public abstract class Certificate extends Object implements Serializable
Abstract class for managing a variety of identity certificates. An identity certificate is a binding of a principal to a public key which is vouched for by another principal. (A principal represents an entity such as an individual user, a group, or a corporation.)
This class is an abstraction for certificates that have different formats but important common uses. For example, different types of certificates, such as X.509 and PGP, share general certificate functionality (like encoding and verifying) and some types of information (like a public key).
X.509, PGP, and SDSI certificates can all be implemented by subclassing the Certificate class, even though they contain different sets of information, and they store and retrieve the information in different ways.
X509Certificate,
CertificateFactory,
Serialized Form | Modifier and Type | Class | Description |
|---|---|---|
protected static class |
Certificate.CertificateRep |
Alternate Certificate class for serialization.
|
| Modifier | Constructor | Description |
|---|---|---|
protected |
Certificate (String type) |
Creates a certificate of the specified type.
|
| Modifier and Type | Method | Description |
|---|---|---|
boolean |
equals (Object other) |
Compares this certificate for equality with the specified
object.
|
abstract byte[] |
getEncoded () |
Returns the encoded form of this certificate.
|
abstract PublicKey |
getPublicKey () |
Gets the public key from this certificate.
|
String |
getType () |
Returns the type of this certificate.
|
int |
hashCode () |
Returns a hashcode value for this certificate from its
encoded form.
|
abstract String |
toString () |
Returns a string representation of this certificate.
|
abstract void |
verify (PublicKey key) |
Verifies that this certificate was signed using the
private key that corresponds to the specified public key.
|
void |
verify (PublicKey key,
Provider sigProvider) |
Verifies that this certificate was signed using the
private key that corresponds to the specified public key.
|
abstract void |
verify (PublicKey key,
String sigProvider) |
Verifies that this certificate was signed using the
private key that corresponds to the specified public key.
|
protected Object |
writeReplace () |
Replace the Certificate to be serialized.
|
protected Certificate(String type)
type - the standard name of the certificate type.
See the CertificateFactory section in the
Java Cryptography Architecture Standard Algorithm Name Documentation
for information about standard certificate types.public final String getType()
public boolean equals(Object other)
other object is an
instanceof Certificate, then
its encoded form is retrieved and compared with the
encoded form of this certificate.equals in class Object other - the object to test for equality with this certificate.Object.hashCode(),
HashMap public int hashCode()
hashCode in class Object Object.equals(java.lang.Object),
System.identityHashCode(java.lang.Object) public abstract byte[] getEncoded() throws CertificateEncodingException
CertificateEncodingException - if an encoding error occurs.public abstract void verify(PublicKey key) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException
key - the PublicKey used to carry out the verification.NoSuchAlgorithmException - on unsupported signature
algorithms.InvalidKeyException - on incorrect key.NoSuchProviderException - if there's no default provider.SignatureException - on signature errors.CertificateException - on encoding errors.public abstract void verify(PublicKey key, String sigProvider) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException
key - the PublicKey used to carry out the verification.sigProvider - the name of the signature provider.NoSuchAlgorithmException - on unsupported signature
algorithms.InvalidKeyException - on incorrect key.NoSuchProviderException - on incorrect provider.SignatureException - on signature errors.CertificateException - on encoding errors.public void verify(PublicKey key, Provider sigProvider) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, SignatureException
This method was added to version 1.8 of the Java Platform
Standard Edition. In order to maintain backwards compatibility with
existing service providers, this method cannot be abstract
and by default throws an UnsupportedOperationException.
key - the PublicKey used to carry out the verification.sigProvider - the signature provider.NoSuchAlgorithmException - on unsupported signature
algorithms.InvalidKeyException - on incorrect key.SignatureException - on signature errors.CertificateException - on encoding errors.UnsupportedOperationException - if the method is not supportedpublic abstract String toString()
public abstract PublicKey getPublicKey()
protected Object writeReplace() throws ObjectStreamException
ObjectStreamException - if a new object representing
this Certificate could not be created Submit a bug or feature
For further API reference and developer documentation, see Java SE Documentation. That documentation contains more detailed, developer-targeted descriptions, with conceptual overviews, definitions of terms, workarounds, and working code examples.
Copyright © 1993, 2025, Oracle and/or its affiliates. All rights reserved. Use is subject to license terms. Also see the documentation redistribution policy.
Scripting on this page tracks web page traffic, but does not change the content in any way.