org.cryptacular.util

Class KeyPairUtil

java.lang.Object

org.cryptacular.util.KeyPairUtil

public final class KeyPairUtil
extends java.lang.Object

Utility methods for public/private key pairs used for asymmetric encryption.

Field Summary

Fields

Modifier and Type	Field and Description
private static byte[]	SIGN_BYTES Data used to verify key pairs.

Constructor Summary

Constructors

Modifier	Constructor and Description
private	KeyPairUtil() Private constructor of utility class.

Method Summary

Modifier and Type	Method and Description
static java.security.PrivateKey	decodePrivateKey(byte[] encodedKey) Decodes an encoded private key in either PKCS#8 or OpenSSL "traditional" format in either DER or PEM encoding.
static java.security.PrivateKey	decodePrivateKey(byte[] encryptedKey, char[] password) Decodes an encrypted private key.
static java.security.PublicKey	decodePublicKey(byte[] encoded) Decodes public keys formatted in an X.509 SubjectPublicKeyInfo structure in either PEM or DER encoding.
static boolean	isKeyPair(java.security.interfaces.DSAPublicKey pubKey, java.security.interfaces.DSAPrivateKey privKey) Determines whether the given DSA public and private keys form a proper key pair by computing and verifying a digital signature with the keys.
static boolean	isKeyPair(java.security.interfaces.ECPublicKey pubKey, java.security.interfaces.ECPrivateKey privKey) Determines whether the given EC public and private keys form a proper key pair by computing and verifying a digital signature with the keys.
static boolean	isKeyPair(java.security.PublicKey pubKey, java.security.PrivateKey privKey) Determines whether the given public and private keys form a proper key pair by computing and verifying a digital signature with the keys.
static boolean	isKeyPair(java.security.interfaces.RSAPublicKey pubKey, java.security.interfaces.RSAPrivateKey privKey) Determines whether the given RSA public and private keys form a proper key pair by computing and verifying a digital signature with the keys.
static int	length(java.security.PrivateKey privKey) Gets the length in bits of a private key where key size is dependent on the particulars of the algorithm.
static int	length(java.security.PublicKey pubKey) Gets the length in bits of a public key where key size is dependent on the particulars of the algorithm.
static java.security.PrivateKey	readPrivateKey(java.io.File file) Reads an encoded private key from a file.
static java.security.PrivateKey	readPrivateKey(java.io.File file, char[] password) Reads an encrypted private key from a file.
static java.security.PrivateKey	readPrivateKey(java.io.InputStream in) Reads an encoded private key from an input stream.
static java.security.PrivateKey	readPrivateKey(java.io.InputStream in, char[] password) Reads an encrypted private key from an input stream.
static java.security.PrivateKey	readPrivateKey(java.lang.String path) Reads an encoded private key from a file at the given path.
static java.security.PrivateKey	readPrivateKey(java.lang.String path, char[] password) Reads an encrypted private key from a file at the given path.
static java.security.PublicKey	readPublicKey(java.io.File file) Reads a DER or PEM-encoded public key from a file.
static java.security.PublicKey	readPublicKey(java.io.InputStream in) Reads a DER or PEM-encoded public key from data in the given stream.
static java.security.PublicKey	readPublicKey(java.lang.String path) Reads a DER or PEM-encoded public key from a file.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

SIGN_BYTES

private static final byte[] SIGN_BYTES

Data used to verify key pairs.

Constructor Detail

KeyPairUtil

private KeyPairUtil()

Private constructor of utility class.

Method Detail

length

public static int length(java.security.PublicKey pubKey)

Gets the length in bits of a public key where key size is dependent on the particulars of the algorithm.

• DSA - length of p
• EC - length of p for prime fields, m for binary fields
• RSA - length of modulus

Parameters:

pubKey - Public key.

Returns:

Size of the key in bits.

length

public static int length(java.security.PrivateKey privKey)

Gets the length in bits of a private key where key size is dependent on the particulars of the algorithm.

