background image

26

Cryptographic Smart Card Driver Development Guide 

* @param input Input data.
* @param inputOffset First byte of the input data to read.
* @param output Buffer for the output data.
* @param outputOffset Position in the output buffer to receive the first written byte.
*
* @throws CryptoTokenException Thrown if an error occurs with a crypto
* token or the crypto token is invalid.
*/
public void decryptRSA( RSACryptoSystem cryptoSystem,
CryptoTokenPrivateKeyData privateKeyData,byte[] input, int inputOffset,

byte[] output, int outputOffset )throws CryptoTokenException

{

try {

signDecryptHelper( cryptoSystem, privateKeyData, input, inputOffset, output, 
outputOffset, DECRYPT_DESC, SmartCardSession.DECRYPT_OPERATION );

catch ( CryptoUnsupportedOperationException e ) {
throw new CryptoTokenException( e.toString() );
}

}

/**
* Perform RSA signing of unprocessed data.

* <p>
* Notes: The RSA Crypto token should perform a raw RSA private key operation on the 
* input data. The input data is typically padded, with the type of padding dependent on
* the application that requested the signature.  Typically Public-Key Cryptography 
Standards (PKCS) #1 version 2.0
* is used to pad the data, however other schemes such as Probabilistic Signature Scheme 
(PSS) or ANSI X9.31 could also
* be used.  
*
* If the RSA Crypto token requires the padding to be removed before signing, this method
* will need to detect and remove the type of padding that is currently used.  The RSA
* Crypto token should only re-apply the same type of padding that was originally applied 
* to the data. If the RSA Crypto token is unable to re-apply the same type of padding,
* this method should throw an UnsupportedOperationException.
* Signature requests which come from BlackBerry's S/MIME implementation currently use
* Public-Key Cryptography Standards (PKCS) #1 padding but may use other padding methods 
in the future.
* <p>
* @param cryptoSystem Cypto system associated with the token.
* @param privateKeyData RSA private key.
* @param input Input data.
* @param inputOffset First byte of the input data to read.
* @param output The buffer for the output data.
* @param outputOffset Position in the output buffer to receive the first written byte.
* @throws CryptoTokenException Thrown if an error occurs with the crypto
* token or the crypto token is invalid.  
* @throws CryptoUnsupportedOperationException Thrown if a call is made to an
* unsupported operation or if the token does not support signing due to the type of
* padding around the encoded message.
*/
public void signRSA(    RSACryptoSystem cryptoSystem, CryptoTokenPrivateKeyData 
privateKeyData, byte[] input, int inputOffset,byte[] output, int outputOffset )
throws CryptoTokenException, CryptoUnsupportedOperationException

Содержание JAVA DEVELOPMENT ENVIRONMENT - - CRYPTOGRAPHIC SMART CARD DRIVER - DEVELOPMENT GUIDE

Страница 1: ...BlackBerry Java Development Environment Version 4 6 0 Cryptographic Smart Card Driver Development Guide...

Страница 2: ...that is contained in this documentation however RIM makes no commitment to provide any such changes updates enhancements or other additions to this documentation to you in a timely manner or at all T...

Страница 3: ...LITY ARISING FROM OR RELATED TO THE DOCUMENTATION Prior to subscribing for installing or using any Third Party Products and Services it is your responsibility to ensure that your airtime service provi...

Страница 4: ......

Страница 5: ...key file 8 2 Testing a cryptographic smart card driver 11 Set up the BlackBerry Device Simulator to test a cryptographic smart card driver 11 Set up a BlackBerry device to test a cryptographic smart c...

Страница 6: ......

Страница 7: ...ormation on S MIME The smart card API information included with BlackBerry JDE Version 4 2 or later contains some deprecated elements The deprecated elements provide backward compatibility for a crypt...

Страница 8: ...he Application tab in the Project type field type Library 4 Select the Auto run on startup check box 5 In the Startup Tier field select the 7 Last 3rd party apps only option 6 Click OK Create a libMai...

Страница 9: ...Berry Device Software Version 4 2 or later implement CryptoSmartCardSession getKeyStoreDataArrayImpl as follows RSACryptoToken token new MyRSACryptoToken RSACryptoSystem cryptoSystem new RSACryptoSyst...

Страница 10: ...rsistable To create a cryptographic smart card driver that is compatible with BlackBerry Device Software Version 4 1 and Version 4 2 or later and to include the cryptographic smart card driver in two...

