Package org.mozilla.jss.crypto
Class Policy
java.lang.Object
org.mozilla.jss.crypto.Policy
This class helps JSS callers align with local system cryptographic policy.
In the event of a policy violation, applications can override policy by
writing to the desired variable.
Refer to SSLCipher.isSupported() for whether or not a given TLS cipher
suite is allowed by local policy.
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic int
Minimum DH key length in bits permitted by local policy.static int
Minimum DSA key length in bits permitted by local policy.static boolean
Whether or not this JSS instance is enforcing local crypto-policy, with respect to key sizes.static int
Minimum RSA key length in bits permitted by local policy.static BigInteger
Minimum RSA public exponent allowed by JSS.static SSLVersion
static SSLVersion
static SSLVersionRange
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprivate static int
private static int
private static int
private static SSLVersionRange
-
Field Details
-
ENFORCING_KEY_SIZES
public static boolean ENFORCING_KEY_SIZESWhether or not this JSS instance is enforcing local crypto-policy, with respect to key sizes. Defaults to false; this lets applications use whatever key sizes are supported by NSS, at the risk of performing non-compliant operations. Set to true to enable enforcement, where it exists. -
RSA_MINIMUM_KEY_SIZE
public static int RSA_MINIMUM_KEY_SIZEMinimum RSA key length in bits permitted by local policy. -
RSA_MINIMUM_PUBLIC_EXPONENT
Minimum RSA public exponent allowed by JSS. -
DH_MINIMUM_KEY_SIZE
public static int DH_MINIMUM_KEY_SIZEMinimum DH key length in bits permitted by local policy. -
DSA_MINIMUM_KEY_SIZE
public static int DSA_MINIMUM_KEY_SIZEMinimum DSA key length in bits permitted by local policy. -
TLS_VERSION_RANGE
-
TLS_MINIMUM_VERSION
-
TLS_MAXIMUM_VERSION
-
-
Constructor Details
-
Policy
public Policy()
-
-
Method Details
-
getTLSVersionRange
-
getRSAMinimumKeySize
private static int getRSAMinimumKeySize() -
getDHMinimumKeySize
private static int getDHMinimumKeySize() -
getDSAMinimumKeySize
private static int getDSAMinimumKeySize()
-