com.inductiveautomation.ignition.common.util

Class SecurityUtils

java.lang.Object

com.inductiveautomation.ignition.common.util.SecurityUtils

public class SecurityUtils
extends java.lang.Object

Constructor Summary

Constructors

Constructor and Description
SecurityUtils()

Method Summary

Modifier and Type	Method and Description
static byte[]	asymmetricSign(java.security.interfaces.RSAPrivateKey key, byte[] source, int offset, int length)
static boolean	asymmetricVerify(java.security.interfaces.RSAPublicKey key, byte[] source, int offset, int length, byte[] signature, int sigOff, int sigLen)
static java.lang.String	certificateThumbprintToString(byte[] buf)
static byte[]	decryptDESede(byte[] toDecrypt, byte[] keyBytes) Performs symmetric decryption using DESede.
static byte[]	decryptRSA(byte[] source, java.security.Key key)
static byte[]	encryptDESede(byte[] toEncrypt, byte[] keyBytes) Performs symmetric encryption using DESede.
static byte[]	generateDESedKey()
static java.lang.String	getCertificateThumbprint(java.security.cert.X509Certificate certificate) Returns a to-stringed hash of the certificate encoded bytes.
static byte[]	getCertificateThumbprintBytes(java.security.cert.X509Certificate certificate) Returns a hash of the certificate encoded bytes.
static org.bouncycastle.crypto.params.RSAKeyParameters	getKeyParameter(java.security.interfaces.RSAKey key) Returns a parameter object suitable for initializing a Bouncy Castle RSAEngine asymmetric block cipher
static org.bouncycastle.crypto.params.RSAKeyParameters	getPrivateKeyParameter(java.security.interfaces.RSAPrivateKey key) Returns a parameter object suitable for initializing a Bouncy Castle RSAEngine asymmetric block cipher
static org.bouncycastle.crypto.params.RSAKeyParameters	getPublicKeyParameter(java.security.interfaces.RSAPublicKey key) Returns a parameter object suitable for initializing a Bouncy Castle RSAEngine asymmetric block cipher
static byte[]	md5(java.io.File file)
static byte[]	md5(java.io.InputStream stream)
static java.security.cert.X509Certificate	parseX509Certificate(byte[] input) Creates an X509Certificate object from DER encoded binary or PEM encoded ASCII
static java.util.List<java.security.cert.X509Certificate>	parseX509Certificates(byte[] input)
static java.util.List<java.security.cert.X509Certificate>	parseX509Certificates(java.io.InputStream inputStream)
static byte[]	sha1(byte[] input) Performs a sha1 digest on the given input array, returning the digest as a byte array
static java.lang.String	sha1String(java.lang.String input) Performs a sha1 digest on the input string encoded as UTF-8, returns the digest as Base64-ed bytes.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

SecurityUtils

public SecurityUtils()

Method Detail

getKeyParameter

public static org.bouncycastle.crypto.params.RSAKeyParameters getKeyParameter(java.security.interfaces.RSAKey key)

Returns a parameter object suitable for initializing a Bouncy Castle RSAEngine asymmetric block cipher

getPublicKeyParameter

public static org.bouncycastle.crypto.params.RSAKeyParameters getPublicKeyParameter(java.security.interfaces.RSAPublicKey key)

Returns a parameter object suitable for initializing a Bouncy Castle RSAEngine asymmetric block cipher

getPrivateKeyParameter

public static org.bouncycastle.crypto.params.RSAKeyParameters getPrivateKeyParameter(java.security.interfaces.RSAPrivateKey key)

Returns a parameter object suitable for initializing a Bouncy Castle RSAEngine asymmetric block cipher

sha1

public static byte[] sha1(byte[] input)

Performs a sha1 digest on the given input array, returning the digest as a byte array

sha1String

public static java.lang.String sha1String(java.lang.String input)

Performs a sha1 digest on the input string encoded as UTF-8, returns the digest as Base64-ed bytes.

md5

public static byte[] md5(java.io.File file)
                  throws java.io.IOException,
                         java.io.FileNotFoundException

Throws:

java.io.IOException

java.io.FileNotFoundException

md5

public static byte[] md5(java.io.InputStream stream)
                  throws java.io.IOException

Throws:

java.io.IOException

parseX509Certificate

public static java.security.cert.X509Certificate parseX509Certificate(byte[] input)
                                                               throws java.security.cert.CertificateException

Creates an X509Certificate object from DER encoded binary or PEM encoded ASCII

Throws:

java.security.cert.CertificateException

parseX509Certificates

public static java.util.List<java.security.cert.X509Certificate> parseX509Certificates(byte[] input)
                                                                                throws java.security.cert.CertificateException

Throws:

java.security.cert.CertificateException

parseX509Certificates

public static java.util.List<java.security.cert.X509Certificate> parseX509Certificates(java.io.InputStream inputStream)
                                                                                throws java.security.cert.CertificateException

Throws:

java.security.cert.CertificateException

asymmetricSign

public static byte[] asymmetricSign(java.security.interfaces.RSAPrivateKey key,
                                    byte[] source,
                                    int offset,
                                    int length)
                             throws java.lang.Exception

Throws:

java.lang.Exception

asymmetricVerify

public static boolean asymmetricVerify(java.security.interfaces.RSAPublicKey key,
                                       byte[] source,
                                       int offset,
                                       int length,
                                       byte[] signature,
                                       int sigOff,
                                       int sigLen)

decryptRSA

public static byte[] decryptRSA(byte[] source,
                                java.security.Key key)
                         throws java.lang.Exception

Throws:

java.lang.Exception

encryptDESede

public static byte[] encryptDESede(byte[] toEncrypt,
                                   byte[] keyBytes)
                            throws java.lang.Exception

Performs symmetric encryption using DESede. Uses ECB mode and PKCS5 padding.

Parameters:

toEncrypt - A byte[] to encrypt. Must not be null.

keyBytes - The key to use. must be 24 bytes long.

Returns:

Throws:

java.lang.Exception

decryptDESede

public static byte[] decryptDESede(byte[] toDecrypt,
                                   byte[] keyBytes)
                            throws java.lang.Exception

Performs symmetric decryption using DESede. Uses ECB mode and PKCS5 padding.

Parameters:

toDecrypt - A byte[] to decrypt. Must not be null.

keyBytes - The key to use. must be 24 bytes long.

Returns:

Throws:

java.lang.Exception

generateDESedKey

public static byte[] generateDESedKey()
                               throws java.lang.Exception

Throws:

java.lang.Exception

getCertificateThumbprint

public static java.lang.String getCertificateThumbprint(java.security.cert.X509Certificate certificate)
                                                 throws java.lang.Exception

Returns a to-stringed hash of the certificate encoded bytes. Each certificate's hash is unique, and so certificates can be compared using their hashes to check equality.

Parameters:

certificate -

Returns:

Throws:

java.lang.Exception

certificateThumbprintToString

public static java.lang.String certificateThumbprintToString(byte[] buf)
                                                      throws java.lang.Exception

Throws:

java.lang.Exception

getCertificateThumbprintBytes

public static byte[] getCertificateThumbprintBytes(java.security.cert.X509Certificate certificate)
                                            throws java.security.cert.CertificateEncodingException

Returns a hash of the certificate encoded bytes. Each certificate's hash is unique, and so certificates can be compared using their hashes to check equality.

Parameters:

certificate -

Returns:

Throws:

java.security.cert.CertificateEncodingException