• DSA - length of q in bits
• EC - length of p for prime fields, m for binary fields
• RSA - modulus length in bits

Parameters:

privKey - Private key.

Returns:

Size of the key in bits.

isKeyPair

public static boolean isKeyPair(java.security.PublicKey pubKey,
                                java.security.PrivateKey privKey)
                         throws CryptoException

Determines whether the given public and private keys form a proper key pair by computing and verifying a digital signature with the keys.

Parameters:

pubKey - DSA, RSA or EC public key.

privKey - DSA, RSA, or EC private key.

Returns:

True if the keys form a functioning keypair, false otherwise. Errors during signature verification are treated as false.

Throws:

CryptoException - on key validation errors.

isKeyPair

public static boolean isKeyPair(java.security.interfaces.DSAPublicKey pubKey,
                                java.security.interfaces.DSAPrivateKey privKey)
                         throws CryptoException

Determines whether the given DSA public and private keys form a proper key pair by computing and verifying a digital signature with the keys.

Parameters:

pubKey - DSA public key.

privKey - DSA private key.

Returns:

True if the keys form a functioning keypair, false otherwise. Errors during signature verification are treated as false.

Throws:

CryptoException - on key validation errors.

isKeyPair

public static boolean isKeyPair(java.security.interfaces.RSAPublicKey pubKey,
                                java.security.interfaces.RSAPrivateKey privKey)
                         throws CryptoException

Determines whether the given RSA public and private keys form a proper key pair by computing and verifying a digital signature with the keys.

Parameters:

pubKey - RSA public key.

privKey - RSA private key.

Returns:

True if the keys form a functioning keypair, false otherwise. Errors during signature verification are treated as false.

Throws:

CryptoException - on key validation errors.

isKeyPair

public static boolean isKeyPair(java.security.interfaces.ECPublicKey pubKey,
                                java.security.interfaces.ECPrivateKey privKey)
                         throws CryptoException

Determines whether the given EC public and private keys form a proper key pair by computing and verifying a digital signature with the keys.

Parameters:

pubKey - EC public key.

privKey - EC private key.

Returns:

True if the keys form a functioning keypair, false otherwise. Errors during signature verification are treated as false.

Throws:

CryptoException - on key validation errors.

readPrivateKey

public static java.security.PrivateKey readPrivateKey(java.lang.String path)
                                               throws EncodingException,
                                                      StreamException

Reads an encoded private key from a file at the given path. Both PKCS#8 and OpenSSL "traditional" formats are supported in DER or PEM encoding. See decodePrivateKey(byte[]) for supported asymmetric algorithms.

Parameters:

path - Path to private key file.

Returns:

Private key.

Throws:

EncodingException - on key encoding errors.

StreamException - on IO errors reading data from file.

readPrivateKey

public static java.security.PrivateKey readPrivateKey(java.io.File file)
                                               throws EncodingException,
                                                      StreamException

Reads an encoded private key from a file. Both PKCS#8 and OpenSSL "traditional" formats are supported in DER or PEM encoding. See decodePrivateKey(byte[]) for supported asymmetric algorithms.

Parameters:

file - Private key file.

Returns:

Private key.

Throws:

EncodingException - on key encoding errors.

StreamException - on IO errors reading data from file.

readPrivateKey

public static java.security.PrivateKey readPrivateKey(java.io.InputStream in)
                                               throws EncodingException,
                                                      StreamException

Reads an encoded private key from an input stream. Both PKCS#8 and OpenSSL "traditional" formats are supported in DER or PEM encoding. See decodePrivateKey(byte[]) for supported asymmetric algorithms.

Parameters:

in - Input stream containing private key data.

Returns:

Private key.

Throws:

EncodingException - on key encoding errors.

StreamException - on IO errors reading data from file.

readPrivateKey

public static java.security.PrivateKey readPrivateKey(java.lang.String path,
                                                      char[] password)
                                               throws EncodingException,
                                                      StreamException

Reads an encrypted private key from a file at the given path. Both PKCS#8 and OpenSSL "traditional" formats are supported in DER or PEM encoding. See decodePrivateKey(byte[]) for supported asymmetric algorithms.

