Package | Description |
---|---|
com.nimbusds.jose |
Javascript Object Signing and Encryption (JOSE) classes.
|
com.nimbusds.jose.crypto.factories |
JWS verifier and JWE decrypter factories for use by the JOSE / JWT processor
framework.
|
com.nimbusds.jose.crypto.impl |
Cryptographic primitives and framework for the JWS signers / verifiers and
JWE encrypters / decrypters in the
com.nimbusds.jose.crypto package. |
com.nimbusds.jose.jca |
Java Cryptography Architecture (JCA) context interfaces and classes.
|
com.nimbusds.jose.proc |
Secure framework for application-specific verification and decryption of
JOSE objects (with arbitrary payloads).
|
Modifier and Type | Field and Description |
---|---|
static EncryptionMethod |
EncryptionMethod.A128CBC_HS256
AES_128_CBC_HMAC_SHA_256 authenticated encryption using a 256 bit
key (required).
|
static EncryptionMethod |
EncryptionMethod.A128CBC_HS256_DEPRECATED
AES_128_CBC_HMAC_SHA_256 authenticated encryption using a 256 bit
key, deprecated in JOSE draft suite version 09.
|
static EncryptionMethod |
EncryptionMethod.A128GCM
AES in Galois/Counter Mode (GCM) (NIST.800-38D) using a 128 bit key
(recommended).
|
static EncryptionMethod |
EncryptionMethod.A192CBC_HS384
AES_192_CBC_HMAC_SHA_384 authenticated encryption using a 384 bit
key (optional).
|
static EncryptionMethod |
EncryptionMethod.A192GCM
AES in Galois/Counter Mode (GCM) (NIST.800-38D) using a 192 bit key
(optional).
|
static EncryptionMethod |
EncryptionMethod.A256CBC_HS512
AES_256_CBC_HMAC_SHA_512 authenticated encryption using a 512 bit
key (required).
|
static EncryptionMethod |
EncryptionMethod.A256CBC_HS512_DEPRECATED
AES_256_CBC_HMAC_SHA_512 authenticated encryption using a 512 bit
key, deprecated in JOSE draft suite version 09.
|
static EncryptionMethod |
EncryptionMethod.A256GCM
AES in Galois/Counter Mode (GCM) (NIST.800-38D) using a 256 bit key
(recommended).
|
Modifier and Type | Method and Description |
---|---|
EncryptionMethod |
JWEHeader.getEncryptionMethod()
Gets the encryption method (
enc ) parameter. |
static EncryptionMethod |
EncryptionMethod.parse(String s)
Parses an encryption method from the specified string.
|
Modifier and Type | Method and Description |
---|---|
Set<EncryptionMethod> |
JWEProvider.supportedEncryptionMethods()
Returns the names of the supported encryption methods by the JWE
provier.
|
Constructor and Description |
---|
Builder(JWEAlgorithm alg,
EncryptionMethod enc)
Creates a new JWE header builder.
|
Family(EncryptionMethod... encs)
Creates a new encryption method family.
|
JWEHeader(Algorithm alg,
EncryptionMethod enc,
JOSEObjectType typ,
String cty,
Set<String> crit,
URI jku,
JWK jwk,
URI x5u,
Base64URL x5t,
Base64URL x5t256,
List<Base64> x5c,
String kid,
JWK epk,
CompressionAlgorithm zip,
Base64URL apu,
Base64URL apv,
Base64URL p2s,
int p2c,
Base64URL iv,
Base64URL tag,
Map<String,Object> customParams,
Base64URL parsedBase64URL)
Creates a new JSON Web Encryption (JWE) header.
|
JWEHeader(JWEAlgorithm alg,
EncryptionMethod enc)
Creates a new minimal JSON Web Encryption (JWE) header.
|
Modifier and Type | Field and Description |
---|---|
static Set<EncryptionMethod> |
DefaultJWEDecrypterFactory.SUPPORTED_ENCRYPTION_METHODS
The supported encryption methods.
|
Modifier and Type | Method and Description |
---|---|
Set<EncryptionMethod> |
DefaultJWEDecrypterFactory.supportedEncryptionMethods() |
Modifier and Type | Field and Description |
---|---|
static Map<Integer,Set<EncryptionMethod>> |
ContentCryptoProvider.COMPATIBLE_ENCRYPTION_METHODS
The encryption methods compatible with each key size in bits.
