|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectcom.pingidentity.access.JCEAccessor
public class JCEAccessor
Allows access to the JCE implementation used by PingFederate. There are 2 JCE implementations used by
PingFederate, depending upon the configuration.
They are:
The default SUN implmentation
The Luna implementation is used in conjunction with one of the SafeNet FIPS compatible devices.
Constructor Summary | |
---|---|
JCEAccessor()
Default constructor. |
Method Summary | |
---|---|
boolean |
allowPrivateKeyExport()
Tells whether it is possible to export private keys. |
java.lang.String |
getDefaultAlgorithm()
Gets the appropriate alorithm as a string. |
javax.crypto.Cipher |
getDefaultDecryptionCipher()
Provides access to the default decryption cipher used by PingFederate. |
javax.crypto.Cipher |
getDefaultEncryptionCipher()
This provides access to the default encryption cipher used by PingFederate. |
javax.crypto.spec.SecretKeySpec |
getDefaultSecretKeySpec()
Provides a SecretKeySpec object that was initialized using SHA1PRNG and the default algorithm. |
boolean |
inLunaMode()
Tells whether PF is operating with a SafeNet HSM. |
byte[] |
obfuscate(byte[] clearBytes)
Helper method that obfuscates the incoming bytes using getDefaultAlgorithm() ,
getDefaultSecretKeySpec() and getDefaultEncryptionCipher() . |
byte[] |
unobfuscate(byte[] obfuscatedBytes)
Helper method that unobfuscates the incoming bytes using getDefaultAlgorithm() ,
getDefaultSecretKeySpec() and getDefaultDecryptionCipher() . |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public JCEAccessor()
Method Detail |
---|
public boolean inLunaMode()
public boolean allowPrivateKeyExport()
public javax.crypto.Cipher getDefaultEncryptionCipher() throws com.pingidentity.common.util.ObfuscationException
inLunaMode()
, then default is "AES".
Cipher
object initialized to use the default algorithm.
com.pingidentity.common.util.ObfuscationException
public javax.crypto.Cipher getDefaultDecryptionCipher() throws com.pingidentity.common.util.ObfuscationException
inLunaMode()
, then the default is "AES".
Cipher
object initialized to use the default algorithm.
com.pingidentity.common.util.ObfuscationException
public javax.crypto.spec.SecretKeySpec getDefaultSecretKeySpec()
SecretKeySpec
object that was initialized using SHA1PRNG and the default algorithm.
The SecretKeySpec
is used when creating the appropriate Cipher
object.
SecretKeySpec
object.public java.lang.String getDefaultAlgorithm()
inLunaMode()
, this will either be 'Blowfish' for
default processing, or 'AES' if PF is operating with a SafeNet Luna HSM.
public byte[] obfuscate(byte[] clearBytes) throws com.pingidentity.common.util.ObfuscationException
getDefaultAlgorithm()
,
getDefaultSecretKeySpec()
and getDefaultEncryptionCipher()
.
clearBytes
- The bytes to obfuscate using the default algorithm.
com.pingidentity.common.util.ObfuscationException
public byte[] unobfuscate(byte[] obfuscatedBytes) throws com.pingidentity.common.util.ObfuscationException
getDefaultAlgorithm()
,
getDefaultSecretKeySpec()
and getDefaultDecryptionCipher()
.
obfuscatedBytes
- The obfuscated bytes that need to be unobfuscated.
com.pingidentity.common.util.ObfuscationException
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |