org.mozilla.jss.crypto

Interface TokenCertificate

public interface TokenCertificate extends X509Certificate

An X509 Certificate that lives on a PKCS #11 token. Many of the X509Certificates returned by JSS calls are actually TokenCertificates. To find out if an X509Certificate is a TokenCertificate, use instanceof.
Method Summary
abstract CryptoTokengetOwningToken()
Returns the CryptoToken that owns this certificate.
abstract byte[]getUniqueID()
Returns the unique ID of this key.

Method Detail

getOwningToken

public abstract CryptoToken getOwningToken()
Returns the CryptoToken that owns this certificate. Cryptographic operations with this key may only be performed on the token that owns the key.

getUniqueID

public abstract byte[] getUniqueID()

Deprecated: This ID is based on an implementation that might change. If this functionality is required, it should be provided in another way, such as a function that directly matches a cert and key.

Returns the unique ID of this key. Unique IDs can be used to match certificates to keys.

See Also: PrivateKey