Package eu.europa.esig.dss.policy

Class EtsiValidationPolicy

java.lang.Object

eu.europa.esig.dss.policy.EtsiValidationPolicy

All Implemented Interfaces:

ValidationPolicy

public class EtsiValidationPolicy
extends Object
implements ValidationPolicy

This class encapsulates the constraint file that controls the policy to be used during the validation process. It adds the functions to direct access to the file data. It is the implementation of the ETSI 102853 standard.

Constructor Summary

Constructors

Constructor	Description
EtsiValidationPolicy(ConstraintsParameters policy)	Default constructor

Method Summary

Modifier and Type	Method	Description
MultiValuesConstraint	getAcceptedContainerTypesConstraint()	Returns AcceptedContainerTypes constraint if present in the policy, null otherwise
MultiValuesConstraint	getAcceptedMimeTypeContentsConstraint()	Returns AcceptedMimeTypeContents constraint if present in the policy, null otherwise
MultiValuesConstraint	getAcceptedZipCommentsConstraint()	Returns AcceptedZipComments constraint if present in the policy, null otherwise
Date	getAlgorithmExpirationDate(String algorithm, Context context, SubContext subContext)	This function returns the algorithm expiration date extracted from the 'constraint.xml' file.
LevelConstraint	getAllFilesSignedConstraint()	Returns AllFilesSigned constraint if present in the policy, null otherwise
LevelConstraint	getAllSigningCertificateDigestValuesMatchConstraint(Context context)	Indicates if all signing certificate reference digests match the signing certificate
LevelConstraint	getBestSignatureTimeBeforeExpirationDateOfSigningCertificateConstraint()	This constraint checks if the certificate is not expired on best-signature-time
LevelConstraint	getCertificateAuthorityInfoAccessPresentConstraint(Context context, SubContext subContext)	Returns CertificateAuthorityInfoAccessPresent constraint if present in the policy, null otherwise
MultiValuesConstraint	getCertificateCommonNameConstraint(Context context, SubContext subContext)	Returns CertificateCommonName constraint if present in the policy, null otherwise
MultiValuesConstraint	getCertificateCountryConstraint(Context context, SubContext subContext)	Returns CertificateCountry constraint if present in the policy, null otherwise
CryptographicConstraint	getCertificateCryptographicConstraint(Context context, SubContext subContext)	This method creates the SignatureCryptographicConstraint corresponding to the context parameter.
MultiValuesConstraint	getCertificateExtendedKeyUsageConstraint(Context context, SubContext subContext)	Returns certificate extended key usage constraint
MultiValuesConstraint	getCertificateGivenNameConstraint(Context context, SubContext subContext)	Returns CertificateGivenName constraint if present in the policy, null otherwise
LevelConstraint	getCertificateIssuedToLegalPersonConstraint(Context context, SubContext subContext)	Indicates if the end user certificate used in validating the signature is issued to a legal person.
LevelConstraint	getCertificateIssuedToNaturalPersonConstraint(Context context, SubContext subContext)	Returns CertificateIssuedToNaturalPerson constraint if present in the policy, null otherwise
MultiValuesConstraint	getCertificateKeyUsageConstraint(Context context, SubContext subContext)	Returns certificate key usage constraint
LevelConstraint	getCertificateNotExpiredConstraint(Context context, SubContext subContext)	Returns certificate's not expired constraint
LevelConstraint	getCertificateNotOnHoldConstraint(Context context, SubContext subContext)	Returns certificate's not onHold constraint
LevelConstraint	getCertificateNotRevokedConstraint(Context context, SubContext subContext)	Returns certificate's not revoked constraint
LevelConstraint	getCertificateNotSelfSignedConstraint(Context context, SubContext subContext)	Returns certificate's not self-signed constraint
MultiValuesConstraint	getCertificateOrganizationNameConstraint(Context context, SubContext subContext)	Returns CertificateOrganizationName constraint if present in the policy, null otherwise
MultiValuesConstraint	getCertificateOrganizationUnitConstraint(Context context, SubContext subContext)	Returns CertificateOrganizationUnit constraint if present in the policy, null otherwise
MultiValuesConstraint	getCertificatePolicyIdsConstraint(Context context, SubContext subContext)	Returns CertificatePolicyIds constraint if present in the policy, null otherwise
MultiValuesConstraint	getCertificatePseudonymConstraint(Context context, SubContext subContext)	Returns CertificatePseudonym constraint if present in the policy, null otherwise
LevelConstraint	getCertificatePseudoUsageConstraint(Context context, SubContext subContext)	Returns CertificatePseudoUsage constraint if present in the policy, null otherwise
MultiValuesConstraint	getCertificateQCStatementIdsConstraint(Context context, SubContext subContext)	Returns CertificateQCStatementIds constraint if present in the policy, null otherwise
LevelConstraint	getCertificateQualificationConstraint(Context context, SubContext subContext)	Indicates if the end user certificate is qualified.
LevelConstraint	getCertificateRevocationFreshnessConstraint(Context context, SubContext subContext)	Returns revocation data's freshness constraint
LevelConstraint	getCertificateRevocationInfoAccessPresentConstraint(Context context, SubContext subContext)	Returns CertificateRevocationInfoAccessPresent constraint if present in the policy, null otherwise
LevelConstraint	getCertificateSelfSignedConstraint(Context context, SubContext subContext)	Returns certificate's self-signed constraint
LevelConstraint	getCertificateSerialNumberConstraint(Context context, SubContext subContext)	Returns CertificateSerialNumber constraint if present in the policy, null otherwise
LevelConstraint	getCertificateSignatureConstraint(Context context, SubContext subContext)	Returns certificate's signature constraint
LevelConstraint	getCertificateSupportedByQSCDConstraint(Context context, SubContext subContext)	Indicates if the end user certificate used in validating the signature is mandated to be supported by a secure signature creation device (QSCD).
MultiValuesConstraint	getCertificateSurnameConstraint(Context context, SubContext subContext)	Returns CertificateSurname constraint if present in the policy, null otherwise
MultiValuesConstraint	getCertifiedRolesConstraint(Context context)	Return the mandated signer role.
MultiValuesConstraint	getClaimedRoleConstraint(Context context)	Indicates if the unsigned property: claimed-role should be checked.
MultiValuesConstraint	getCommitmentTypeIndicationConstraint(Context context)	Indicates if the signed property: commitment-type-indication should be checked.
ContainerConstraints	getContainerConstraints()	Returns the constraint used for ASiC Container validation
ValueConstraint	getContentHintsConstraint(Context context)	Indicates if the signed property: content-hints should be checked.
ValueConstraint	getContentIdentifierConstraint(Context context)	Indicates if the signed property: content-identifier should be checked.
LevelConstraint	getContentTimestampConstraint(Context context)	Indicates if the signed property: content-time-stamp should be checked.
ValueConstraint	getContentTypeConstraint(Context context)	Indicates if the signed property: content-type should be checked.
LevelConstraint	getCounterSignatureConstraint(Context context)	Returns CounterSignature constraint if present in the policy, null otherwise
SignatureConstraints	getCounterSignatureConstraints()	Returns the constraint used for Counter Signature validation