|
static Set<EncryptionMethod> |
PasswordBasedCryptoProvider.SUPPORTED_ENCRYPTION_METHODS
The supported encryption methods by the password-base crypto
provider class.
|
static Set<EncryptionMethod> |
AESCryptoProvider.SUPPORTED_ENCRYPTION_METHODS
The supported encryption methods by the AES crypto provider class.
|
static Set<EncryptionMethod> |
ContentCryptoProvider.SUPPORTED_ENCRYPTION_METHODS
The supported encryption methods.
|
static Set<EncryptionMethod> |
DirectCryptoProvider.SUPPORTED_ENCRYPTION_METHODS
The supported encryption methods by the direct crypto provider
class.
|
static Set<EncryptionMethod> |
RSACryptoProvider.SUPPORTED_ENCRYPTION_METHODS
The supported encryption methods by the RSA crypto provider class.
|
static Set<EncryptionMethod> |
ECDHCryptoProvider.SUPPORTED_ENCRYPTION_METHODS
The supported encryption methods by the ECDH crypto provider class.
|
Modifier and Type | Method and Description |
---|---|
static SecretKey |
ContentCryptoProvider.generateCEK(EncryptionMethod enc,
SecureRandom randomGen)
Generates a Content Encryption Key (CEK) for the specified JOSE
encryption method.
|
static SecretKey |
LegacyConcatKDF.generateCEK(SecretKey key,
EncryptionMethod enc,
byte[] epu,
byte[] epv)
Generates a Content Encryption Key (CEK) from the specified
Content Master Key (CMK) and JOSE encryption method.
|
static SecretKey |
LegacyConcatKDF.generateCIK(SecretKey key,
EncryptionMethod enc,
byte[] epu,
byte[] epv)
Generates a Content Integrity Key (CIK) from the specified
Content Master Key (CMK) and JOSE encryption method.
|
static int |
ECDH.sharedKeyLength(JWEAlgorithm alg,
EncryptionMethod enc)
Returns the bit length of the shared key (derived via concat KDF)
for the specified JWE ECDH algorithm.
|
static String |
AlgorithmSupportMessage.unsupportedEncryptionMethod(EncryptionMethod unsupported,
Collection<EncryptionMethod> supported)
Returns a message that the specified JWE encryption method is not
supported.
|
Modifier and Type | Method and Description |
---|---|
static String |
AlgorithmSupportMessage.unsupportedEncryptionMethod(EncryptionMethod unsupported,
Collection<EncryptionMethod> supported)
Returns a message that the specified JWE encryption method is not
supported.
|
Modifier and Type | Method and Description |
---|---|
static boolean |
JCASupport.isSupported(EncryptionMethod enc)
Checks if the specified JWE encryption method is supported by the
default system JCA provider(s).
|
static boolean |
JCASupport.isSupported(EncryptionMethod enc,
Provider provider)
Checks if a JWE encryption method is supported by the specified
JCA provider.
|
Modifier and Type | Method and Description |
---|---|
EncryptionMethod |
JWEDecryptionKeySelector.getExpectedJWEEncryptionMethod()
The expected JWE encryption method.
|
Modifier and Type | Method and Description |
---|---|
Set<EncryptionMethod> |
JOSEMatcher.getEncryptionMethods()
Returns the JOSE encryption methods to match.
|
Modifier and Type | Method and Description |
---|---|
JOSEMatcher.Builder |
JOSEMatcher.Builder.encryptionMethod(EncryptionMethod enc)
Sets a single JOSE encryption method to match.
|
JOSEMatcher.Builder |
JOSEMatcher.Builder.encryptionMethods(EncryptionMethod... encs)
Sets multiple JOSE encryption methods to match.
|
Modifier and Type | Method and Description |
---|---|
JOSEMatcher.Builder |
JOSEMatcher.Builder.encryptionMethods(Set<EncryptionMethod> encs)
Sets multiple JOSE encryption methods to match.
|
Constructor and Description |
---|
JWEDecryptionKeySelector(JWEAlgorithm jweAlg,
EncryptionMethod jweEnc,
JWKSource<C> jwkSource)
Creates a new decryption key selector.
|
Constructor and Description |
---|
JOSEMatcher(Set<Class<? extends JOSEObject>> classes,
Set<Algorithm> algs,
Set<EncryptionMethod> encs,
Set<URI> jkus,
Set<String> kids)
Creates a new JOSE matcher.
|
Copyright © 2019 Connect2id Ltd.. All rights reserved.