de.mtg.jzlint.lints.rfc.ExtAuthorityKeyIdentifierNoKeyIdentifier

All Implemented Interfaces:: JavaLint

public class ExtAuthorityKeyIdentifierNoKeyIdentifier extends Object implements JavaLint

RFC 5280: 4.2.1.1 The keyIdentifier field of the authorityKeyIdentifier extension MUST be included in all certificates generated by conforming CAs to facilitate certification path construction. There is one exception; where a CA distributes its public key in the form of a "self-signed" certificate, the authority key identifier MAY be omitted. The signature on a self-signed certificate is generated with the private key associated with the certificate's subject public key. (This proves that the issuer possesses both the public and private keys.) In this case, the subject and authority key identifiers would be identical, but only the subject key identifier is needed for certification path building.

Constructor Summary

Constructors

Constructor

Description

ExtAuthorityKeyIdentifierNoKeyIdentifier()
Method Summary

Modifier and Type

Method

Description

boolean

checkApplies(X509Certificate certificate)

LintResult

execute(X509Certificate certificate)

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- ExtAuthorityKeyIdentifierNoKeyIdentifier
  
  public ExtAuthorityKeyIdentifierNoKeyIdentifier()
Method Details
- execute
  
  public LintResult execute(X509Certificate certificate)
  
  Specified by:
  
  execute in interface JavaLint
- checkApplies
  
  public boolean checkApplies(X509Certificate certificate)
  
  Specified by:
  
  checkApplies in interface JavaLint

Class ExtAuthorityKeyIdentifierNoKeyIdentifier

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Details

ExtAuthorityKeyIdentifierNoKeyIdentifier

Method Details

execute

checkApplies