Class PKIXAttrCertPathValidatorSpi

java.lang.Object
java.security.cert.CertPathValidatorSpi
org.bouncycastle.jce.provider.PKIXAttrCertPathValidatorSpi

public class PKIXAttrCertPathValidatorSpi extends CertPathValidatorSpi
CertPathValidatorSpi implementation for X.509 Attribute Certificates la RFC 3281.
See Also:
  • ExtendedPKIXParameters
  • Constructor Details

    • PKIXAttrCertPathValidatorSpi

      public PKIXAttrCertPathValidatorSpi()
  • Method Details

    • engineValidate

      Validates an attribute certificate with the given certificate path.

      params must be an instance of ExtendedPKIXParameters.

      The target constraints in the params must be an X509AttributeCertStoreSelector with at least the attribute certificate criterion set. Obey that also target informations may be necessary to correctly validate this attribute certificate.

      The attribute certificate issuer must be added to the trusted attribute issuers with ExtendedPKIXParameters.setTrustedACIssuers(java.util.Set).

      Specified by:
      engineValidate in class CertPathValidatorSpi
      Parameters:
      certPath - The certificate path which belongs to the attribute certificate issuer public key certificate.
      params - The PKIX parameters.
      Returns:
      A PKIXCertPathValidatorResult of the result of validating the certPath.
      Throws:
      InvalidAlgorithmParameterException - if params is inappropriate for this validator.
      CertPathValidatorException - if the verification fails.