSAKeyParameters | |
RSAPrivateCrtKeyParameters | |
RSAPrivateKeyStructure | |
RSAPublicKeyStructure | |
RSASSAPSSparams | |
RSATest | |
RuntimeCryptoException | the foundation class for the exceptions thrown by the crypto packages. |
SafeBag | |
Salsa20Engine | Implementation of Daniel J. |
SealedTest | |
Selector | |
SemanticsInformation | The SemanticsInformation object. |
SerialisationTest | |
SerpentEngine | Serpent is a 128-bit 32-round block cipher with variable key lengths, including 128, 192 and 256 bit keys conjectured to be at least as secure as three-key triple-DES. |
ServiceLocator | |
SECNamedCurves | |
SECObjectIdentifiers | |
SEED | |
SEEDEngine | Implementation of the SEED algorithm as described in RFC 4009 |
SEEDMappings | |
SEEDTest | basic test class for SEED |
SEEDWrapEngine | An implementation of the SEED key wrapper based on RFC 4010/RFC 3394. |
SEED.AlgParamGen | |
SEED.AlgParams | |
SEED.CBC | |
SEED.ECB | |
SEED.KeyGen | |
SEED.Wrap | |
ShortenedDigest | Wrapper class that reduces the output length of a particular digest to only the first n bytes of the digest function. |
SHA1Digest | implementation of SHA-1 as outlined in "Handbook of Applied Cryptography", pages 346 - 349. |
SHA224Digest |
SHA-224 as described in RFC 3874
block word digest SHA-1 512 32 160 SHA-224 512 32 224 SHA-256 512 32 256 SHA-384 1024 64 384 SHA-512 1024 64 512 |
SHA256Digest | FIPS 180-2 implementation of SHA-256. |
SHA384Digest | FIPS 180-2 implementation of SHA-384. |
SHA512Digest | FIPS 180-2 implementation of SHA-512. |
SigIObjectIdentifiers | Object Identifiers of SigI specifciation (German Signature Law Interoperability specification). |
Signature | |
SignedData | a signed data object. |
SignedData | a PKCS#7 signed data object. |
SignedDataParser |
SignedData ::= SEQUENCE { version CMSVersion, digestAlgorithms DigestAlgorithmIdentifiers, encapContentInfo EncapsulatedContentInfo, certificates [0] IMPLICIT CertificateSet OPTIONAL, crls [1] IMPLICIT CertificateRevocationLists OPTIONAL, signerInfos SignerInfos } |
SignedPublicKeyAndChallenge | This is designed to parse the SignedPublicKeyAndChallenge created by the KEYGEN tag included by Mozilla based browsers. |
Signer | Generic signer interface for hash based and message recovery signers. |
SignerIdentifier | |
SignerInfo | |
SignerInfo | a PKCS#7 signer info object. |
SignerLocation | Signer-Location attribute (RFC3126). |
SignerWithRecovery | Signer with message recovery. |
SigningCertificate | |
SigTest | |
SimpleTest | |
SimpleTestResult | |
SingleResp | |
SingleResponse | |
SICBlockCipher | Implements the Segmented Integer Counter (SIC) mode on top of a simple block cipher. |
SkipjackEngine | a class that provides a basic SKIPJACK engine. |
SlotTwoTest | |
SMIMEAttributes | |
SMIMECapabilities | Handler class for dealing with S/MIME Capabilities |
SMIMECapabilitiesAttribute | |
SMIMECapability | |
SMIMECapabilityVector | Handler for creating a vector S/MIME Capabilities |
SMIMEEncryptionKeyPreferenceAttribute | The SMIMEEncryptionKeyPreference object. |
Store | |
StoreException | |
StreamBlockCipher | a wrapper for block ciphers with a single byte block size, so that they can be treated like stream ciphers. |
StreamCipher | the interface stream ciphers conform to. |
StreamParser | |
StreamParsingException | |
Strings | |
SubjectDirectoryAttributes | This extension may contain further X.500 attributes of the subject. |
SubjectKeyIdentifier | The SubjectKeyIdentifier object. |
SubjectKeyIdentifierStructure | A high level subject key identifier. |
SubjectPublicKeyInfo | The object that contains the public key stored in a certficate. |
Target | Target structure used in target information extension for attribute certificates from RFC 3281. |
TargetInformation | Target information extension for attributes certificates according to RFC 3281. |
