Class PublicKeyParameterValidationUtil


  • public class PublicKeyParameterValidationUtil
    extends java.lang.Object
    Utility class to verify keys against Key Overwriting (KO) attacks. This class of attacks is only possible if the attacker has access to the (encrypted) secret key material. To execute the attack, they would modify the unauthenticated parameters of the users public key. Using the modified public key in combination with the unmodified secret key material can then lead to the extraction of secret key parameters via weakly crafted messages.
    See Also:
    Key Overwriting (KO) Attacks against OpenPGP
    • Method Summary

      All Methods Static Methods Concrete Methods 
      Modifier and Type Method Description
      static void verifyPublicKeyParameterIntegrity​(org.bouncycastle.openpgp.PGPPrivateKey privateKey, org.bouncycastle.openpgp.PGPPublicKey publicKey)  
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Constructor Detail

      • PublicKeyParameterValidationUtil

        public PublicKeyParameterValidationUtil()
    • Method Detail

      • verifyPublicKeyParameterIntegrity

        public static void verifyPublicKeyParameterIntegrity​(org.bouncycastle.openpgp.PGPPrivateKey privateKey,
                                                             org.bouncycastle.openpgp.PGPPublicKey publicKey)
                                                      throws KeyIntegrityException
        Throws:
        KeyIntegrityException