iaik.security.rsa

Class RSAKeyPairGeneratorFIPS

java.lang.Object

java.security.KeyPairGeneratorSpi

java.security.KeyPairGenerator

iaik.security.rsa.RSAKeyPairGenerator

iaik.security.rsa.RSAKeyPairGeneratorFIPS

Direct Known Subclasses:

RSAOaepKeyPairGeneratorFIPS, RSAPssKeyPairGeneratorFIPS

public class RSAKeyPairGeneratorFIPS
extends RSAKeyPairGenerator

The RSAKeyPairGeneratorFIPS class is used to generate keys for the RSA algorithm according to FIPS 186-3. It can be used to generate moduli of the lengths 1024, 2048 and 3072. Other lengths are not supported.

Note that setting the SecureRandom via initialize() does not have any effects, since FIPS-186-3 does not allow arbitrary PRNGs but only NIST SP800-90 PRNGs.

For creating a RSA key pair, a KeyPairGenerator has to be instantiated, properly initialized and directed to actually generate the keys by calling the generateKeyPair method. If the generator is not initialized by explicitly calling an initialize method, the modulus length per default is set to 2048 bits.

Generating RSA keys using a modulus length of, e.g. 1024 bits, may be done by:

 KeyPairGenerator key_gen = KeyPairGenerator.getIntance("RSA-FIPS-186-3");
 key_gen.initialize(1024, sec_random);
 KeyPair key_pair = key_gen.generateKeyPair();
 

Guidelines on how to create some key using a KeyPairGenerator can be found in http://java.sun.com/products/JDK/1.2/docs/guide/security/CryptoSpec.html.

Version:

File Revision 28

See Also:

KeyPairGenerator, KeyPair, RSACipher, RSAPublicKey, RSAPrivateKey, RSAKeyFactory

Field Summary

Fields

Modifier and Type	Field and Description
static int	KEYLENGTH_1024 Smallest keylength (1024 bits) supported by FIPS 186-3.
static int	KEYLENGTH_2048 Medium keylength (2048 bits) supported by FIPS 186-3.
static int	KEYLENGTH_3072 Largest keylength (3072 bits) supported by FIPS 186-3.
static java.math.BigInteger	LOWER_PUBLIC_EXPONENT_BOUND Lower bound for public exponent
static java.math.BigInteger	UPPER_PUBLIC_EXPONENT_BOUND Upper bound for public exponent

Fields inherited from class iaik.security.rsa.RSAKeyPairGenerator

initialized, keylen, public_exponent, random

Constructor Summary

Constructors

Constructor and Description
RSAKeyPairGeneratorFIPS() Default constructor for creating a RSAKeyPairGenerator object.

Method Summary

Methods inherited from class iaik.security.rsa.RSAKeyPairGenerator

generateKeyPair, initialize, initialize, initialize, initialize, initialize

Methods inherited from class java.security.KeyPairGenerator

genKeyPair, getAlgorithm, getInstance, getInstance, getInstance, getProvider

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

KEYLENGTH_1024

public static final int KEYLENGTH_1024

Smallest keylength (1024 bits) supported by FIPS 186-3.

See Also:

Constant Field Values

KEYLENGTH_2048

public static final int KEYLENGTH_2048

Medium keylength (2048 bits) supported by FIPS 186-3.

See Also:

Constant Field Values

KEYLENGTH_3072

public static final int KEYLENGTH_3072

Largest keylength (3072 bits) supported by FIPS 186-3.

See Also:

Constant Field Values

LOWER_PUBLIC_EXPONENT_BOUND

public static final java.math.BigInteger LOWER_PUBLIC_EXPONENT_BOUND

Lower bound for public exponent

UPPER_PUBLIC_EXPONENT_BOUND

public static final java.math.BigInteger UPPER_PUBLIC_EXPONENT_BOUND

Upper bound for public exponent

Constructor Detail

RSAKeyPairGeneratorFIPS

public RSAKeyPairGeneratorFIPS()

Default constructor for creating a RSAKeyPairGenerator object.