be.fgov.ehealth.etee.crypto.decrypt (End-To-End Encryption - Crypto

Interface Summary
Interface	Description
DataSealChecker	Verify if outer signature is according to specified policies (ocsp, signing, encryption).
DataSealCheckerBuilder.BuildStep	Build the `DataSealChecker`
DataSealCheckerBuilder.OCSPPolicyStep	First step: Choose an OCSP-policy.
DataSealCheckerBuilder.SigningPolicyStep	Second step: Choose the signing policies that you want to accept.
DataUnsealer	A DataUnsealer is a thread safe object that can unseal data protected according to the eHealth end-to-end encryption specifications.
DataUnsealerBuilder.BuildStep	Build the `DataUnsealer`
DataUnsealerBuilder.OCSPPolicyStep	First step: Choose an OCSP-policy.
DataUnsealerBuilder.PublicKeyPolicyStep	Third step: Choose a public key `EncryptionPolicy`.
DataUnsealerBuilder.SecretKeyPolicyStep	Fourth step: Choose a secret key `EncryptionPolicy`.
DataUnsealerBuilder.SigningPolicyStep	Second step: Choose the signing policies that you want to accept.

Class Summary
Class	Description
DataSealCheckerBuilder	This builder will create and configure an instance of `DataSealChecker`.
DataUnsealerBuilder	This builder will create and configure an instance of `DataUnsealer`.
UnsealedData	Data produced when verifying/unsealing data.

Package be.fgov.ehealth.etee.crypto.decrypt Description

Classes for validation and unsealing of sealed message.

Use the Builders as starting point to configure the services.

Supported Policies and Options can be passed through the builders.
See be.fgov.ehealth.etee.crypto.policies

Supported unsigned attributes in CMS messages

id-aa-ets-revocationValues: OCSPResponses and CRLs on the certificates contained in the sealed message.
id-aa-signatureTimeStampToken: Signature Timestamp to prolong the validity of the SigningTime of the sealed message.