Targets | Targets structure used in target information extension for attribute certificates from RFC 3281. |
TBCPadding | A padder that adds Trailing-Bit-Compliment padding to a block. |
TBSCertificateStructure | The TBSCertificate object. |
TBSCertList | PKIX RFC-2459 - TBSCertList object. |
TBSCertList.CRLEntry | |
TBSRequest | |
TeleTrusTNamedCurves | elliptic curves defined in "ECC Brainpool Standard Curves and Curve Generation" http://www.ecc-brainpool.org/download/draft_pkix_additional_ecc_dp.txt |
TeleTrusTObjectIdentifiers | |
Test | |
TestFailedException | |
TestResult | |
TEAEngine | An TEA engine. |
ThreadedSeedGenerator | A thread based seed generator - one source of randomness. |
TigerDigest | implementation of Tiger based on: http://www.cs.technion.ac.il/~biham/Reports/Tiger |
Time | |
Time | |
TimeStampReq | |
TimeStampResp | |
TlsBlockCipherCipherSuite | A generic TLS 1.0 block cipher suite. |
TlsCipherSuite | A generic class for ciphersuites in TLS 1.0. |
TlsCipherSuiteManager | A manager for ciphersuite. |
TlsInputStream | An InputStream for an TLS 1.0 connection. |
TlsMac | A generic TLS MAC implementation, which can be used with any kind of Digest to act as an HMAC. |
TlsNullCipherSuite | A NULL CipherSuite in java, this should only be used during handshake. |
TlsOuputStream | An OutputStream for an TLS connection. |
TlsProtocolHandler | An implementation of all high level protocols in TLS 1.0. |
TlsRuntimeException | |
TlsUtils | Some helper fuctions for MicroTLS. |
Translator | general interface for an translator. |
TSTInfo | |
TwofishEngine | A class that provides Twofish encryption operations. |
TypeOfBiometricData | The TypeOfBiometricData object. |
UncloseableOutputStream | |
UnknownStatus | wrapper for the UnknownInfo object |
UrlBase64 | Convert binary data to and from UrlBase64 encoding. |
UrlBase64Encoder | Convert binary data to and from UrlBase64 encoding. |
UserNotice |
UserNotice class, used in
CertificatePolicies X509 extensions (in policy
qualifiers).
|
V1TBSCertificateGenerator | Generator for Version 1 TBSCertificateStructures. |
V2AttributeCertificateInfoGenerator |
Generator for Version 2 AttributeCertificateInfo
AttributeCertificateInfo ::= SEQUENCE { version AttCertVersion -- version is v2, holder Holder, issuer AttCertIssuer, signature AlgorithmIdentifier, serialNumber CertificateSerialNumber, attrCertValidityPeriod AttCertValidityPeriod, attributes SEQUENCE OF Attribute, issuerUniqueID UniqueIdentifier OPTIONAL, extensions Extensions OPTIONAL } |
V2Form | |
V2TBSCertListGenerator | Generator for Version 2 TBSCertList structures. |
V3TBSCertificateGenerator | Generator for Version 3 TBSCertificateStructures. |
VerisignCzagExtension | |
WhirlpoolDigest | Implementation of WhirlpoolDigest, based on Java source published by Barreto and Rijmen. |
WrapCipherSpi | |
WrapCipherSpi.DESEDEWrap | |
WrapCipherSpi.RC2Wrap | |
WrapCipherSpi.RFC3211DESedeWrap | |
Wrapper | |
WrapTest | |
WriterTest | |
X509AttrCertParser | |
X509Attribute | Class for carrying the values in an X.509 Attribute. |
X509AttributeCertificate | Interface for an X.509 Attribute Certificate. |
X509AttributeCertStoreSelector |
This class is an Selector like implementation to select
attribute certificates from a given set of criteria.
|
X509Attributes | |
X509CertificateObject | |
X509CertificatePair | This class contains a cross certificate pair. |
X509CertificatePairTest | |
X509CertificateStructure | an X509Certificate structure. |
X509CertPairParser | |
X509CertPairStoreSelector |
This class is an Selector like implementation to select
certificates pairs, which are e.g. used for cross certificates. |
X509CertParser | |
X509CertStoreSelector | This class is a Selector implementation for X.509 certificates. |
X509CollectionStoreParameters |
This class contains a collection for collection based X509Store s.