CryptographicConstraint	getCryptographic()	Returns the common constraint used for cryptographic validation
CryptographicConstraint	getDefaultCryptographicConstraint()	Gets the global cryptographic constraints
EIDAS	getEIDASConstraints()	Returns the constraint used for qualification validation
LevelConstraint	getFullScopeConstraint()	Returns FullScope constraint if present in the policy, null otherwise
LevelConstraint	getManifestEntryObjectExistenceConstraint(Context context)	Indicates if the manifested document is found
LevelConstraint	getManifestFilePresentConstraint()	Returns ManifestFilePresent constraint if present in the policy, null otherwise
LevelConstraint	getMessageDigestOrSignedPropertiesConstraint(Context context)	Indicates if the signed property: message-digest (for CAdES) or SignedProperties (for XAdES) should be checked.
LevelConstraint	getMimeTypeFilePresentConstraint()	Returns MimeTypeFilePresent constraint if present in the policy, null otherwise
LevelConstraint	getOCSPResponseCertHashMatchConstraint()	The method returns OCSPCertHashMatch constraint
LevelConstraint	getOCSPResponseCertHashPresentConstraint()	The method returns OCSPCertHashPresent constraint
LevelConstraint	getPdfAnnotationOverlapConstraint(Context context)	Indicates if a PDF annotation overlapping check should be proceeded.
LevelConstraint	getPdfPageDifferenceConstraint(Context context)	Indicates if a PDF page difference check should be proceeded.
LevelConstraint	getPdfVisualDifferenceConstraint(Context context)	Indicates if a PDF visual difference check should be proceeded.
String	getPolicyDescription()	Returns the policy description.
String	getPolicyName()	Returns the name of the policy.
LevelConstraint	getProspectiveCertificateChainConstraint(Context context)	This constraint requests the presence of the trust anchor in the certificate chain.
LevelConstraint	getReferenceDataExistenceConstraint(Context context)	Indicates if the referenced data is found
LevelConstraint	getReferenceDataIntactConstraint(Context context)	Indicates if the referenced data is intact
LevelConstraint	getReferencesToAllCertificateChainPresentConstraint(Context context)	Indicates if the whole certificate chain is covered by the Signing Certificate attribute.
RevocationConstraints	getRevocationConstraints()	Returns the constraint used for Revocation validation
LevelConstraint	getRevocationDataAvailableConstraint(Context context, SubContext subContext)	Returns revocation data available constraint
LevelConstraint	getRevocationDataNextUpdatePresentConstraint(Context context, SubContext subContext)	Returns revocation data's nextUpdate present constraint
TimeConstraint	getRevocationFreshnessConstraint()	Returns RevocationFreshness constraint if present in the policy, null otherwise
LevelConstraint	getRevocationTimeAgainstBestSignatureTimeConstraint()	Returns RevocationTimeAgainstBestSignatureTime constraint if present in the policy, null otherwise
LevelConstraint	getSelfIssuedOCSPConstraint()	The method returns SelfIssuedOCSP constraint
SignatureConstraints	getSignatureConstraints()	Returns the constraint used for Signature validation
CryptographicConstraint	getSignatureCryptographicConstraint(Context context)	This method creates the SignatureCryptographicConstraint corresponding to the context parameter.
LevelConstraint	getSignatureDuplicatedConstraint(Context context)	Indicates if the signature is not ambiguous
MultiValuesConstraint	getSignatureFormatConstraint(Context context)	Returns SignatureFormat constraint if present in the policy, null otherwise
LevelConstraint	getSignatureIntactConstraint(Context context)	Indicates if the signature is intact
MultiValuesConstraint	getSignaturePolicyConstraint(Context context)	Indicates if the signature policy should be checked.
LevelConstraint	getSignaturePolicyIdentifiedConstraint(Context context)	Indicates if the signature policy validation should be processed.
LevelConstraint	getSignaturePolicyPolicyHashValid(Context context)	Indicates if digest present in a SignaturePolicyIdentifier shall match to the extracted policy content
LevelConstraint	getSignaturePolicyStorePresentConstraint(Context context)	Indicates if a SignaturePolicyStore unsigned attribute, containing a used policy binaries, presence shall be checked
LevelConstraint	getSignedFilesPresentConstraint()	Returns SignedFilesPresent constraint if present in the policy, null otherwise
LevelConstraint	getSignerInformationStoreConstraint(Context context)	This constraint checks if only one SignerInfo is present into a SignerInformationStore NOTE: applicable only for PAdES
LevelConstraint	getSignerLocationConstraint(Context context)	Indicates if the signed property: signer-location should be checked.
LevelConstraint	getSigningCertificateAttributePresentConstraint(Context context)	Indicates if the signing certificate attribute is present
LevelConstraint	getSigningCertificateDigestValueMatchConstraint(Context context)	Indicates if the signing certificate reference's digest value matches
LevelConstraint	getSigningCertificateDigestValuePresentConstraint(Context context)	Indicates if the signing certificate reference's digest value is present
LevelConstraint	getSigningCertificateIssuerSerialMatchConstraint(Context context)	Indicates if the signing certificate reference's issuer serial matches
LevelConstraint	getSigningCertificateRecognitionConstraint(Context context)	Indicates if the end user certificate used in validating the signature is issued to a natural person.
LevelConstraint	getSigningCertificateRefersCertificateChainConstraint(Context context)	Indicates if the Signing Certificate attribute should be checked against the certificate chain.
LevelConstraint	getSigningTimeConstraint(Context context)	Indicates if the signed property: signing-time should be checked.
LevelConstraint	getStructuralValidationConstraint(Context context)	Indicates if the structural validation should be checked.
LevelConstraint	getTimestampCoherenceConstraint()	This constraint checks if the timestamp order is coherent
TimestampConstraints	getTimestampConstraints()	Returns the constraint used for Timestamp validation
TimeConstraint	getTimestampDelayConstraint()	Returns TimestampDelay constraint if present in the policy, null otherwise
TimeConstraint	getTLFreshnessConstraint()	Returns TLFreshness constraint if present in the policy, null otherwise
LevelConstraint	getTLNotExpiredConstraint()	Returns TLNotExpired constraint if present in the policy, null otherwise
ValueConstraint	getTLVersionConstraint()	Returns TLVersion constraint if present in the policy, null otherwise
LevelConstraint	getTLWellSignedConstraint()	Returns TLWellSigned constraint if present in the policy, null otherwise
MultiValuesConstraint	getTrustedServiceStatusConstraint(Context context)	Returns trusted service status constraint
MultiValuesConstraint	getTrustedServiceTypeIdentifierConstraint(Context context)	Returns trusted service type identifier constraint
LevelConstraint	getUnicitySigningCertificateAttributeConstraint(Context context)	Indicates if the signing certificate is not ambiguously determines
LevelConstraint	getUnknownStatusConstraint()	The method returns UnknownStatus constraint
Model	getValidationModel()	Returns the used validation model (default is SHELL).
LevelConstraint	getZipCommentPresentConstraint()	Returns ZipCommentPresent constraint if present in the policy, null otherwise
boolean	isEIDASConstraintPresent()	Returns if EIDAS constraints present (qualification check shall be performed)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

EtsiValidationPolicy

public EtsiValidationPolicy(ConstraintsParameters policy)

Default constructor

Parameters:

policy - ConstraintsParameters

Method Details

getAlgorithmExpirationDate

public Date getAlgorithmExpirationDate(String algorithm,
Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

This function returns the algorithm expiration date extracted from the 'constraint.xml' file. If the TAG AlgoExpirationDate is not present within the constraints null is returned.

Specified by:

getAlgorithmExpirationDate in interface ValidationPolicy

Parameters:

algorithm - algorithm (SHA1, SHA256, RSA2048...) to be checked

context - Context

subContext - SubContext

Returns:

expiration date or null

getSignaturePolicyConstraint

public MultiValuesConstraint getSignaturePolicyConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signature policy should be checked. If AcceptablePolicies element is absent within the constraint file then null is returned, otherwise the list of identifiers is initialised.

Specified by:

getSignaturePolicyConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if SigningTime element is present in the constraint file, null otherwise.

getSignaturePolicyIdentifiedConstraint

public LevelConstraint getSignaturePolicyIdentifiedConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signature policy validation should be processed. If SignaturePolicyIdentifier found, but not relevant SignaturePolicy is retrieved, the check fails.

Specified by:

getSignaturePolicyIdentifiedConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if SignaturePolicy shall be identified

getSignaturePolicyStorePresentConstraint

public LevelConstraint getSignaturePolicyStorePresentConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if a SignaturePolicyStore unsigned attribute, containing a used policy binaries, presence shall be checked

Specified by:

getSignaturePolicyStorePresentConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if SignaturePolicyStore presence shall be checked

getSignaturePolicyPolicyHashValid

public LevelConstraint getSignaturePolicyPolicyHashValid(Context context)

Description copied from interface: ValidationPolicy

Indicates if digest present in a SignaturePolicyIdentifier shall match to the extracted policy content

Specified by:

getSignaturePolicyPolicyHashValid in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if SignaturePolicyIdentifier digest shall match

getSignatureFormatConstraint

public MultiValuesConstraint getSignatureFormatConstraint(Context context)

Description copied from interface: ValidationPolicy

Returns SignatureFormat constraint if present in the policy, null otherwise

Specified by:

getSignatureFormatConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

MultiValuesConstraint if SignatureFormat element is present in the constraint file, null otherwise.

getSignerInformationStoreConstraint

public LevelConstraint getSignerInformationStoreConstraint(Context context)

Description copied from interface: ValidationPolicy

This constraint checks if only one SignerInfo is present into a SignerInformationStore NOTE: applicable only for PAdES

Specified by:

getSignerInformationStoreConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if SignerInformationStore element for a given context element is present in the constraint file, null otherwise.

getPdfPageDifferenceConstraint

public LevelConstraint getPdfPageDifferenceConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if a PDF page difference check should be proceeded. If PdfPageDifference element is absent within the constraint file then null is returned.

Specified by:

getPdfPageDifferenceConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if PdfPageDifference element is present in the constraint file, null otherwise.

getPdfAnnotationOverlapConstraint

public LevelConstraint getPdfAnnotationOverlapConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if a PDF annotation overlapping check should be proceeded. If PdfAnnotationOverlap element is absent within the constraint file then null is returned.

Specified by:

getPdfAnnotationOverlapConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if PdfAnnotationOverlap element is present in the constraint file, null otherwise.

getPdfVisualDifferenceConstraint

public LevelConstraint getPdfVisualDifferenceConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if a PDF visual difference check should be proceeded. If PdfVisualDifference element is absent within the constraint file then null is returned.

Specified by:

getPdfVisualDifferenceConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if PdfVisualDifference element is present in the constraint file, null otherwise.

getStructuralValidationConstraint

public LevelConstraint getStructuralValidationConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the structural validation should be checked. If StructuralValidation element is absent within the constraint file then null is returned.

Specified by:

getStructuralValidationConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if StructuralValidation element is present in the constraint file, null otherwise.

getSigningCertificateRefersCertificateChainConstraint

public LevelConstraint getSigningCertificateRefersCertificateChainConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the Signing Certificate attribute should be checked against the certificate chain. If SigningCertificateRefersCertificateChain element is absent within the constraint file then null is returned.

Specified by:

getSigningCertificateRefersCertificateChainConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if SigningCertificateRefersCertificateChain element is present in the constraint file, null otherwise.

getReferencesToAllCertificateChainPresentConstraint

public LevelConstraint getReferencesToAllCertificateChainPresentConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the whole certificate chain is covered by the Signing Certificate attribute. If ReferencesToAllCertificateChainPresent element is absent within the constraint file then null is returned.

Specified by:

getReferencesToAllCertificateChainPresentConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if ReferencesToAllCertificateChainPresent element is present in the constraint file, null otherwise.

getSigningTimeConstraint

public LevelConstraint getSigningTimeConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signed property: signing-time should be checked. If SigningTime element is absent within the constraint file then null is returned.

Specified by:

getSigningTimeConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if SigningTime element is present in the constraint file, null otherwise.

getContentTypeConstraint

public ValueConstraint getContentTypeConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signed property: content-type should be checked. If ContentType element is absent within the constraint file then null is returned.

Specified by:

getContentTypeConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

ValueConstraint if ContentType element is present in the constraint file, null otherwise.

getCounterSignatureConstraint

public LevelConstraint getCounterSignatureConstraint(Context context)

Description copied from interface: ValidationPolicy

Returns CounterSignature constraint if present in the policy, null otherwise

Specified by:

getCounterSignatureConstraint in interface ValidationPolicy

Parameters:

context - ContextDiagnosticDataFacade

Returns:

LevelConstraint if CounterSignature element is present in the constraint file, null otherwise.

getContentHintsConstraint

public ValueConstraint getContentHintsConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signed property: content-hints should be checked. If ContentHints element is absent within the constraint file then null is returned.

Specified by:

getContentHintsConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

ValueConstraint if ContentHints element is present in the constraint file, null otherwise.

getContentIdentifierConstraint

public ValueConstraint getContentIdentifierConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signed property: content-identifier should be checked. If ContentIdentifier element is absent within the constraint file then null is returned.

Specified by:

getContentIdentifierConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

ValueConstraint if ContentIdentifier element is present in the constraint file, null otherwise.

getMessageDigestOrSignedPropertiesConstraint

public LevelConstraint getMessageDigestOrSignedPropertiesConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signed property: message-digest (for CAdES) or SignedProperties (for XAdES) should be checked. If the relative element is absent within the constraint file then null is returned.

Specified by:

getMessageDigestOrSignedPropertiesConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if message-digests/SignedProperties element is present in the constraint file, null otherwise.

getCommitmentTypeIndicationConstraint

public MultiValuesConstraint getCommitmentTypeIndicationConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signed property: commitment-type-indication should be checked. If CommitmentTypeIndication element is absent within the constraint file then null is returned, otherwise the list of identifiers is initialised.

Specified by:

getCommitmentTypeIndicationConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

MultiValuesConstraint if CommitmentTypeIndication element is present in the constraint file, null otherwise.

getSignerLocationConstraint

public LevelConstraint getSignerLocationConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signed property: signer-location should be checked. If SignerLocation element is absent within the constraint file then null is returned.

Specified by:

getSignerLocationConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if SignerLocation element is present in the constraint file, null otherwise.

getClaimedRoleConstraint

public MultiValuesConstraint getClaimedRoleConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the unsigned property: claimed-role should be checked. If ClaimedRoles element is absent within the constraint file then null is returned.

Specified by:

getClaimedRoleConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

MultiValuesConstraint if ClaimedRoles element is present in the constraint file, null otherwise.

getCertifiedRolesConstraint

public MultiValuesConstraint getCertifiedRolesConstraint(Context context)

Description copied from interface: ValidationPolicy

Return the mandated signer role.

Specified by:

getCertifiedRolesConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

MultiValuesConstraint

getPolicyName

public String getPolicyName()

Description copied from interface: ValidationPolicy

Returns the name of the policy.

Specified by:

getPolicyName in interface ValidationPolicy

Returns:

String

getPolicyDescription

public String getPolicyDescription()

Description copied from interface: ValidationPolicy

Returns the policy description.

Specified by:

getPolicyDescription in interface ValidationPolicy

Returns:

String

getSignatureCryptographicConstraint

public CryptographicConstraint getSignatureCryptographicConstraint(Context context)

Description copied from interface: ValidationPolicy

This method creates the SignatureCryptographicConstraint corresponding to the context parameter. If AcceptableEncryptionAlgo is not present in the constraint file the null is returned.

Specified by:

getSignatureCryptographicConstraint in interface ValidationPolicy

Parameters:

context - The context of the signature cryptographic constraints: MainSignature, Timestamp, Revocation

Returns:

SignatureCryptographicConstraint if AcceptableEncryptionAlgo for a given context element is present in the constraint file, null otherwise.

getCertificateCryptographicConstraint

public CryptographicConstraint getCertificateCryptographicConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

This method creates the SignatureCryptographicConstraint corresponding to the context parameter. If AcceptableEncryptionAlgo is not present in the constraint file the null is returned.

Specified by:

getCertificateCryptographicConstraint in interface ValidationPolicy

Parameters:

context - The context of the signature cryptographic constraints: MainSignature, Timestamp, Revocation

subContext - the sub context of the signature cryptographic constraints: EMPTY (signature itself), SigningCertificate, CACertificate

Returns:

SignatureCryptographicConstraint if AcceptableEncryptionAlgo for a given context element is present in the constraint file, null otherwise.

getDefaultCryptographicConstraint

public CryptographicConstraint getDefaultCryptographicConstraint()

Gets the global cryptographic constraints

Returns:

CryptographicConstraint

getCertificateKeyUsageConstraint

public MultiValuesConstraint getCertificateKeyUsageConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns certificate key usage constraint

Specified by:

getCertificateKeyUsageConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if key-usage for a given context element is present in the constraint file, null otherwise.

getCertificateExtendedKeyUsageConstraint

public MultiValuesConstraint getCertificateExtendedKeyUsageConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns certificate extended key usage constraint

Specified by:

getCertificateExtendedKeyUsageConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if extended key-usage for a given context element is present in the constraint file, null otherwise.

getCertificateSurnameConstraint

public MultiValuesConstraint getCertificateSurnameConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateSurname constraint if present in the policy, null otherwise

Specified by:

getCertificateSurnameConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

MultiValuesConstraint if CertificateSurname element is present in the constraint file, null otherwise.

getCertificateGivenNameConstraint

public MultiValuesConstraint getCertificateGivenNameConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateGivenName constraint if present in the policy, null otherwise

Specified by:

getCertificateGivenNameConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

MultiValuesConstraint if CertificateGivenName element is present in the constraint file, null otherwise.

getCertificateCommonNameConstraint

public MultiValuesConstraint getCertificateCommonNameConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateCommonName constraint if present in the policy, null otherwise

Specified by:

getCertificateCommonNameConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

MultiValuesConstraint if CertificateCommonName element is present in the constraint file, null otherwise.

getCertificatePseudonymConstraint

public MultiValuesConstraint getCertificatePseudonymConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificatePseudonym constraint if present in the policy, null otherwise

Specified by:

getCertificatePseudonymConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

MultiValuesConstraint if CertificatePseudonym element is present in the constraint file, null otherwise.

getCertificateCountryConstraint

public MultiValuesConstraint getCertificateCountryConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateCountry constraint if present in the policy, null otherwise

Specified by:

getCertificateCountryConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

MultiValuesConstraint if CertificateCountry element is present in the constraint file, null otherwise.

getCertificateOrganizationNameConstraint

public MultiValuesConstraint getCertificateOrganizationNameConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateOrganizationName constraint if present in the policy, null otherwise

Specified by:

getCertificateOrganizationNameConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

MultiValuesConstraint if CertificateOrganizationName element is present in the constraint file, null otherwise.

getCertificateOrganizationUnitConstraint

public MultiValuesConstraint getCertificateOrganizationUnitConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateOrganizationUnit constraint if present in the policy, null otherwise

Specified by:

getCertificateOrganizationUnitConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

MultiValuesConstraint if CertificateOrganizationUnit element is present in the constraint file, null otherwise.

getCertificatePseudoUsageConstraint

public LevelConstraint getCertificatePseudoUsageConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificatePseudoUsage constraint if present in the policy, null otherwise

Specified by:

getCertificatePseudoUsageConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if CertificatePseudoUsage element is present in the constraint file, null otherwise.

getCertificateSerialNumberConstraint

public LevelConstraint getCertificateSerialNumberConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateSerialNumber constraint if present in the policy, null otherwise

Specified by:

getCertificateSerialNumberConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if CertificateSerialNumber element is present in the constraint file, null otherwise.

getCertificateNotExpiredConstraint

public LevelConstraint getCertificateNotExpiredConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns certificate's not expired constraint

Specified by:

getCertificateNotExpiredConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if Expiration for a given context element is present in the constraint file, null otherwise.

getProspectiveCertificateChainConstraint

public LevelConstraint getProspectiveCertificateChainConstraint(Context context)

Description copied from interface: ValidationPolicy

This constraint requests the presence of the trust anchor in the certificate chain.

Specified by:

getProspectiveCertificateChainConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if ProspectiveCertificateChain element for a given context element is present in the constraint file, null otherwise.

getCertificateAuthorityInfoAccessPresentConstraint

public LevelConstraint getCertificateAuthorityInfoAccessPresentConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateAuthorityInfoAccessPresent constraint if present in the policy, null otherwise

Specified by:

getCertificateAuthorityInfoAccessPresentConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if CertificateAuthorityInfoAccessPresent element is present in the constraint file, null otherwise.

getCertificateRevocationInfoAccessPresentConstraint

public LevelConstraint getCertificateRevocationInfoAccessPresentConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateRevocationInfoAccessPresent constraint if present in the policy, null otherwise

Specified by:

getCertificateRevocationInfoAccessPresentConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if CertificateRevocationInfoAccessPresent element is present in the constraint file, null otherwise.

getCertificateSignatureConstraint

public LevelConstraint getCertificateSignatureConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns certificate's signature constraint

Specified by:

getCertificateSignatureConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if Signature for a given context element is present in the constraint file, null otherwise.

getUnknownStatusConstraint

public LevelConstraint getUnknownStatusConstraint()

Description copied from interface: ValidationPolicy

The method returns UnknownStatus constraint

Specified by:

getUnknownStatusConstraint in interface ValidationPolicy

Returns:

LevelConstraint

getOCSPResponseCertHashPresentConstraint

public LevelConstraint getOCSPResponseCertHashPresentConstraint()

Description copied from interface: ValidationPolicy

The method returns OCSPCertHashPresent constraint

Specified by:

getOCSPResponseCertHashPresentConstraint in interface ValidationPolicy

Returns:

LevelConstraint

getOCSPResponseCertHashMatchConstraint

public LevelConstraint getOCSPResponseCertHashMatchConstraint()

Description copied from interface: ValidationPolicy

The method returns OCSPCertHashMatch constraint

Specified by:

getOCSPResponseCertHashMatchConstraint in interface ValidationPolicy

Returns:

LevelConstraint

getSelfIssuedOCSPConstraint

public LevelConstraint getSelfIssuedOCSPConstraint()

Description copied from interface: ValidationPolicy

The method returns SelfIssuedOCSP constraint

Specified by:

getSelfIssuedOCSPConstraint in interface ValidationPolicy

Returns:

LevelConstraint

getRevocationDataAvailableConstraint

public LevelConstraint getRevocationDataAvailableConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns revocation data available constraint

Specified by:

getRevocationDataAvailableConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if RevocationDataAvailable for a given context element is present in the constraint file, null otherwise.

getRevocationDataNextUpdatePresentConstraint

public LevelConstraint getRevocationDataNextUpdatePresentConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns revocation data's nextUpdate present constraint

Specified by:

getRevocationDataNextUpdatePresentConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if RevocationDataNextUpdatePresent for a given context element is present in the constraint file, null otherwise.

getCertificateRevocationFreshnessConstraint

public LevelConstraint getCertificateRevocationFreshnessConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns revocation data's freshness constraint

Specified by:

getCertificateRevocationFreshnessConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if RevocationFreshness for a given context element is present in the constraint file, null otherwise.

getCertificateNotRevokedConstraint

public LevelConstraint getCertificateNotRevokedConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns certificate's not revoked constraint

Specified by:

getCertificateNotRevokedConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if Revoked for a given context element is present in the constraint file, null otherwise.

getCertificateNotOnHoldConstraint

public LevelConstraint getCertificateNotOnHoldConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns certificate's not onHold constraint

Specified by:

getCertificateNotOnHoldConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if OnHold for a given context element is present in the constraint file, null otherwise.

getCertificateNotSelfSignedConstraint

public LevelConstraint getCertificateNotSelfSignedConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns certificate's not self-signed constraint

Specified by:

getCertificateNotSelfSignedConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if not self-signed for a given context element is present in the constraint file, null otherwise.

getCertificateSelfSignedConstraint

public LevelConstraint getCertificateSelfSignedConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns certificate's self-signed constraint

Specified by:

getCertificateSelfSignedConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if self-signed for a given context element is present in the constraint file, null otherwise.

getTrustedServiceStatusConstraint

public MultiValuesConstraint getTrustedServiceStatusConstraint(Context context)

Description copied from interface: ValidationPolicy

Returns trusted service status constraint

Specified by:

getTrustedServiceStatusConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if trusted service status for a given context element is present in the constraint file, null otherwise.

getTrustedServiceTypeIdentifierConstraint

public MultiValuesConstraint getTrustedServiceTypeIdentifierConstraint(Context context)

Description copied from interface: ValidationPolicy

Returns trusted service type identifier constraint

Specified by:

getTrustedServiceTypeIdentifierConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if trusted service type identifier for a given context element is present in the constraint file, null otherwise.

getCertificatePolicyIdsConstraint

public MultiValuesConstraint getCertificatePolicyIdsConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificatePolicyIds constraint if present in the policy, null otherwise

Specified by:

getCertificatePolicyIdsConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

MultiValuesConstraint if CertificatePolicyIds element is present in the constraint file, null otherwise.

getCertificateQCStatementIdsConstraint

public MultiValuesConstraint getCertificateQCStatementIdsConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateQCStatementIds constraint if present in the policy, null otherwise

Specified by:

getCertificateQCStatementIdsConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

MultiValuesConstraint if CertificateQCStatementIds element is present in the constraint file, null otherwise.

getCertificateIssuedToNaturalPersonConstraint

public LevelConstraint getCertificateIssuedToNaturalPersonConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Returns CertificateIssuedToNaturalPerson constraint if present in the policy, null otherwise

Specified by:

getCertificateIssuedToNaturalPersonConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if CertificateIssuedToNaturalPerson element is present in the constraint file, null otherwise.

getCertificateQualificationConstraint

public LevelConstraint getCertificateQualificationConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Indicates if the end user certificate is qualified.

Specified by:

getCertificateQualificationConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if Qualification for a given context element is present in the constraint file, null otherwise.

getCertificateSupportedByQSCDConstraint

public LevelConstraint getCertificateSupportedByQSCDConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Indicates if the end user certificate used in validating the signature is mandated to be supported by a secure signature creation device (QSCD).

Specified by:

getCertificateSupportedByQSCDConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if SupportedByQSCD for a given context element is present in the constraint file, null otherwise.

getCertificateIssuedToLegalPersonConstraint

public LevelConstraint getCertificateIssuedToLegalPersonConstraint(Context context,
SubContext subContext)

Description copied from interface: ValidationPolicy

Indicates if the end user certificate used in validating the signature is issued to a legal person.

Specified by:

getCertificateIssuedToLegalPersonConstraint in interface ValidationPolicy

Parameters:

context - Context

subContext - SubContext

Returns:

LevelConstraint if IssuedToLegalPerson for a given context element is present in the constraint file, null otherwise.

getSigningCertificateRecognitionConstraint

public LevelConstraint getSigningCertificateRecognitionConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the end user certificate used in validating the signature is issued to a natural person.

Specified by:

getSigningCertificateRecognitionConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if Recognition for a given context element is present in the constraint file, null otherwise.

getSigningCertificateAttributePresentConstraint

public LevelConstraint getSigningCertificateAttributePresentConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signing certificate attribute is present

Specified by:

getSigningCertificateAttributePresentConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if SigningCertificateAttribute for a given context element is present in the constraint file, null otherwise.

getUnicitySigningCertificateAttributeConstraint

public LevelConstraint getUnicitySigningCertificateAttributeConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signing certificate is not ambiguously determines

Specified by:

getUnicitySigningCertificateAttributeConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if UnicitySigningCertificate for a given context element is present in the constraint file, null otherwise.

getSigningCertificateDigestValuePresentConstraint

public LevelConstraint getSigningCertificateDigestValuePresentConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signing certificate reference's digest value is present

Specified by:

getSigningCertificateDigestValuePresentConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if DigestValuePresent for a given context element is present in the constraint file, null otherwise.

getSigningCertificateDigestValueMatchConstraint

public LevelConstraint getSigningCertificateDigestValueMatchConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signing certificate reference's digest value matches

Specified by:

getSigningCertificateDigestValueMatchConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if DigestValueMatch for a given context element is present in the constraint file, null otherwise.

getAllSigningCertificateDigestValuesMatchConstraint

public LevelConstraint getAllSigningCertificateDigestValuesMatchConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if all signing certificate reference digests match the signing certificate

Specified by:

getAllSigningCertificateDigestValuesMatchConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if AllCertDigestsMatch for a given context element is present in the constraint file, null otherwise.

getSigningCertificateIssuerSerialMatchConstraint

public LevelConstraint getSigningCertificateIssuerSerialMatchConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signing certificate reference's issuer serial matches

Specified by:

getSigningCertificateIssuerSerialMatchConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if IssuerSerialMatch for a given context element is present in the constraint file, null otherwise.

getReferenceDataExistenceConstraint

public LevelConstraint getReferenceDataExistenceConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the referenced data is found

Specified by:

getReferenceDataExistenceConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if ReferenceDataExistence for a given context element is present in the constraint file, null otherwise.

getReferenceDataIntactConstraint

public LevelConstraint getReferenceDataIntactConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the referenced data is intact

Specified by:

getReferenceDataIntactConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if ReferenceDataIntact for a given context element is present in the constraint file, null otherwise.

getManifestEntryObjectExistenceConstraint

public LevelConstraint getManifestEntryObjectExistenceConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the manifested document is found

Specified by:

getManifestEntryObjectExistenceConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if ManifestEntryObjectExistence for a given context element is present in the constraint file, null otherwise.

getSignatureIntactConstraint

public LevelConstraint getSignatureIntactConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signature is intact

Specified by:

getSignatureIntactConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

SignatureDataIntact if SignatureIntact for a given context element is present in the constraint file, null otherwise.

getSignatureDuplicatedConstraint

public LevelConstraint getSignatureDuplicatedConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signature is not ambiguous

Specified by:

getSignatureDuplicatedConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

SignatureDuplicated if SignatureDuplicated for a given context element is present in the constraint file, null otherwise.

getBestSignatureTimeBeforeExpirationDateOfSigningCertificateConstraint

public LevelConstraint getBestSignatureTimeBeforeExpirationDateOfSigningCertificateConstraint()

Description copied from interface: ValidationPolicy

This constraint checks if the certificate is not expired on best-signature-time

Specified by:

getBestSignatureTimeBeforeExpirationDateOfSigningCertificateConstraint in interface ValidationPolicy

Returns:

LevelConstraint if BestSignatureTimeBeforeExpirationDateOfSigningCertificate element is present in the constraint file, null otherwise.

getRevocationTimeAgainstBestSignatureTimeConstraint

public LevelConstraint getRevocationTimeAgainstBestSignatureTimeConstraint()

Description copied from interface: ValidationPolicy

Returns RevocationTimeAgainstBestSignatureTime constraint if present in the policy, null otherwise

Specified by:

getRevocationTimeAgainstBestSignatureTimeConstraint in interface ValidationPolicy

Returns:

LevelConstraint if RevocationTimeAgainstBestSignatureTime element is present in the constraint file, null otherwise.

getTimestampCoherenceConstraint

public LevelConstraint getTimestampCoherenceConstraint()

Description copied from interface: ValidationPolicy

This constraint checks if the timestamp order is coherent

Specified by:

getTimestampCoherenceConstraint in interface ValidationPolicy

Returns:

LevelConstraint if TimestampCoherence element is present in the constraint file, null otherwise.

getTimestampDelayConstraint

public TimeConstraint getTimestampDelayConstraint()

Description copied from interface: ValidationPolicy

Returns TimestampDelay constraint if present in the policy, null otherwise

Specified by:

getTimestampDelayConstraint in interface ValidationPolicy

Returns:

TimeConstraint if TimestampDelay element is present in the constraint file, null otherwise.

getRevocationFreshnessConstraint

public TimeConstraint getRevocationFreshnessConstraint()

Description copied from interface: ValidationPolicy

Returns RevocationFreshness constraint if present in the policy, null otherwise

Specified by:

getRevocationFreshnessConstraint in interface ValidationPolicy

Returns:

TimeConstraint if RevocationFreshness element is present in the constraint file, null otherwise.

getFullScopeConstraint

public LevelConstraint getFullScopeConstraint()

Description copied from interface: ValidationPolicy

Returns FullScope constraint if present in the policy, null otherwise

Specified by:

getFullScopeConstraint in interface ValidationPolicy

Returns:

LevelConstraint if FullScope element is present in the constraint file, null otherwise.

getContentTimestampConstraint

public LevelConstraint getContentTimestampConstraint(Context context)

Description copied from interface: ValidationPolicy

Indicates if the signed property: content-time-stamp should be checked. If ContentTimeStamp element is absent within the constraint file then null is returned.

Specified by:

getContentTimestampConstraint in interface ValidationPolicy

Parameters:

context - Context

Returns:

LevelConstraint if ContentTimeStamp element is present in the constraint file, null otherwise.

getAcceptedContainerTypesConstraint

public MultiValuesConstraint getAcceptedContainerTypesConstraint()

Description copied from interface: ValidationPolicy

Returns AcceptedContainerTypes constraint if present in the policy, null otherwise

Specified by:

getAcceptedContainerTypesConstraint in interface ValidationPolicy

Returns:

MultiValuesConstraint if AcceptedContainerTypes element is present in the constraint file, null otherwise.

getZipCommentPresentConstraint

public LevelConstraint getZipCommentPresentConstraint()

Description copied from interface: ValidationPolicy

Returns ZipCommentPresent constraint if present in the policy, null otherwise

Specified by:

getZipCommentPresentConstraint in interface ValidationPolicy

Returns:

LevelConstraint if ZipCommentPresent element is present in the constraint file, null otherwise.

getAcceptedZipCommentsConstraint

public MultiValuesConstraint getAcceptedZipCommentsConstraint()

