public class CertificateValidation
extends java.lang.Object
ValidationPolicy
),
the validation can be performed by calling the static functions listed in
this class
The certificate validation algorithm consist of two process.The first one is
Path Building and the second is Path Validation. Both of these operations are
implemented according to Path Building and Basic Path Validation Algorithms
described in RFC 5280(6.1). First a certificate path is built by path
building process and then that path is tried to be validated by path
validation process. Until a successfull path is found these two steps
continue.ECertificate
,
ECRL
,
EOCSPResponse
,
CertificateStatusInfo
,
CRLStatusInfo
,
OCSPResponseStatusInfo
Constructor and Description |
---|
CertificateValidation() |
Modifier and Type | Method and Description |
---|---|
static ValidationSystem |
createValidationSystem(ValidationPolicy aValidationPolicy)
Create validation system from policy
|
static CertificateStatusInfo |
validateCertificate(java.lang.String aPolicyFile,
tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate aCertificate,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aValidCertificates,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aUserInitialCertList)
Validates certificate
|
static CertificateStatusInfo |
validateCertificate(ValidationPolicy aValidationPolicy,
tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate aCertificate,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aValidCertificates,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aUserInitialCertList)
Validate certificate according to policy
|
static CertificateStatusInfo |
validateCertificate(ValidationSystem aValidationSystem,
tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate aCertificate)
Validate certificate
|
static CertificateStatusInfo |
validateCertificate(ValidationSystem aValidationSystem,
tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate aCertificate,
boolean aDoNotUsePastRevocationInfo)
Validate certificate
|
static java.util.Map<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate,CertificateStatusInfo> |
validateCertificates(java.lang.String aPolicyFile,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aCertificates,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aValidCertificates,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aUserInitialCertList)
Validates multiple certificates
|
static java.util.Map<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate,CertificateStatusInfo> |
validateCertificates(ValidationPolicy aValidationPolicy,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aCertificates,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aValidCertificates,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aUserInitialCertList)
Validates multiple certificates
|
static java.util.Map<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate,CertificateStatusInfo> |
validateCertificates(ValidationSystem aValidationSystem,
java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aCertificates,
boolean aDoNotUsePastRevocationInfo)
Validates multiple ceritificates
|
static CRLStatusInfo |
validateCRL(java.lang.String aPolicyFile,
tr.gov.tubitak.uekae.esya.api.asn.x509.ECRL aCRL)
validate CRL according to policy
|
static CRLStatusInfo |
validateCRL(ValidationPolicy aValidationPolicy,
tr.gov.tubitak.uekae.esya.api.asn.x509.ECRL aCRL)
validate CRL according to policy
|
static CRLStatusInfo |
validateCRL(ValidationSystem aValidationSystem,
tr.gov.tubitak.uekae.esya.api.asn.x509.ECRL aCRL)
validate CRL according to validation system
|
public static ValidationSystem createValidationSystem(ValidationPolicy aValidationPolicy) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aValidationPolicy
- policy fortr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static java.util.Map<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate,CertificateStatusInfo> validateCertificates(java.lang.String aPolicyFile, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aCertificates, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aValidCertificates, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aUserInitialCertList) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aPolicyFile
- XML policy config fileaCertificates
- list of ceritificates for validationaValidCertificates
- known valid certificatesaUserInitialCertList
- initial user defined ceritificatestr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static java.util.Map<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate,CertificateStatusInfo> validateCertificates(ValidationPolicy aValidationPolicy, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aCertificates, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aValidCertificates, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aUserInitialCertList) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aValidationPolicy
- validation policyaCertificates
- list of ceritificates to be validatedaValidCertificates
- known valid certificatesaUserInitialCertList
- initial user defined ceritificatestr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static java.util.Map<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate,CertificateStatusInfo> validateCertificates(ValidationSystem aValidationSystem, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aCertificates, boolean aDoNotUsePastRevocationInfo) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aValidationSystem
- validation parametersaCertificates
- list of ceritificates for validationtr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static CertificateStatusInfo validateCertificate(java.lang.String aPolicyFile, tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate aCertificate, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aValidCertificates, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aUserInitialCertList) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aPolicyFile
- XML policy config fileaCertificate
- for validationaValidCertificates
- known valid certificatesaUserInitialCertList
- initial user defined ceritificatestr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static CertificateStatusInfo validateCertificate(ValidationPolicy aValidationPolicy, tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate aCertificate, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aValidCertificates, java.util.List<tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate> aUserInitialCertList) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aValidationPolicy
- policy for validationaCertificate
- for validationaValidCertificates
- known valid certificatesaUserInitialCertList
- initial user defined ceritificatestr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static CertificateStatusInfo validateCertificate(ValidationSystem aValidationSystem, tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate aCertificate) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aValidationSystem
- that will be used for validationaCertificate
- for validationtr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static CertificateStatusInfo validateCertificate(ValidationSystem aValidationSystem, tr.gov.tubitak.uekae.esya.api.asn.x509.ECertificate aCertificate, boolean aDoNotUsePastRevocationInfo) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aValidationSystem
- that will be used for validationaCertificate
- for validationtr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static CRLStatusInfo validateCRL(java.lang.String aPolicyFile, tr.gov.tubitak.uekae.esya.api.asn.x509.ECRL aCRL) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aPolicyFile
- validation policy fileaCRL
- to be validatedtr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static CRLStatusInfo validateCRL(ValidationPolicy aValidationPolicy, tr.gov.tubitak.uekae.esya.api.asn.x509.ECRL aCRL) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aValidationPolicy
- policy for validationaCRL
- to be validatedtr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongpublic static CRLStatusInfo validateCRL(ValidationSystem aValidationSystem, tr.gov.tubitak.uekae.esya.api.asn.x509.ECRL aCRL) throws tr.gov.tubitak.uekae.esya.api.common.ESYAException
aValidationSystem
- validation system for validationaCRL
- to be validatedtr.gov.tubitak.uekae.esya.api.common.ESYAException
- if anything goes wrongCopyright © 2025. All rights reserved.