|
X509CRLEntryObject | The following extensions are listed in RFC 2459 as relevant to CRL Entries ReasonCode Hode Instruction Code Invalidity Date Certificate Issuer (critical) |
X509CRLObject | The following extensions are listed in RFC 2459 as relevant to CRLs Authority Key Identifier Issuer Alternative Name CRL Number Delta CRL Indicator (critical) Issuing Distribution Point (critical) |
X509CRLParser | |
X509CRLStoreSelector | This class is a Selector implementation for X.509 certificate revocation lists. |
X509DefaultEntryConverter | The default converter for X509 DN entries when going from their string value to ASN.1 strings. |
X509Extension | an object for the elements in the X.509 V3 extension block. |
X509Extensions | |
X509ExtensionsGenerator | Generator for X.509 extensions |
X509ExtensionUtil | |
X509KeyUsage | A holding class for constructing an X509 Key Usage extension. |
X509LDAPCertStoreParameters | An expanded set of parameters for an LDAPCertStore |
X509LDAPCertStoreParameters.Builder | |
X509LDAPCertStoreSpi | This is a general purpose implementation to get X.509 certificates and CRLs from a LDAP location. |
X509LDAPCertStoreTest | |
X509Name |
RDNSequence ::= SEQUENCE OF RelativeDistinguishedName RelativeDistinguishedName ::= SET SIZE (1..MAX) OF AttributeTypeAndValue AttributeTypeAndValue ::= SEQUENCE { type OBJECT IDENTIFIER, value ANY } |
X509NameEntryConverter | It turns out that the number of standard ways the fields in a DN should be encoded into their ASN.1 counterparts is rapidly approaching the number of machines on the internet. |
X509NameTokenizer | class for breaking up an X500 Name into it's component tokens, ala java.util.StringTokenizer. |
X509ObjectIdentifiers | |
X509Principal | a general extension of X509Name with a couple of extra methods and constructors. |
X509Store | |
X509StoreAttrCertCollection | |
X509StoreCertCollection | |
X509StoreCertPairCollection | This class is a collection based Bouncy Castle X509Store SPI implementation for certificate pairs. |
X509StoreCRLCollection | |
X509StoreLDAPAttrCerts |
A SPI implementation of Bouncy Castle X509Store for getting
attribute certificates from an LDAP directory.
|
X509StoreLDAPCertPairs |
A SPI implementation of Bouncy Castle X509Store for getting
cross certificates pairs from an LDAP directory.
|
X509StoreLDAPCerts |
A SPI implementation of Bouncy Castle X509Store for getting
certificates form a LDAP directory.
|
X509StoreLDAPCRLs |
A SPI implementation of Bouncy Castle X509Store for getting
certificate revocation lists from an LDAP directory.
|
X509StoreParameters | |
X509StoreSpi | |
X509StoreTest | |
X509StreamParser | This class allows access to different implementations for reading X.509 objects from streams. |
X509StreamParserSpi | This abstract class defines the service provider interface (SPI) for X509StreamParser. |
X509StreamParserTest | |
X509V1CertificateGenerator | class to produce an X.509 Version 1 certificate. |
X509V1CertificateGenerator | class to produce an X.509 Version 1 certificate. |
X509V2AttributeCertificate | An implementation of a version 2 X.509 Attribute Certificate. |
X509V2AttributeCertificateGenerator | class to produce an X.509 Version 2 AttributeCertificate. |
X509V2CRLGenerator | class to produce an X.509 Version 2 CRL. |
X509V2CRLGenerator | class to produce an X.509 Version 2 CRL. |
X509V3CertificateGenerator | class to produce an X.509 Version 3 certificate. |
X509V3CertificateGenerator | class to produce an X.509 Version 3 certificate. |
X923Padding | A padder that adds X9.23 padding to a block - if a SecureRandom is passed in random padding is assumed, otherwise padding with zeros is used. |
X962NamedCurves | table of the current named curves defined in X.962 EC-DSA. |
X962Parameters | |
X9Curve | ASN.1 def for Elliptic-Curve Curve structure. |
X9ECParameters | ASN.1 def for Elliptic-Curve ECParameters structure. |
X9ECParametersHolder | |
X9ECPoint | class for describing an ECPoint as a DER object. |
X9FieldElement | class for processing an FieldElement as a DER object. |
X9FieldID | ASN.1 def for Elliptic-Curve Field ID structure. |
X9IntegerConverter | |
X9ObjectIdentifiers | |
XTEAEngine | An XTEA engine. |
ZeroBytePadding | A padder that adds NULL byte padding to a block. |