We don't specify a required publisher, and right now we don't enforce that publisherID is the digest of the key used to sign (which could actually be handy to preserve privacy); we just use the key locator and publisherID combined to look up keys in caches (though for right now we only put keys in caches by straight digest; would have to offer option to put keys in caches using some privacy-preserving function as well. More...
Public Member Functions | |
SimpleVerifier (PublisherPublicKeyDigest requiredPublisher) | |
SimpleVerifier (PublisherPublicKeyDigest publisher, KeyManager keyManager) | |
boolean | verify (ContentObject object) |
Verify this content object, potentially in the context of other data held by the verifier. | |
Static Public Member Functions | |
static ContentVerifier | getDefaultVerifier () |
Static Public Attributes | |
static SimpleVerifier | _defaultVerifier = null |
Package Attributes | |
PublisherPublicKeyDigest | _requiredPublisher |
KeyManager | _keyManager |
We don't specify a required publisher, and right now we don't enforce that publisherID is the digest of the key used to sign (which could actually be handy to preserve privacy); we just use the key locator and publisherID combined to look up keys in caches (though for right now we only put keys in caches by straight digest; would have to offer option to put keys in caches using some privacy-preserving function as well.
TODO evaluate when the gap between checking verifier and checking publisherID matters. Probably does; could have bogus publisherID, and then real key locator and content that uses key locator would then verify content and user might rely on publisher ID. Make that an option, though, even if it costs more time to check.
boolean org.ccnx.ccn.protocol.ContentObject.SimpleVerifier.verify | ( | ContentObject | content | ) |
Verify this content object, potentially in the context of other data held by the verifier.
This may be a simple signature verification, which might take advantage of cached data, or a more complex trust calculation determining the acceptability of this content for a particular use.
content | the object whose signature we should verify. |
Implements org.ccnx.ccn.ContentVerifier.