java.lang.Object
- org.pgpainless.key.util.PublicKeyParameterValidationUtil

```
public class PublicKeyParameterValidationUtil
extends java.lang.Object
```
Utility class to verify keys against Key Overwriting (KO) attacks. This class of attacks is only possible if the attacker has access to the (encrypted) secret key material. To execute the attack, they would modify the unauthenticated parameters of the users public key. Using the modified public key in combination with the unmodified secret key material can then lead to the extraction of secret key parameters via weakly crafted messages.

See Also:

Key Overwriting (KO) Attacks against OpenPGP

Constructor Summary

Constructors
Constructor Description

PublicKeyParameterValidationUtil()

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type	Method	Description
`static void`	`verifyPublicKeyParameterIntegrity(org.bouncycastle.openpgp.PGPPrivateKey privateKey, org.bouncycastle.openpgp.PGPPublicKey publicKey)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail
- PublicKeyParameterValidationUtil
```
public PublicKeyParameterValidationUtil()
```

Method Detail

verifyPublicKeyParameterIntegrity

public static void verifyPublicKeyParameterIntegrity(org.bouncycastle.openpgp.PGPPrivateKey privateKey,
                                                     org.bouncycastle.openpgp.PGPPublicKey publicKey)
                                              throws KeyIntegrityException

Throws:: KeyIntegrityException

Class PublicKeyParameterValidationUtil

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

PublicKeyParameterValidationUtil

Method Detail

verifyPublicKeyParameterIntegrity