Getting started with Java Language Inheritance Streams Exceptions and exception handling Collections Lambda Expressions Generics File I/O Arrays Interfaces Maps Strings InputStreams and OutputStreams Default Methods Classes and Objects Basic Control Structures Concurrent Programming (Threads)Console I/O Singletons Visibility (controlling access to members of a class)Regular Expressions Autoboxing Documenting Java Code Executor, ExecutorService and Thread pools Object Class Methods and Constructor JAXB Primitive Data Types Networking Optional Enums HttpURLConnection Annotations Audio Date Class Calendar and its Subclasses Nashorn JavaScript engine Java Native Interface Remote Method Invocation (RMI)Iterator and Iterable Operators Asserting Scanner Properties Class Preferences Reflection API Constructors ByteBuffer Serialization JSON in Java Random Number Generation Recursion Polymorphism StringBuilder Reference Data Types Bit Manipulation Java Agents Encapsulation Type Conversion BigInteger BigDecimal RSA Encryption Varargs (Variable Argument)ThreadLocal Logging (java.util.logging)Using the static keyword Disassembling and Decompiling Resources (on classpath)log4j / log4j2 JVM Flags Oracle Official Code Standard Character encoding Java Memory Management Immutable Objects Object Cloning Alternative Collections Lists BufferedWriter LocalTime Sets Comparable and Comparator JVM Tool Interface Nested and Inner Classes Apache Commons Lang Getters and Setters The Classpath Bytecode Modification XML Parsing using the JAXP APIs Reference Types Localization and Internationalization JAX-WS XML XPath Evaluation Java Performance Tuning Parallel programming with Fork/Join framework Common Java Pitfalls Non-Access Modifiers Java Compiler - 'javac'XJC Process Installing Java (Standard Edition)Command line Argument Processing Dates and Time (java.time.*)Fluent Interface XOM - XML Object Model Just in Time (JIT) compiler FTP (File Transfer Protocol)Java Native Access Modules Java Pitfalls - Exception usage Java Pitfalls - Language syntax ServiceLoader Classloaders Object References Java Pitfalls - Performance Issues Creating Images Programmatically Applets NIO - Networking New File I/O Secure objects Java Pitfalls - Threads and Concurrency Splitting a string into fixed length parts Java Pitfalls - Nulls and NullPointerException SecurityManager JNDI super keyword The java.util.Objects Class The Java Command - 'java' and 'javaw'Atomic Types Java Floating Point Operations Converting to and from Strings sun.misc.Unsafe Java Memory Model Java deployment Java plugin system implementations Queues and Deques Runtime Commands NumberFormat Security & Cryptography Java Virtual Machine (JVM)Unit Testing JavaBean Expressions Literals Java SE 8 Features Java SE 7 Features Packages Currency and Money Concurrent Collections Using ThreadPoolExecutor in MultiThreaded applications.Java Editions, Versions, Releases and Distributions Dynamic Method Dispatch JMX Security & Cryptography Generating Java Code JShell Benchmarks Collection Factory Methods Multi-Release JAR Files Stack-Walking API TreeMap and TreeSet Sockets Java Sockets Using Other Scripting Languages in Java Functional Interfaces List vs SET 2D Graphics in Java Class - Java Reflection Dequeue Interface Enum Map EnumSet class Local Inner Class Java Print Service Immutable Class String Tokenizer FileUpload to AWS AppDynamics and TIBCO BusinessWorks Instrumentation for Easy Integration Readers and Writers Hashtable Enum starting with number SortedMap WeakHashMap LinkedHashMap StringBuffer Choosing Collections C++ Comparison CompletableFuture

Secure objects

SealedObject (javax.crypto.SealedObject)

This class enables a programmer to create an object and protect its confidentiality with a cryptographic algorithm.

Given any Serializable object, one can create a SealedObject that encapsulates the original object, in serialized format (i.e., a "deep copy"), and seals (encrypts) its serialized contents, using a cryptographic algorithm such as AES, DES, to protect its confidentiality. The encrypted content can later be decrypted (with the corresponding algorithm using the correct decryption key) and de-serialized, yielding the original object.

Serializable obj = new String("John");
// Generate key
KeyGenerator kgen = KeyGenerator.getInstance("AES");
kgen.init(128);
SecretKey aesKey = kgen.generateKey();
Cipher cipher = Cipher.getInstance("AES");
cipher.init(Cipher.ENCRYPT_MODE, aesKey);
SealedObject sealedObject = new SealedObject(obj, cipher);
System.out.println("sealedObject-" + sealedObject);
System.out.println("sealedObject Data-" + sealedObject.getObject(aesKey));

SignedObject (java.security.SignedObject)

SignedObject is a class for the purpose of creating authentic runtime objects whose integrity cannot be compromised without being detected.

More specifically, a SignedObject contains another Serializable object, the (to-be-)signed object and its signature.

//Create a key
KeyPairGenerator keyGen = KeyPairGenerator.getInstance("DSA", "SUN");
SecureRandom random = SecureRandom.getInstance("SHA1PRNG", "SUN");
keyGen.initialize(1024, random);
// create a private key
PrivateKey signingKey = keyGen.generateKeyPair().getPrivate();
// create a Signature
Signature signingEngine = Signature.getInstance("DSA");
signingEngine.initSign(signingKey);
// create a simple object 
Serializable obj = new String("John");
// sign our object
SignedObject signedObject = new SignedObject(obj, signingKey, signingEngine);

System.out.println("signedObject-" + signedObject);
System.out.println("signedObject Data-" + signedObject.getObject());

Syntax:

SealedObject sealedObject = new SealedObject(obj, cipher);
SignedObject signedObject = new SignedObject(obj, signingKey, signingEngine);

Contributors

Topic Id: 5528

Example Ids: 19663,19664

This site is not affiliated with any of the contributors.