Class CertHash

  • All Implemented Interfaces:
    org.bouncycastle.asn1.ASN1Encodable, org.bouncycastle.util.Encodable

    public class CertHash
    extends org.bouncycastle.asn1.ASN1Object
    ISIS-MTT PROFILE: The responder may include this extension in a response to send the hash of the requested certificate to the responder. This hash is cryptographically bound to the certificate and serves as evidence that the certificate is known to the responder (i.e. it has been issued and is present in the directory). Hence, this extension is a means to provide a positive statement of availability as described in T8.[8]. As explained in T13.[1], clients may rely on this information to be able to validate signatures after the expiry of the corresponding certificate. Hence, clients MUST support this extension. If a positive statement of availability is to be delivered, this extension syntax and OID MUST be used.
         CertHash ::= SEQUENCE {
           hashAlgorithm AlgorithmIdentifier,
           certificateHash OCTET STRING
         }
     
    • Constructor Summary

      Constructors 
      Constructor Description
      CertHash​(org.bouncycastle.asn1.x509.AlgorithmIdentifier hashAlgorithm, byte[] certificateHash)
      Constructor from a given details.
    • Method Summary

      All Methods Static Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      byte[] getCertificateHash()  
      org.bouncycastle.asn1.x509.AlgorithmIdentifier getHashAlgorithm()  
      static CertHash getInstance​(java.lang.Object obj)  
      org.bouncycastle.asn1.ASN1Primitive toASN1Primitive()
      Produce an object suitable for an ASN1OutputStream.
      • Methods inherited from class org.bouncycastle.asn1.ASN1Object

        encodeTo, encodeTo, equals, getEncoded, getEncoded, hasEncodedTagValue, hashCode
      • Methods inherited from class java.lang.Object

        clone, finalize, getClass, notify, notifyAll, toString, wait, wait, wait
    • Constructor Detail

      • CertHash

        public CertHash​(org.bouncycastle.asn1.x509.AlgorithmIdentifier hashAlgorithm,
                        byte[] certificateHash)
        Constructor from a given details.
        Parameters:
        hashAlgorithm - The hash algorithm identifier.
        certificateHash - The hash of the whole DER encoding of the certificate.
    • Method Detail

      • getInstance

        public static CertHash getInstance​(java.lang.Object obj)
      • getHashAlgorithm

        public org.bouncycastle.asn1.x509.AlgorithmIdentifier getHashAlgorithm()
      • getCertificateHash

        public byte[] getCertificateHash()
      • toASN1Primitive

        public org.bouncycastle.asn1.ASN1Primitive toASN1Primitive()
        Produce an object suitable for an ASN1OutputStream.

        Returns:

             CertHash ::= SEQUENCE {
               hashAlgorithm AlgorithmIdentifier,
               certificateHash OCTET STRING
             }
         
        Specified by:
        toASN1Primitive in interface org.bouncycastle.asn1.ASN1Encodable
        Specified by:
        toASN1Primitive in class org.bouncycastle.asn1.ASN1Object
        Returns:
        a DERObject