info.pppc.base.plugin.security.io

Class SecureInputStream

java.lang.Object

java.io.InputStream

java.io.FilterInputStream

info.pppc.base.plugin.security.io.SecureInputStream

All Implemented Interfaces:

java.io.Closeable, java.lang.AutoCloseable

public class SecureInputStream
extends java.io.FilterInputStream

An AESInputStream that reads an encrypted and signed stream, if the right keys are supplied. The stream is encrypted using an AES key and contains a HMAC (created using the SHA-1 Hash-Algorithm). The stream structure can be read using a header byte, that marks the next start of a signature.

Author:

WA

Constructor Summary

Constructors

Constructor and Description
SecureInputStream(java.io.InputStream in, AESSymmetricKey key, HMACSymmetricKey signKey, byte[] iv) Creates a new AESInputStream with the given keys.

Method Summary

Methods

Modifier and Type	Method and Description
int	read() Reads a single byte.
int	read(byte[] b) Reads a number of bytes and fills an array.
int	read(byte[] b, int off, int len) Reads an encrypted stream.

Methods inherited from class java.io.FilterInputStream

available, close, mark, markSupported, reset, skip

Methods inherited from class java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

SecureInputStream

public SecureInputStream(java.io.InputStream in,
                 AESSymmetricKey key,
                 HMACSymmetricKey signKey,
                 byte[] iv)

Creates a new AESInputStream with the given keys. Please note that these keys should differ, otherwise it is possible to tamper the message.

Parameters:

in - The InputStream that should be decrypted

key - The key that was used for the encryption (symmetric)

signKey - The key that was used to create the signature (symmetric)

iv - The initialization vector that was used to initialize the encryption

Method Detail

read

public int read()
         throws java.io.IOException

Reads a single byte.

Overrides:

read in class java.io.FilterInputStream

Returns:

The single byte or EOF if this is read.

Throws:

java.io.IOException - Thrown by the underlying stream.

read

public int read(byte[] b)
         throws java.io.IOException

Reads a number of bytes and fills an array.

Overrides:

read in class java.io.FilterInputStream

Parameters:

b - The byte array to fill.

Returns:

The number of bytes read.

Throws:

java.io.IOException - Thrown by the underlying stream.

read

public int read(byte[] b,
       int off,
       int len)
         throws java.io.IOException

Reads an encrypted stream.

Overrides:

read in class java.io.FilterInputStream

Parameters:

b - buffer to write to

off - offset in buffer

len - length of buffer

Returns:

The read bytes (can be lower than len)

Throws:

java.io.IOException - Thrown by the underlying stream, if the signature is invalid or if the cipher text cannot be decrypted successfully