jadex.commons.security

Class SSecurity

java.lang.Object

jadex.commons.security.SSecurity

public class SSecurity
extends java.lang.Object

Class with static helper methods for security functions.

Field Summary

Fields

Modifier and Type	Field and Description
protected static java.security.SecureRandom	RANDOM Common secure random number source.

Constructor Summary

Constructors

Constructor and Description
SSecurity()

Method Summary

Modifier and Type	Method and Description
static void	addStartSSLCertificate(java.security.KeyStore ks, java.lang.String storepath, java.lang.String storepass) Add the startssl.com root certificate to the used store.
static void	addStartSSLToTrustStore(java.lang.String storepass) Add the start ssl cert to the Java trust store.
static java.security.cert.Certificate	createCertificate(java.io.InputStream in) Get the textual representation of a certificate.
static java.security.cert.Certificate	createCertificate(java.lang.String text) Get the textual representation of a certificate.
static java.security.cert.Certificate	generateCertificate(java.security.KeyPair pair, int days, java.lang.String algorithm) Create a self-signed X.509 Certificate
static java.security.cert.Certificate	generateCertificate(java.lang.String dn, java.security.KeyPair pair, int days, java.lang.String algorithm) Create a self-signed X.509 Certificate
static java.security.KeyPair	generateKeyPair(java.lang.String algorithm, int keysize) Create a self-signed X.509 Certificate
static java.security.SecureRandom	generateSecureRandom() Generates a secure PRNG.
static java.lang.String	getAlgorithm(java.security.cert.Certificate cert) Get the alogrithm name of a certificate.
static java.lang.String	getCertificateText(java.security.cert.Certificate cert) Get the textual representation of a certificate.
static java.lang.String	getHexMessageDigest(byte[] data, java.lang.String type) Get the digest of a message as a formatted String.
static int	getKeyLength(java.security.Key key) Get the key length.
static java.security.KeyStore	getKeystore(java.lang.String storepath, java.lang.String storepass, java.lang.String keypass, java.lang.String alias) Get keystore from a given file.
static java.security.SecureRandom	getSecureRandom() Gets access to the common secure PRNG.
static void	initKeystore(java.security.KeyStore ks, java.lang.String storepath, java.lang.String storepass, java.lang.String keypass, java.lang.String alias) Init keystore with a self-signed certificate.
static void	main(java.lang.String[] args) Main for testing.
static void	saveKeystore(java.security.KeyStore keystore, java.lang.String storepath, java.lang.String storepass) Get keystore from a given file.
static byte[]	signContent(java.security.PrivateKey key, java.security.Signature engine, byte[] content)
static boolean	verifyContent(java.security.PublicKey key, java.security.Signature engine, byte[] content, byte[] sig)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

RANDOM

protected static volatile java.security.SecureRandom RANDOM

Common secure random number source.

Constructor Detail

SSecurity

public SSecurity()

Method Detail

getSecureRandom

public static final java.security.SecureRandom getSecureRandom()

Gets access to the common secure PRNG.

Returns:

Common secure PRNG.

generateSecureRandom

public static final java.security.SecureRandom generateSecureRandom()

Generates a secure PRNG. The setup attempts to prepare a PRNG that avoids relying on a single approach.

Returns:

Secure PRNG.

getKeystore

public static java.security.KeyStore getKeystore(java.lang.String storepath,
                                                 java.lang.String storepass,
                                                 java.lang.String keypass,
                                                 java.lang.String alias)

Get keystore from a given file.

saveKeystore

public static void saveKeystore(java.security.KeyStore keystore,
                                java.lang.String storepath,
                                java.lang.String storepass)

Get keystore from a given file.

addStartSSLToTrustStore

public static void addStartSSLToTrustStore(java.lang.String storepass)

Add the start ssl cert to the Java trust store.

addStartSSLCertificate

public static void addStartSSLCertificate(java.security.KeyStore ks,
                                          java.lang.String storepath,
                                          java.lang.String storepass)

Add the startssl.com root certificate to the used store.

initKeystore

public static void initKeystore(java.security.KeyStore ks,
                                java.lang.String storepath,
                                java.lang.String storepass,
                                java.lang.String keypass,
                                java.lang.String alias)

Init keystore with a self-signed certificate.

generateCertificate

public static java.security.cert.Certificate generateCertificate(java.security.KeyPair pair,
                                                                 int days,
                                                                 java.lang.String algorithm)
                                                          throws java.security.GeneralSecurityException,
                                                                 java.io.IOException

Create a self-signed X.509 Certificate

Parameters:

dn - the X.509 Distinguished Name, eg "CN=Test, L=London, C=GB"

pair - the KeyPair

days - how many days from now the Certificate is valid for

algorithm - the signing algorithm, eg "SHA1withRSA"

Throws:

java.security.GeneralSecurityException

java.io.IOException

generateCertificate

public static java.security.cert.Certificate generateCertificate(java.lang.String dn,
                                                                 java.security.KeyPair pair,
                                                                 int days,
                                                                 java.lang.String algorithm)
                                                          throws java.security.GeneralSecurityException,
                                                                 java.io.IOException

Create a self-signed X.509 Certificate

Parameters:

dn - the X.509 Distinguished Name, eg "CN=Test, L=London, C=GB"

pair - the KeyPair

days - how many days from now the Certificate is valid for

algorithm - the signing algorithm, eg "SHA1withRSA"

Throws:

java.security.GeneralSecurityException

java.io.IOException

generateKeyPair

public static java.security.KeyPair generateKeyPair(java.lang.String algorithm,
                                                    int keysize)
                                             throws java.security.GeneralSecurityException,
                                                    java.io.IOException

Create a self-signed X.509 Certificate

Parameters:

dn - the X.509 Distinguished Name, eg "CN=Test, L=London, C=GB"

pair - the KeyPair

days - how many days from now the Certificate is valid for

algorithm - the signing algorithm, eg "SHA1withRSA"

Throws:

java.security.GeneralSecurityException

java.io.IOException

signContent

public static byte[] signContent(java.security.PrivateKey key,
                                 java.security.Signature engine,
                                 byte[] content)
                          throws java.security.InvalidKeyException,
                                 java.security.SignatureException

Throws:

java.security.InvalidKeyException

java.security.SignatureException

verifyContent

public static boolean verifyContent(java.security.PublicKey key,
                                    java.security.Signature engine,
                                    byte[] content,
                                    byte[] sig)
                             throws java.security.InvalidKeyException,
                                    java.security.SignatureException

Throws:

java.security.InvalidKeyException

java.security.SignatureException

getHexMessageDigest

public static java.lang.String getHexMessageDigest(byte[] data,
                                                   java.lang.String type)

Get the digest of a message as a formatted String.

getKeyLength

public static int getKeyLength(java.security.Key key)

Get the key length.

getCertificateText

public static java.lang.String getCertificateText(java.security.cert.Certificate cert)

Get the textual representation of a certificate.

createCertificate

public static java.security.cert.Certificate createCertificate(java.io.InputStream in)

Get the textual representation of a certificate.

createCertificate

public static java.security.cert.Certificate createCertificate(java.lang.String text)

Get the textual representation of a certificate.

getAlgorithm

public static java.lang.String getAlgorithm(java.security.cert.Certificate cert)

Get the alogrithm name of a certificate.

main

public static void main(java.lang.String[] args)

Main for testing.