Package eu.europa.esig.dss.cades.signature

Class CadesLevelBaselineLTATimestampExtractor

java.lang.Object
eu.europa.esig.dss.cades.signature.CadesLevelBaselineLTATimestampExtractor
public class CadesLevelBaselineLTATimestampExtractor extends Object
Extracts the necessary information to compute the CAdES Archive Timestamp V3.

  • Constructor Details

    • CadesLevelBaselineLTATimestampExtractor

      public CadesLevelBaselineLTATimestampExtractor(CAdESSignature cadesSignature)
      This is the default constructor for the CadesLevelBaselineLTATimestampExtractor.
      Parameters:
      cadesSignature - CAdESSignature related to the archive timestamp

    • CadesLevelBaselineLTATimestampExtractor

      public CadesLevelBaselineLTATimestampExtractor(org.bouncycastle.cms.CMSSignedData cmsSignedData, Collection<CertificateToken> certificates)
      Constructor with a custom collection of certificates
      Parameters:
      cmsSignedData - CMSSignedData
      certificates - a collection of CertificateTokens

  • Method Details

    • getAtsHashIndex

      public org.bouncycastle.asn1.cms.Attribute getAtsHashIndex(org.bouncycastle.cms.SignerInformation signerInformation, DigestAlgorithm hashIndexDigestAlgorithm, org.bouncycastle.asn1.ASN1ObjectIdentifier atsHashIndexVersionIdentifier)
      The ats-hash-index unsigned attribute provides an unambiguous imprint of the essential components of a CAdES signature for use in the archive time-stamp (see 6.4.3). These essential components are elements of the following ASN.1 SET OF structures: unsignedAttrs, SignedData.certificates, and SignedData.crls. The ats-hash-index attribute value has the ASN.1 syntax ATSHashIndex: ATSHashIndex ::= SEQUENCE { hashIndAlgorithm AlgorithmIdentifier DEFAULT {algorithm id-sha256}, certificatesHashIndex SEQUENCE OF OCTET STRING, crlsHashIndex SEQUENCE OF OCTET STRING,
      Parameters:
      signerInformation - SignerInformation
      hashIndexDigestAlgorithm - DigestAlgorithm
      atsHashIndexVersionIdentifier - ASN1ObjectIdentifier version of ats-hash-index to create
      Returns:
      Attribute ats-hash-index

    • getVerifiedAtsHashIndex

      public org.bouncycastle.asn1.cms.Attribute getVerifiedAtsHashIndex(org.bouncycastle.cms.SignerInformation signerInformation, TimestampToken timestampToken)
      get the atsHash index for verification of the provided token.
      Parameters:
      signerInformation - SignerInformation
      timestampToken - TimestampToken
      Returns:
      a re-built ats-hash-index

    • getArchiveTimestampV3MessageImprint

      public DSSMessageDigest getArchiveTimestampV3MessageImprint(org.bouncycastle.cms.SignerInformation signerInformation, org.bouncycastle.asn1.cms.Attribute atsHashIndexAttribute, DSSDocument originalDocument, DigestAlgorithm digestAlgorithm)
      Computes a message-imprint for an archive-time-stamp-v3
      Parameters:
      signerInformation - SignerInformation
      atsHashIndexAttribute - Attribute
      originalDocument - DSSDocument signed document
      digestAlgorithm - DigestAlgorithm to compute message-digest with
      Returns:
      DSSMessageDigest message-imprint digest