Creating MultipartSigned Entities Creating Digital Envelopes
6.3.3.3 Creating MultipartSigned Entities
The SmimeMultipartSigned class provides an alternative way to create signed messages. These messages use the multipartsigned mime type instead of applicationpkcs7-mime. The advantage is that the content of the resulting message is readable with non-MIME enabled mail clients, although such clients will not, of course, be able to verify the signature. Creating a multi-partsigned message is slightly different from creating a signed message. For example, to send a multi-partsigned text message: create the content text as a MIME body part MimeBodyPart bp = new MimeBodyPart; bp.setTextExample multipartsigned message.; the constructor takes the signature algorithm SmimeMultipartSigned sig = new SmimeMultipartSignedbp, AlgID.sha1; sign the content sig.addSignaturesignerKey, signerCert; place the content in a MIME message MimeMessage msg = new MimeMessage; msg.setContentsig, sig.generateContentType; The reason for identifying the message digest in the SmimeMultipartSigned constructor is that, unlike the case of applicationpkcs7-mime signed data objects, multipartsigned messages require that all signatures use the same message digest algorithm. The generateContentType method returns the following string: multipartsigned; protocol=applicationpkcs7-signature6.3.3.4 Creating Digital Envelopes
An SMIME digital envelope encrypted message is represented by the SmimeEnveloped class. This is a MIME entity which is formed by encrypting a MIME body part with some symmetric encryption algorithm eg, Triple-Des or RC2 and a randomly generated session key, then encrypting the session key with the RSA public key for each intended message recipient. In the following example, doc is an instance of MimeBodyPart, which is to be wrapped in an instance of SmimeEnveloped, and recipientCert is the recipients certificate. SmimeEnveloped env = new SmimeEnvelopeddoc, Smime.dES_EDE3_CBC; env.addRecipient recipientCert; Any number of envelope recipients may be added by making repeated calls to addRecipient.6.3.3.5 Creating Certificates-Only Messages
Parts
» Oracle Fusion Middleware Online Documentation Library
» Symmetric Cryptographic Algorithms Asymmetric Cryptographic Algorithms
» Key Pairs Certificate Authority Digital Certificates Related PKI Standards
» SAML Request and Response Cycle
» Web Services Security Federation
» Toolkit Architecture Overview of Oracle Security Developer Tools
» Supported Standards Oracle Crypto Oracle Security Engine Oracle CMS
» Oracle PKI LDAP SDK Oracle PKI TSP SDK Oracle PKI OCSP SDK Oracle PKI CMP SDK
» Oracle SMIME Oracle XML Security Oracle SAML Oracle Web Services Security
» Oracle Liberty SDK Oracle XKMS
» Converting an Existing Key Object to a JCE Key Object
» The JCE Framework JCE Certificate Revocation Lists CRLs
» Working with standard KeyStore-type Wallets Working with PKCS12 and PKCS8 Wallets
» The RSA Cipher Password Based Encryption
» The oracle.security.crypto.core.MessageDigest Class The oracle.security.crypto.core.MAC Class
» Signatures Key Agreement Core Classes and Interfaces
» The oracle.security.crypto.cert.X500RDN Class The oracle.security.crypto.cert.X500Name Class
» The oracle.security.crypto.cert.CertificateRequest Class
» Abstract Base Class CMSContentInfo The CMSDataContentInfo Class
» The ESSReceipt Class The CMSDigestedDataContentInfo Class
» The CMSSignedDataContentInfo Class Constructing CMS Objects using the CMSContentInfo Classes
» The CMSEncryptedDataContentInfo Class Constructing CMS Objects using the CMSContentInfo Classes
» The CMSEnvelopedDataContentInfo Class Constructing CMS Objects using the CMSContentInfo Classes
» Using the CMSOutputStream and CMSInputStream Classes
» The oracle.security.crypto.smime.SmimeSigned Class
» The oracle.security.crypto.smime.SmimeSignedReceipt Class
» Using the Abstract Class SmimeObject
» Creating MultipartSigned Entities Creating Digital Envelopes
» Creating Certificates-Only Messages Reading Messages Authenticating Signed Messages
» Opening Digital Envelopes Encrypted Messages Adding Enhanced Security Services ESS
» System Requirements for Oracle PKI TSP SDK Setting the CLASSPATH Environment Variable
» The Oracle PKI LDAP SDK Java API Reference Example Programs
» Set Up Key Exchange Provide a Receiver Hint
» Construct the Wrapper Object Obtain the DOM Element from the Wrapper Object Parse Complex Elements
» Construct Complex Elements About Element Wrappers in the Oracle Security Developer Tools XML APIs
» Multiple References Enveloped Signature XPath Expression Certificate Hint Sign with HMAC Key
» Basic Procedure to Check What is Signed Set Up Callbacks
» Encrypt with a Shared Symmetric Key Encrypt with a Random Symmetric Key
» Core Classes Classes and Interfaces
» Oracle SAML 2.0 Packages The Oracle SAML 2.0 Java API Reference Example Programs
» Element Wrappers Classes and Interfaces
» Creating an X509 Token Creating a Kerberos Token
» Signing SOAP Messages Signing and Verifying
» Verifying SOAP Messages Signing and Verifying
» Encrypting SOAP messages with EncryptedKey
» Supporting Classes and Interfaces
» The Oracle Liberty SDK 1.2 API Reference Example Programs
» oracle.security.xmlsec.xkms.xkiss.LocateRequest oracle.security.xmlsec.xkms.xkiss.LocateResult
» oracle.security.xmlsec.xkms.xkiss.ValidateRequest oracle.security.xmlsec.xkms.xkiss.ValidateResult
Show more