Страница 11: ...PrivateKeyData privateKeyData Enable decryption of unprocessed data Perform one of the following steps To create a cryptographic smart card driver that is compatible with BlackBerry Device Software Ve...

Страница 12: ...ESC SmartCardSession SIGN_OPERATION To create a cryptographic smart card driver that is compatible with BlackBerry Device Software Version 4 1 and Version 4 2 or later and to include the cryptographic...

Страница 13: ...a private key file on the smart card on page 28 for more information Retrieve the location of the private key file on the smart card Create a method that returns the location of the private key file...

Страница 14: ...10 Cryptographic Smart Card Driver Development Guide...

Страница 15: ...Simulator to test a cryptographic smart card driver Set up a BlackBerry device to test a cryptographic smart card driver Test the cryptographic smart card driver Note You do not require the Casira Bl...

Страница 16: ...evice Task Steps Make sure the cryptographic smart card driver is installed on a BlackBerry device 1 On the BlackBerry device click Options Security Options Smart Card 2 Ensure the cryptographic smart...

Страница 17: ...13 2 Testing a cryptographic smart card driver...

Страница 18: ...14 Cryptographic Smart Card Driver Development Guide...

Страница 19: ...byte 0x71 byte 0x8e byte 0x64 byte 0x86 byte 0xd6 byte 0x01 byte 0x00 byte 0x81 byte 0x90 byte 0x00 private final static AnswerToReset _myATR new AnswerToReset MY_ATR private static final String LABEL...

Страница 20: ...this smart card object to communicate with a physical smart card that has the given AnswerToReset The system invokes this method to ascertain which smart card implementation it should use to communica...

Страница 21: ...The driver should not block the event thread for long periods of time param context Reserved for future use protected void displaySettingsImpl Object context Dialog alert DISPLAY_SETTINGS Retrieve the...

Страница 22: ...o not hold open sessions when not using them they should be short lived As a security precaution only one open session is allowed to exist per SmartCardReader subsequent openSession requests will bloc...

Страница 23: ...wed login attempts The method returns Integer MAX_VALUE if an infinite number of attempts are allowed protected int getMaxLoginAttemptsImpl throws SmartCardException return 5 Retrieve the remaining nu...

Страница 24: ...A1Digest digest update uniqueCardData long idLong byteArrayToLong Arrays copy digest getDigest 0 8 Using friendly display name return new SmartCardID idLong ID_STRING getSmartCard Converts code array...

Страница 25: ...00 maxBytes ResponseAPDU response new ResponseAPDU sendAPDU command response Check for response codes specific to your smart card if response checkStatusWords byte 0x90 byte 0x00 The appropriate respo...

Страница 26: ...ata null ID_CERT privateKey null KeyStore SECURITY_LEVEL_HIGH certificate null null 0 stepProgressDialog 1 privateKey new RSAPrivateKey cryptoSystem new MyCryptoTokenData smartCardID SIGNING_PKI keySt...

Страница 27: ...lication Protocol Data Unit ResponseAPDU response new ResponseAPDU Construct the command and set its information Create a CommandAPDU which your smart card will understand CommandAPDU signAPDU new Com...

Страница 28: ...s an implmentation of an RSA cryptographic token The RIM Crypto API will use this object to perform a private key RSA operation This object should delegate the operation to the smart card final class...

Страница 29: ...oSystem cryptoSystem CryptoTokenPrivateKeyData privateKeyData throws CryptoTokenException return privateKeyData instanceof MyCryptoTokenData Perform RSA decryption of unprocessed data p Notes To revea...

Страница 30: ...sed If the RSA Crypto token requires the padding to be removed before signing this method will need to detect and remove the type of padding that is currently used The RSA Crypto token should only re...

Страница 31: ...ardFactory getSmartCardSession smartCardID if smartCardSession instanceof MyCryptoSmartCardSession MyCryptoSmartCardSession mySmartCardSession MyCryptoSmartCardSession smartCardSession We must provide...

Страница 32: ...api smartcard import net rim device api util This class stores the location of the private key file on the smart card final class MyCryptoTokenData implements CryptoTokenPrivateKeyData Persistable Sma...

Страница 33: ...ile containing the private key file return ID of the smart card public SmartCardID getSmartCardID return _id Retrieve the location of the private key file on the smart card return Location of the priv...

Страница 34: ...30 Cryptographic Smart Card Driver Development Guide...

Страница 35: ......

Страница 36: ...2007 Research In Motion Limited Published in Canada...

Отзывы: