Save This Page
Home » openjdk-7 » com.sun.crypto » provider » [javadoc | source]
com.sun.crypto.provider
public static class: TlsPrfGenerator.V12 [javadoc | source]
java.lang.Object
   javax.crypto.KeyGeneratorSpi
      com.sun.crypto.provider.TlsPrfGenerator
         com.sun.crypto.provider.TlsPrfGenerator$V12
A KeyGenerator implementation that supports TLS 1.2.

TLS 1.2 uses a different hash algorithm than 1.0/1.1 for the PRF calculations. As of 2010, there is no PKCS11-level support for TLS 1.2 PRF calculations, and no known OS's have an internal variant we could use. Therefore for TLS 1.2, we are updating JSSE to request a different provider algorithm: "SunTls12Prf". If we reused the name "SunTlsPrf", the PKCS11 provider would need be updated to fail correctly when presented with the wrong version number (via Provider.Service.supportsParameters()), and add the appropriate supportsParamters() checks into KeyGenerators (not currently there).
Fields inherited from com.sun.crypto.provider.TlsPrfGenerator:
LABEL_MASTER_SECRET,  LABEL_KEY_EXPANSION,  LABEL_CLIENT_WRITE_KEY,  LABEL_SERVER_WRITE_KEY,  LABEL_IV_BLOCK,  SSL3_CONST
Method from com.sun.crypto.provider.TlsPrfGenerator$V12 Summary:
engineGenerateKey
Methods from com.sun.crypto.provider.TlsPrfGenerator:
concat,   doTLS10PRF,   doTLS10PRF,   doTLS12PRF,   doTLS12PRF,   engineGenerateKey0,   engineInit,   engineInit,   engineInit,   genPad
Methods from javax.crypto.KeyGeneratorSpi:
engineGenerateKey,   engineInit,   engineInit,   engineInit
Methods from java.lang.Object:
clone,   equals,   finalize,   getClass,   hashCode,   notify,   notifyAll,   toString,   wait,   wait,   wait
Method from com.sun.crypto.provider.TlsPrfGenerator$V12 Detail:
 protected SecretKey engineGenerateKey()