org.bouncycastle.crypto.asymmetric.AsymmetricECKey Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of bc-fips Show documentation
Show all versions of bc-fips Show documentation
The FIPS 140-3 Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms certified to FIPS 140-3 level 1. This jar contains JCE provider and low-level API for the BC-FJA version 2.0.0, FIPS Certificate #4743. Please see certificate for certified platform details.
package org.bouncycastle.crypto.asymmetric;
import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
import org.bouncycastle.crypto.Algorithm;
import org.bouncycastle.crypto.AsymmetricKey;
import org.bouncycastle.crypto.CryptoServicesRegistrar;
import org.bouncycastle.crypto.fips.FipsUnapprovedOperationError;
/**
* Base class for Elliptic Curve (EC) keys.
*/
public abstract class AsymmetricECKey
implements AsymmetricKey
{
private final boolean approvedModeOnly;
private Algorithm algorithm;
private ECDomainParameters domainParameters;
AsymmetricECKey(Algorithm algorithm, ECDomainParameters domainParameters)
{
this.approvedModeOnly = CryptoServicesRegistrar.isInApprovedOnlyMode();
this.algorithm = algorithm;
this.domainParameters = domainParameters;
}
AsymmetricECKey(Algorithm algorithm, ECDomainParametersID domainParameterID)
{
this(algorithm, ECDomainParametersIndex.lookupDomainParameters(domainParameterID));
}
AsymmetricECKey(Algorithm algorithm, AlgorithmIdentifier algorithmIdentifier)
{
this(algorithm, ECDomainParameters.decodeCurveParameters(algorithmIdentifier));
}
/**
* Return the algorithm this Elliptic Curve key is for.
*
* @return the key's algorithm.
*/
public Algorithm getAlgorithm()
{
return algorithm;
}
/**
* Return the Elliptic Curve domain parameters associated with this key.
*
* @return the EC domain parameters for the key.
*/
public ECDomainParameters getDomainParameters()
{
return domainParameters;
}
protected void zeroize()
{
this.algorithm = null;
this.domainParameters = null;
}
protected final void checkApprovedOnlyModeStatus()
{
if (approvedModeOnly != CryptoServicesRegistrar.isInApprovedOnlyMode())
{
throw new FipsUnapprovedOperationError("No access to key in current thread.");
}
}
}