All Classes and Interfaces
Class
Description
Abstract implementation of
InternalEvidenceRecordHelper containing common implementation methodsAbstract implementation of the
SignatureEvidenceRecordDigestGeneratorThe abstract SignatureIdentifier builder
The abstract implementation of
SignaturePolicyValidatorThe abstract class for
SignatureScope findingContains a set of
TimestampTokens found in a DefaultAdvancedSignature objectProvides an abstraction for an Advanced Electronic Signature.
The certificate source requesting issuer certificates by AIA
Interface that allows loading of issuing certificates
by defined AIA URI within a
eu.europa.esig.dss.model.x509.CertificateTokenThis class allows to inject alternative urls to collect revocation data.
This class contains information on the validation status of the ats-hash-index(-v3) attribute defined
within a timestamp of the archive-time-stamp-v3.
This class is used to retrieve the used certificates for a signature from the user parameters.
Checks conformance of a signature to the requested baseline format
Default implementation, checks only the hash of the policy
Note : this implementation is not registered as a service to allow overriding
Used to compare two byte arrays.
This class holds the list of the candidates for the signing certificate of the main signature.
This class contains utility methods for extraction certificate extension (whether critical or not)
This class represents a Certificate Reference entry extracted from a signature
An identifier for a certificate token reference
Reorders a certificate collection to the corresponding certificate chain
The validation of a certificate requires to access some other certificates from multiple sources (Trusted List, Trust
Store, the signature itself).
This interface defines items of a certificate source, for instance certificates grouped by a public key
This class is used to verify if a given
CertificateToken matches a CertificateRefThis class stores the information about the validity of the signing certificate.
Provides information on the sources to be used in the validation process in
the context of a signature.
Builds a copy of CertificateVerifier
CMS certificate source
CRLSource that retrieves information from a
CMSSignedData container.OCSPSource that retrieves information from a
CMSSignedData container.This class is the common class for all
CertificateSource.This class provides the different sources used to verify the status of a certificate using the trust model.
This class represents the simple list of trusted certificates.
This class executes complete validation of the
ValidationContext, including running of all checks
with the alerts processing specified in CertificateVerifierThis class allows to retrieve a AIA with different sources.
This class allows to retrieve a RevocationToken with different sources.
This class allows to retrieve a timestamp with different sources.
This SignatureScope represents a content of a package.zip container file for an ASiC-S container
This Signature Scope represents a "package.zip" container for ASiC-S signatures
This signature scope is used to refer a counter-signed SignatureValue
This class fetches firstly CRL response, if not available, tries OCSP and returns the first succeeded result
This class initializes a
CRLFirstRevocationDataLoadingStrategy.Reference to a X509CRL
Typed sub-interface which allows collection of
CRLToken(s).This class represents a CRL and provides the information about its validity.
This class is used to match a CRL with a reference
Component that allows to retrieve the data using any protocol: HTTP, HTTPS, FTP, LDAP.
This is an internal class used to model the couple data and url used to obtain this data.
A common interface for the classes providing a functionality build digest for data objects
to be protected by an evidence record preservation service
Creates an instance of
eu.europa.esig.dss.spi.x509.evidencerecord.DataObjectDigestBuilderA common implementation of
AdvancedSignatureThe class is used to download issuer certificates by AIA from remote sources
This class contains a common code for processing of signed documents
Loads a relevant
SignaturePolicyValidator based on the policy contentThis class performs basic validation of
eu.europa.esig.dss.spi.validation.ValidationContext,
including certificate chain building and revocation data extraction, without executing different validity checksThis class finds a timestamp scope for a detached timestamp
Performs processing of detached timestamps
The Signature Scope defines a Digest document
This class performs processing of a signature document, including extraction of signature and timestamp tokens,
cryptographic validation, certificate chain building and revocation data validation.
This interface is used to analyze the format of the given
DSSDocument and
create a corresponding implementation of DocumentAnalyzerUtility class that contains some ASN1 related method.
This class implements a file loader implementing a caching mechanism, allowing to remove
cache externally (to be used within a
CacheCleaner)Contains a map of occurred exceptions to different URL calls
The exception to be thrown in case of an external error arisen during a data loader requests
This alert is used to throw a
eu.europa.esig.dss.spi.exception.DSSExternalResourceException
when the corresponding check failsDSS file loader to load
DSSDocument instead of binariesThis class is used to compute
DSSMessageDigest based on the provided inputUtils to retrieve public key size
This class is used to create objects required for a document signing process
(e.g. temporary OutputStream, returned DSSDocument, etc.).
This class builds a new instance of
DSSResourcesHandlerUtility class used to manipulate revocation data (OCSP, CRL)
The default security provider
Set of common utils
This class contains utility methods required for a processing and validation of an embedded evidence record
This class covers the case of empty signature policies (no asn1,... file has been downloaded)
This class is used to find a signature scope for an embedded timestamp
from a collection of
SignatureScope candidates, extracted from a signatureRepresentation of an Evidence Record
Interface to perform validation of an evidence record document
This class is used to load a corresponding implementation of
EvidenceRecordAnalyzer
for processing of an evidence record documentDefines a master signature scope covered by an embedded evidence record
Extracts evidence record scopes representing the covered archival data objects
Finds timestamped scopes for evidence record time-stamps
This class allows to provide a CRL source based on the list of external CRL(s).
This class is used to provide a collection of OCSP tokens by the user.
Abstract class that extends
RepositoryRevocationSource to provide
file-based caching functionality for revocation data.Marker class meaning that the signature covers the whole document.
This class allows to avoid downloading resources.
This exception indicates that a provided by the user input or file is not valid for a particular operation
This class executes calls to a
javax.sql.DataSourceAbstract class to retrieve token from a JDBC datasource
TSPSource implementation allowing to configure issuance of a time-stamp using a local
KeyStoreImplements a CertificateSource using a KeyStore (PKCS12, JKS,...).
This class operates on several
CertificateSource with the composite
design pattern.This class allows to handle a list
OfflineRevocationSourceThe Signature Scope represents a Manifest document
Used to limit the size of fetched data.
Defines a map between URL and document to load the data from offline source
This interface allows to retrieve all revocation data for a given
certificate.
The call of native java DataLoader using the java.net.URL class.
Implementation of native java DataLoader using the java.net.URL class.
Available HTTPMethods
This class covers the case of non ASN1 signature policies (e.g. : PDF file and its digest)
Represents a Source of certificates embedded into an OCSP Token
This class fetches firstly OCSP token response, if not available, tries CRL and returns the first succeeded result
NOTE: This implementation is use by default for revocation retrieving
This class initializes a
OCSPFirstRevocationDataLoadingStrategy.Reference an OCSPResponse
An identifier used for an OCSP token reference
The binary of an OCSP response token
This enum encapsulates constants defined by BouncyCastle and offers a method to parse an int without exception
This validator is used to verify integrity of the OCSP token signature
Typed sub-interface which allows collection of
OCSPToken(s).OCSP Signed Token which encapsulate BasicOCSPResp (BC).
The class is used to check OCSP token reference
This class if a basic skeleton that is able to retrieve needed CRL data from
the contained list.
Abstract class that helps to implement an OCSPSource with an already loaded list of BasicOCSPResp
Represents a revocation sources for a data obtained from an offline source (e.g. signature)
Contains the used OIDs
This enum lists all network protocols that can be used during the signature creation or validation: OCSP, CRL, AIA, TSL...
A utils class to retrieve qc-statement from a certificate token
Abstract repository AIA source
Allows storing and retrieving of revocation data to/from a repository
(e.g. database)
This class represents a ResponderId extracted from an OCSP response
Represents a certificate source present into a revocation token
This class allows retrieving of Revocation data from CRL or OCSP sources, based on the defined strategy
NOTE: The implemented object does not require setting of OCSP/CRL/RevocationDataVerifier sources
on instantiation from the user.
