SensitiveDataCryptoUtilsConfiguration.java example

Explorer

chvote-1-0-master
- admin-offline
  - src
    - main
      - java
        ch
        ge
        ve
        offlineadmin
        OfflineAdminApp.java
        controller
        BallotDecryptionController.java
        ConsoleOutputControl.java
        InterruptibleProcessController.java
        KeyGenerationController.java
        KeyTestingController.java
        PasswordDialogController.java
        exception
        KeyGenerationRuntimeException.java
        KeyProvisioningRuntimeException.java
        MissingKeyFilesException.java
        ProcessInterruptedException.java
        services
        BallotCipherServiceFactory.java
        DecryptionBallotCiphersProvider.java
        DecryptionService.java
        EncryptionBallotCiphersProvider.java
        KeyGenerator.java
        util
        FileUtils.java
        LogLevel.java
        LogMessage.java
        ProgressTracker.java
        PropertyConfigurationServiceFactory.java
        SecurityConstants.java
    - test
      - java
        ch
        ge
        ve
        offlineadmin
        controller
        matchers
        AdditionalTableViewMatchers.java
        GlyphIconMatchers.java
        ProgressBarMatchers.java
- commons-base
  - commons-crypto
    - src
      - main
        java
        ch
        ge
        ve
        commons
        crypto
        ObjectSealer.java
        PropertyConfigurationProviderSecurityImpl.java
        SensitiveDataCryptoUtils.java
        SensitiveDataCryptoUtilsConfiguration.java
        SensitiveDataCryptoUtilsConfigurationDefaultImpl.java
        ballot
        AuthenticatedBallot.java
        BallotCipherService.java
        BallotCiphersProvider.java
        BallotCiphersProviderDefaultImpl.java
        EncryptedBallotAndWrappedKey.java
        exceptions
        AuthenticationTagMismatchException.java
        CryptoConfigurationRuntimeException.java
        CryptoOperationRuntimeException.java
        PrivateKeyPasswordMismatchException.java
        ProtocolNotRespectedException.java
        utils
        CertificateUtils.java
        CipherFactory.java
        HashUtils.java
        MacFactory.java
        MessageDigestFactory.java
        RandomValuesUtilities.java
        SaltUtils.java
        SecureRandomFactory.java
        streamutils
        SafeObjectReader.java
        SafeObjectSecurityRuntimeException.java
      - test
        java
        ch
        ge
        ve
        commons
        crypto
        ObjectSealerTest.java
        SensitiveDataCryptoUtilsST.java
        SensitiveDataCryptoUtilsTest.java
        TestSensitiveDataCryptoUtilsConfiguration.java
        ballot
        BallotCipherServiceTest.java
        matchers
        CodeFormatMatchers.java
        PatternMatcher.java
        utils
        RandomValuesUtilitiesTest.java
  - commons-file-utils
    - src
      - main
        java
        ch
        ge
        ve
        commons
        fileutils
        FileOperationRuntimeException.java
        OutputFilesPattern.java
        StreamHasher.java
  - commons-properties
    - src
      - main
        java
        ch
        ge
        ve
        commons
        properties
        PropertyConfigurationException.java
        PropertyConfigurationProvider.java
        PropertyConfigurationRuntimeException.java
        PropertyConfigurationService.java

package ch.ge.ve.commons.crypto;

/*-
 * #%L
 * Common crypto utilities
 * %%
 * Copyright (C) 2015 - 2016 République et Canton de Genève
 * %%
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 * 
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 * 
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 * #L%
 */

import javax.crypto.Cipher;
import javax.crypto.Mac;
import javax.crypto.SecretKey;

/**
 * Interface to retrieve the crypto primitives needed for anything other than the ballots...
 * For instance: database storage of electoral rolls and code lists
 */
public interface SensitiveDataCryptoUtilsConfiguration {
    /**
     * The cipher used for data stored in the database, such as, but not limited to:
     * <ul>
     * <li>Elector id</li>
     * <li>date of birth</li>
     * </ul>
     * relevant documentation: {@literal VE - Design de sécurité du système}
     *
     * @return the cipher to be used for encrypting data stored in the database
     */
    Cipher getCipher();

    /**
     * The mac algorithm used for data stored in the database, such as, but not limited to:
     * <ul>
     * <li>Card number</li>
     * <li>Confirmation code</li>
     * </ul>
     *
     * @return the mac algorithm used for data stored in the database,
     */
    Mac getMac();

    /**
     * Retrieve the secret key used for encryption and authenticated digests.
     *
     * @return the secret key used for encryption and authenticated digests
     */
    SecretKey getSecretKey();

    /**
     * Retrieve the number of iterations to use for PBKDF
     */
    int getIterations();

    /**
     * @return the algorithm to use for password-based key derivations
     */
    String getPbkdf2Algorithm();

    /**
     * @return the maximum byte size of a sealed object.
     */
    long getSealMaxBytes();
}