Parameters:

path - Path to private key file.

password - Password used to encrypt private key.

Returns:

Private key.

Throws:

EncodingException - on key encoding errors.

StreamException - on IO errors.

readPrivateKey

public static java.security.PrivateKey readPrivateKey(java.io.File file,
                                                      char[] password)
                                               throws EncodingException,
                                                      StreamException

Reads an encrypted private key from a file. Both PKCS#8 and OpenSSL "traditional" formats are supported in DER or PEM encoding. See decodePrivateKey(byte[]) for supported asymmetric algorithms.

Parameters:

file - Private key file.

password - Password used to encrypt private key.

Returns:

Private key.

Throws:

EncodingException - on key encoding errors.

StreamException - on IO errors.

readPrivateKey

public static java.security.PrivateKey readPrivateKey(java.io.InputStream in,
                                                      char[] password)
                                               throws EncodingException,
                                                      StreamException

Reads an encrypted private key from an input stream. Both PKCS#8 and OpenSSL "traditional" formats are supported in DER or PEM encoding. See decodePrivateKey(byte[]) for supported asymmetric algorithms.

Parameters:

in - Input stream containing private key data.

password - Password used to encrypt private key.

Returns:

Private key.

Throws:

EncodingException - on key encoding errors.

StreamException - on IO errors.

decodePrivateKey

public static java.security.PrivateKey decodePrivateKey(byte[] encodedKey)
                                                 throws EncodingException

Decodes an encoded private key in either PKCS#8 or OpenSSL "traditional" format in either DER or PEM encoding. Keys from the following asymmetric algorithms are supported:

• DSA
• RSA
• Elliptic curve

Parameters:

encodedKey - Encoded private key data.

Returns:

Private key.

Throws:

EncodingException - on key encoding errors.

decodePrivateKey

public static java.security.PrivateKey decodePrivateKey(byte[] encryptedKey,
                                                        char[] password)
                                                 throws EncodingException

Decodes an encrypted private key. The following formats are supported:

• DER or PEM encoded PKCS#8 format
• PEM encoded OpenSSL "traditional" format

Keys from the following asymmetric algorithms are supported:

• DSA
• RSA
• Elliptic curve

Parameters:

encryptedKey - Encrypted private key data.

password - Password used to encrypt private key.

Returns:

Private key.

Throws:

EncodingException - on key encoding errors.

readPublicKey

public static java.security.PublicKey readPublicKey(java.lang.String path)
                                             throws EncodingException,
                                                    StreamException

Reads a DER or PEM-encoded public key from a file.

Parameters:

path - Path to DER or PEM-encoded public key file.

Returns:

Public key.

Throws:

EncodingException - on key encoding errors.

StreamException - on IO errors.

readPublicKey

public static java.security.PublicKey readPublicKey(java.io.File file)
                                             throws EncodingException,
                                                    StreamException

Reads a DER or PEM-encoded public key from a file.

Parameters:

file - DER or PEM-encoded public key file.

Returns:

Public key.

Throws:

EncodingException - on key encoding errors.

StreamException - on IO errors.

readPublicKey

public static java.security.PublicKey readPublicKey(java.io.InputStream in)
                                             throws EncodingException,
                                                    StreamException

Reads a DER or PEM-encoded public key from data in the given stream.

Parameters:

in - Input stream containing an encoded key.

Returns:

Public key.

Throws:

EncodingException - on key encoding errors.

StreamException - on IO errors.

decodePublicKey

public static java.security.PublicKey decodePublicKey(byte[] encoded)
                                               throws EncodingException

Decodes public keys formatted in an X.509 SubjectPublicKeyInfo structure in either PEM or DER encoding.

Parameters:

encoded - Encoded public key bytes.

Returns:

Public key.

Throws:

EncodingException - on key encoding errors.