This interface is used to initialize a new
RevocationDataLoadingStrategy.This class is used to verify acceptance of a revocation data for the following validation process,
whether the revocation data has been extracted from a document or obtained from an online source.
Contains information about the performed revocation freshness check
This class represents an extracted revocation reference from a signature
An identifier for a revocation reference
This interface allows revocation data retrieving for a given certificate.
This interface provides a method to retrieve a revocation data with a list of alternative URL access points
Represents a revocation data token
An identifier for a revocation token
This class is used to validate a revocation reference against a revocation token
Defines a child of "signed-signature-properties" or "unsigned-signature-properties" element
Identifies uniquely an unsigned attribute of a signature
The advanced signature contains a list of certificate that was needed to validate the signature.
Generates digest for an evidence record to be embedded within a given signature
The DSS Signature identifier
Builds a deterministic Signature Identifier for the produced reports
Checks signature integrity among a provided list of signing certificate candidates
The class is used to retrieve a policy by its SignaturePolicyIdentifier
Performs a validation of a SignaturePolicy
Loads a relevant
SignaturePolicyValidator for the provided SignaturePolicyDefined a "signed-signature-element" or "unsigned-signature-element" of a signature
Builds a list of
SignatureScopes from an AdvancedSignatureThe signature scope with the performed transforms
Defines a signature scope covering a signature
Contains signatures concerned by an occurred event and corresponding information about them
Builds an identifier for a time-stamp token encapsulated within a signature
The timestamp source of a signature
This class used
eu.europa.esig.dss.spi.validation.SignatureValidationContext to perform validation and
executes alerts based on the validation result.During the validation of a signature, the software retrieves different X509 artifacts like Certificate, CRL and OCSP
Response.
Represents an ASN.1 SignerId DTO
This class skips validation of the
ValidationContextRepresents a stateless query to be made to an SQL database
Contains result of a record extraction from an SQL database
A select query containing logic to extract records from a
ResultSetThis class performs processing of a timestamp
Compares
TimestampAnalyzersA timestamp CMS certificate source
CRLSource that retrieves information embedded to a
TimeStampTokenThis class stocks the timestamped reference, which is composed of: - the
timestamp reference category
TimestampReferenceCategory; - object id
in the case where the reference apply to the signature.Builds an
eu.europa.esig.dss.spi.x509.tsp.TimestampTokenIdentifier
for the provided eu.europa.esig.dss.spi.x509.tsp.TimestampToken.This class represents XAdES Include tag in case of IndividualDataObjectsTimeStamp
Builds message-imprint digest to be timestamped
OCSPSource that retrieves information embedded to a
TimeStampTokenThis interface is used to find a signature scope for a timestamp
The interface for handling validation data extracted from timestamps
SignedToken containing a TimeStamp.
Compares
TimestampTokensIdentifier for a timestamp token
This class is used to verify applicability of a timestamp token within the signature validation process
Represents a source of certificates embedded in a token (signature, timestamp, ocsp response)
This class is used to select an issuer of the provided
TokenContains tokens concerned by an occurred event and corresponding information about them
This class is used to verify whether a given certificate token is trusted at the control time
The interface provides an abstraction of a
eu.europa.esig.dss.spi.x509.CertificateSource
containing trust anchorsThis class allows injection of trusted certificates from Trusted Lists
Abstraction of a Time Stamping authority which delivers RFC 3161 Time Stamp Responses containing tokens, from Time
Stamp Requests.
This class used
eu.europa.esig.dss.spi.validation.ValidationContext to perform validation and
executes alerts based on the validation result.This interface allows the implementation of the validators for: certificates, timestamps and revocation data.
This class defines a strategy for execution of
ValidationContext's validationContains a validation data to be included into the signature
Contains a
ValidationData for a list of signatures/timestampsPerforms validation of a SignaturePolicy with zero-sigPolicyHash
See EN 319 122-1 "5.2.9 The signature-policy-identifier attribute and the SigPolicyQualifierInfo type"