Package org.bouncycastle.asn1.crmf

Class POPOSigningKey

    • Constructor Detail

      • POPOSigningKey

        public POPOSigningKey​(POPOSigningKeyInput poposkIn,
                      AlgorithmIdentifier aid,
                      DERBitString signature)
        Creates a new Proof of Possession object for a signing key.
        Parameters:
        poposkIn - the POPOSigningKeyInput structure, or null if the CertTemplate includes both subject and publicKey values.
        aid - the AlgorithmIdentifier used to sign the proof of possession.
        signature - a signature over the DER-encoded value of poposkIn, or the DER-encoded value of certReq if poposkIn is null.

    • Method Detail

      • getInstance

        public static POPOSigningKey getInstance​(java.lang.Object o)

      • toASN1Primitive

        public ASN1Primitive toASN1Primitive()
         POPOSigningKey ::= SEQUENCE {
                      poposkInput           [0] POPOSigningKeyInput OPTIONAL,
                      algorithmIdentifier   AlgorithmIdentifier,
                      signature             BIT STRING }
  -- The signature (using "algorithmIdentifier") is on the
  -- DER-encoded value of poposkInput.  NOTE: If the CertReqMsg
  -- certReq CertTemplate contains the subject and publicKey values,
  -- then poposkInput MUST be omitted and the signature MUST be
  -- computed on the DER-encoded value of CertReqMsg certReq.  If
  -- the CertReqMsg certReq CertTemplate does not contain the public
  -- key and subject values, then poposkInput MUST be present and
  -- MUST be signed.  This strategy ensures that the public key is
  -- not present in both the poposkInput and CertReqMsg certReq
  -- CertTemplate fields.
        Specified by:
        toASN1Primitive in interface ASN1Encodable
        Specified by:
        toASN1Primitive in class ASN1Object
        Returns:
        a basic ASN.1 object representation.