Description copied from interface: ValidationPolicy

Returns AcceptedZipComments constraint if present in the policy, null otherwise

Specified by:

getAcceptedZipCommentsConstraint in interface ValidationPolicy

Returns:

MultiValuesConstraint if AcceptedZipComments element is present in the constraint file, null otherwise.

getMimeTypeFilePresentConstraint

public LevelConstraint getMimeTypeFilePresentConstraint()

Description copied from interface: ValidationPolicy

Returns MimeTypeFilePresent constraint if present in the policy, null otherwise

Specified by:

getMimeTypeFilePresentConstraint in interface ValidationPolicy

Returns:

LevelConstraint if MimeTypeFilePresent element is present in the constraint file, null otherwise.

getAcceptedMimeTypeContentsConstraint

public MultiValuesConstraint getAcceptedMimeTypeContentsConstraint()

Description copied from interface: ValidationPolicy

Returns AcceptedMimeTypeContents constraint if present in the policy, null otherwise

Specified by:

getAcceptedMimeTypeContentsConstraint in interface ValidationPolicy

Returns:

MultiValuesConstraint if AcceptedMimeTypeContents element is present in the constraint file, null otherwise.

getAllFilesSignedConstraint

public LevelConstraint getAllFilesSignedConstraint()

Description copied from interface: ValidationPolicy

Returns AllFilesSigned constraint if present in the policy, null otherwise

Specified by:

getAllFilesSignedConstraint in interface ValidationPolicy

Returns:

LevelConstraint if AllFilesSigned element is present in the constraint file, null otherwise.

getManifestFilePresentConstraint

public LevelConstraint getManifestFilePresentConstraint()

Description copied from interface: ValidationPolicy

Returns ManifestFilePresent constraint if present in the policy, null otherwise

Specified by:

getManifestFilePresentConstraint in interface ValidationPolicy

Returns:

LevelConstraint if ManifestFilePresent element is present in the constraint file, null otherwise.

getSignedFilesPresentConstraint

public LevelConstraint getSignedFilesPresentConstraint()

Description copied from interface: ValidationPolicy

Returns SignedFilesPresent constraint if present in the policy, null otherwise

Specified by:

getSignedFilesPresentConstraint in interface ValidationPolicy

Returns:

LevelConstraint if SignedFilesPresent element is present in the constraint file, null otherwise.

isEIDASConstraintPresent

public boolean isEIDASConstraintPresent()

Description copied from interface: ValidationPolicy

Returns if EIDAS constraints present (qualification check shall be performed)

Specified by:

isEIDASConstraintPresent in interface ValidationPolicy

Returns:

TRUE if EIDAS constraint present, FALSE otherwise

getTLFreshnessConstraint

public TimeConstraint getTLFreshnessConstraint()

Description copied from interface: ValidationPolicy

Returns TLFreshness constraint if present in the policy, null otherwise

Specified by:

getTLFreshnessConstraint in interface ValidationPolicy

Returns:

TimeConstraint if TLFreshness element is present in the constraint file, null otherwise.

getTLWellSignedConstraint

public LevelConstraint getTLWellSignedConstraint()

Description copied from interface: ValidationPolicy

Returns TLWellSigned constraint if present in the policy, null otherwise

Specified by:

getTLWellSignedConstraint in interface ValidationPolicy

Returns:

TimeConstraint if TLWellSigned element is present in the constraint file, null otherwise.

getTLNotExpiredConstraint

public LevelConstraint getTLNotExpiredConstraint()

Description copied from interface: ValidationPolicy

Returns TLNotExpired constraint if present in the policy, null otherwise

Specified by:

getTLNotExpiredConstraint in interface ValidationPolicy

Returns:

TimeConstraint if TLNotExpired element is present in the constraint file, null otherwise.

getTLVersionConstraint

public ValueConstraint getTLVersionConstraint()

Description copied from interface: ValidationPolicy

Returns TLVersion constraint if present in the policy, null otherwise

Specified by:

getTLVersionConstraint in interface ValidationPolicy

Returns:

ValueConstraint if TLVersion element is present in the constraint file, null otherwise.

getValidationModel

public Model getValidationModel()

Description copied from interface: ValidationPolicy

Returns the used validation model (default is SHELL). Alternatives are CHAIN and HYBRID

Specified by:

getValidationModel in interface ValidationPolicy

Returns:

the validation model to be used

getContainerConstraints

public ContainerConstraints getContainerConstraints()

Description copied from interface: ValidationPolicy

Returns the constraint used for ASiC Container validation

Specified by:

getContainerConstraints in interface ValidationPolicy

Returns:

ContainerConstraints

getSignatureConstraints

public SignatureConstraints getSignatureConstraints()

Description copied from interface: ValidationPolicy

Returns the constraint used for Signature validation

Specified by:

getSignatureConstraints in interface ValidationPolicy

Returns:

SignatureConstraints

getCounterSignatureConstraints

public SignatureConstraints getCounterSignatureConstraints()

Description copied from interface: ValidationPolicy

Returns the constraint used for Counter Signature validation

Specified by:

getCounterSignatureConstraints in interface ValidationPolicy

Returns:

SignatureConstraints

getTimestampConstraints

public TimestampConstraints getTimestampConstraints()

Description copied from interface: ValidationPolicy

Returns the constraint used for Timestamp validation

Specified by:

getTimestampConstraints in interface ValidationPolicy

Returns:

TimestampConstraints

getRevocationConstraints

public RevocationConstraints getRevocationConstraints()

Description copied from interface: ValidationPolicy

Returns the constraint used for Revocation validation

Specified by:

getRevocationConstraints in interface ValidationPolicy

Returns:

RevocationConstraints

getEIDASConstraints

public EIDAS getEIDASConstraints()

Description copied from interface: ValidationPolicy

Returns the constraint used for qualification validation

Specified by:

getEIDASConstraints in interface ValidationPolicy

Returns:

EIDAS

getCryptographic

public CryptographicConstraint getCryptographic()

Description copied from interface: ValidationPolicy

Returns the common constraint used for cryptographic validation

Specified by:

getCryptographic in interface ValidationPolicy

Returns:

CryptographicConstraint