com.ibm.security.certclient.util

Interface PkNewCertificate


  1. public interface PkNewCertificate
This interface allows an End Entity to create a personal certificate with selected extensions signed by the specified signing certificate.

Method Summary

Modifier and Type Method and Description
  1. X509Certificate[]
getCertificateChain()
Extract the personal Certificate chain
  1. PrivateKey
getKey()
Extract the private key for the personal certificate
  1. PublicKey
getPublicKey()
Extract the public key
  1. String
getSigAlg()
Extract the signature algorithm
  1. byte[]
getSubjectKeyIdentifier()
Extract the subject public key identifier
  1. String
getSubjectName()
Extract the subject name
  1. void
setToKeyStore(String alias,String password,KeyStore ks)
Store this personal certificate in a keystore

Method Detail

getKey

  1. PrivateKey getKey()
Extract the private key for the personal certificate
Returns:
the private key of the key pair created for this certificate

getCertificateChain

  1. X509Certificate[] getCertificateChain( )
Extract the personal Certificate chain
Returns:
the X509 certificate chain

getPublicKey

  1. PublicKey getPublicKey()
Extract the public key
Returns:
the X509 public key

getSubjectName

  1. String getSubjectName()
Extract the subject name
Returns:
the subject Distinguished Name as a String

getSigAlg

  1. String getSigAlg()
Extract the signature algorithm
Returns:
the string naming the certificate signing algorithm

getSubjectKeyIdentifier

  1. byte[] getSubjectKeyIdentifier( )
Extract the subject public key identifier
Returns:
the byte array containing the generated subject key identifier This uniquely identifies the private key corresponding to this certificate without exposing it

setToKeyStore

  1. void setToKeyStore(String alias,
  2. String password,
  3. KeyStore ks)
  4. throws com.ibm.security.certclient.base.PkException
Store this personal certificate in a keystore
Parameters:
alias - label to identify certificate in keystore
password - key protection password
ks - keystore where key is to be stored
Throws:
com.ibm.security.certclient.base.PkException