ESYAE-imza Kütüphaneleri

Bu sayfa salt okunur. Kaynağı görebilirsiniz ama değiştiremezsiniz. Bunun yanlış olduğunu düşünüyorsanız yöneticiye danışın.

<h2>Smartcard Signature</h2>
<div class="level2">

<p>
PKCS7 is one of the simplest form of signature. The class <code>PKCS7Signature</code> is responsible for the creation of PKCS7 signatures which can create both attached and detached signatures.   
The method <code>signExternalContent</code> creates a detached signature  whereas  <code>signInternalContent</code> creates an attached signature.
</p>

<p>
In the code segment below, the creation of a detached PKCS7 signature is demonstrated. The content can be extracted from an attached signature by using the method <code>getContentInfo().getContentBytes()</code>.
The code is only valid for Java and .NET API does not support PKCS7 signature.
</p>

<p>
<em><</em>sxh java;title:Java>
PKCS7Signature pkcsSignature = new PKCS7Signature();
ByteArrayOutputStream signature = new ByteArrayOutputStream();
</p>

<p>
SmartCard sc = new SmartCard(CardType.AKIS);
long [] slots = sc.getSlotList();
<em>sc.getSlotInfo(slots[0]).slotDescription;
long session = sc.openSession(slots[0]);
sc.login(session, "12345");

</em>Gets first certificate, it must be asked to user if it is more than one certificate.
byte [] certBytes = sc.getSignatureCertificates(session).get(0);
CertificateFactory cf = CertificateFactory.getInstance("X.509");
X509Certificate cert = (X509Certificate)cf.generateCertificate(new ByteArrayInputStream(certBytes));
</p>

<p>
BaseSigner signer = new SCSignerWithCertSerialNo(sc, session, slots[0]
</p>
<pre class="code">                                                                  ,cert.getSerialNumber().toByteArray() 
                                                                  , Algorithms.SIGNATURE_RSA_SHA1);

</pre><p> </p>

<p>
ByteArrayInputStream bais = new ByteArrayInputStream(toBeSigned);
pkcsSignature.signExternalContent(bais, cert, signature, signer);
</p>

<p>
Assert.assertEquals(true, validate(new ByteArrayInputStream(signature.toByteArray()), cert));
<em><</em>/sxh>
<em><</em>sxh java;title:Java>
PKCS7 p = new PKCS7(signature);
<em>validates the signature, not the person.
SignerInfo  [] signerInfo = p.verify(toBeSigned);
if(signerInfo == null)
	returnfalse;
else
{
	</em>Checks whether the expected person signed the data.
</p>
<pre class="code">return signerInfo[0].getCertificateSerialNumber().equals(cert.getSerialNumber()) == true;

</pre><p> </p>

<p>
}
<em><</em>/sxh>
</p>

</div>
ESYAE-imza Kütüphaneleri

User Tools

Site Tools

Page Tools
