sun.security.provider.certpath |
|
Java Source File Name | Type | Comment |
AdjacencyList.java | Class | An AdjacencyList is used to store the history of certification paths
attempted in constructing a path from an initiator to a target. |
BasicChecker.java | Class | BasicChecker is a PKIXCertPathChecker that checks the basic information
on a PKIX certificate, namely the signature, timestamp, and subject/issuer
name chaining. |
Builder.java | Class | Abstract class representing a builder, which is able to retrieve
matching certificates and is able to verify a particular certificate. |
BuildStep.java | Class | Describes one step of a certification path build, consisting of a
Vertex state description, a certificate, a possible throwable,
and a result code. |
CertId.java | Class | This class corresponds to the CertId field in OCSP Request
and the OCSP Response. |
CertPathHelper.java | Class | Helper class that allows access to Sun specific known-public methods in the
java.security.cert package. |
CollectionCertStore.java | Class | A CertStore that retrieves Certificates and
CRL s from a Collection .
Before calling the
CollectionCertStore.engineGetCertificates engineGetCertificates or
CollectionCertStore.engineGetCRLs engineGetCRLs methods, the
CollectionCertStore.CollectionCertStore(CertStoreParameters) CollectionCertStore(CertStoreParameters) constructor is called to
create the CertStore and establish the
Collection from which Certificate s and
CRL s will be retrieved. |
ConstraintsChecker.java | Class | ConstraintsChecker is a PKIXCertPathChecker that checks
constraints information on a PKIX certificate, namely basic constraints
and name constraints. |
CrlRevocationChecker.java | Class | CrlRevocationChecker is a PKIXCertPathChecker that checks
revocation status information on a PKIX certificate using CRLs obtained
from one or more CertStores . |
DistributionPointFetcher.java | Class | Class to obtain CRLs via the CRLDistributionPoints extension.
Note that the functionality of this class must be explicitly enabled
via a system property, see the USE_CRLDP variable below.
This class uses the URICertStore class to fetch CRLs. |
ForwardBuilder.java | Class | This class represents a forward builder, which is able to retrieve
matching certificates from CertStores and verify a particular certificate
against a ForwardState. |
ForwardState.java | Class | A specification of a forward PKIX validation state
which is initialized by each build and updated each time a
certificate is added to the current path. |
IndexedCollectionCertStore.java | Class | A CertStore that retrieves Certificates and
CRL s from a Collection .
This implementation is functionally equivalent to CollectionCertStore
with two differences:
- Upon construction, the elements in the specified Collection are
partially indexed.
|
KeyChecker.java | Class | KeyChecker is a PKIXCertPathChecker that checks that the
keyCertSign bit is set in the keyUsage extension in an intermediate CA
certificate. |
LDAPCertStore.java | Class | A CertStore that retrieves Certificates and
CRL s from an LDAP directory, using the PKIX LDAP V2 Schema
(RFC 2587):
http://www.ietf.org/rfc/rfc2587.txt.
Before calling the
LDAPCertStore.engineGetCertificates engineGetCertificates or
LDAPCertStore.engineGetCRLs engineGetCRLs methods, the
LDAPCertStore.LDAPCertStore(CertStoreParameters) LDAPCertStore(CertStoreParameters) constructor is called to create the
CertStore and establish the DNS name and port of the LDAP
server from which Certificate s and CRL s will be
retrieved.
Concurrent Access
As described in the javadoc for CertStoreSpi , the
engineGetCertificates and engineGetCRLs methods
must be thread-safe. |
OCSPChecker.java | Class | OCSPChecker is a PKIXCertPathChecker that uses the
Online Certificate Status Protocol (OCSP) as specified in RFC 2560
http://www.ietf.org/rfc/rfc2560.txt. |
OCSPRequest.java | Class | This class can be used to generate an OCSP request and send it over
an outputstream. |
OCSPResponse.java | Class | This class is used to process an OCSP response. |
PKIXCertPathValidator.java | Class | This class implements the PKIX validation algorithm for certification
paths consisting exclusively of X509Certificates . |
PKIXMasterCertPathValidator.java | Class | This class is initialized with a list of PKIXCertPathChecker s
and is used to verify the certificates in a CertPath by
feeding each certificate to each PKIXCertPathChecker . |
PolicyChecker.java | Class | PolicyChecker is a PKIXCertPathChecker that checks policy
information on a PKIX certificate, namely certificate policies, policy
mappings, policy constraints and policy qualifiers. |
PolicyNodeImpl.java | Class | Implements the PolicyNode interface.
This class provides an implementation of the PolicyNode
interface, and is used internally to build and search Policy Trees. |
ReverseBuilder.java | Class | This class represents a reverse builder, which is able to retrieve
matching certificates from CertStores and verify a particular certificate
against a ReverseState. |
ReverseState.java | Class | A specification of a reverse PKIX validation state
which is initialized by each build and updated each time a
certificate is added to the current path. |
State.java | Interface | A specification of a PKIX validation state
which is initialized by each build and updated each time a
certificate is added to the current path. |
SunCertPathBuilder.java | Class | This class is able to build certification paths in either the forward
or reverse directions.
If successful, it returns a certification path which has succesfully
satisfied all the constraints and requirements specified in the
PKIXBuilderParameters object and has been validated according to the PKIX
path validation algorithm defined in RFC 3280.
This implementation uses a depth-first search approach to finding
certification paths. |
SunCertPathBuilderException.java | Class | This is a subclass of the generic CertPathBuilderException .
It contains an adjacency list with information regarding the unsuccessful
paths that the SunCertPathBuilder tried. |
SunCertPathBuilderParameters.java | Class | This class specifies the set of parameters used as input for the Sun
certification path build algorithm. |
SunCertPathBuilderResult.java | Class | This class represents the result of a SunCertPathBuilder build.
Since all paths returned by the SunCertPathProvider are PKIX validated
the result contains the valid policy tree and subject public key returned
by the algorithm. |
URICertStore.java | Class | A CertStore that retrieves Certificates or
CRL s from a URI, for example, as specified in an X.509
AuthorityInformationAccess or CRLDistributionPoint extension. |
Vertex.java | Class | |
X509CertificatePair.java | Class | This class represents an X.509 Certificate Pair object, which is primarily
used to hold a pair of cross certificates issued between Certification
Authorities. |
X509CertPath.java | Class | A
java.security.cert.CertPath CertPath (certification path)
consisting exclusively of
java.security.cert.X509Certificate X509Certificate s.
By convention, X.509 CertPath s are stored from target
to trust anchor.
That is, the issuer of one certificate is the subject of the following
one. |