EncryptionAlgorithm Property
The key encryption algorithm.
Syntax
public int getEncryptionAlgorithm(); public void setEncryptionAlgorithm(int encryptionAlgorithm);
Enumerated values: public final static int eaRSA1_5 = 0; public final static int eaRSA_OAEP = 1; public final static int eaRSA_OAEP_256 = 2; public final static int eaA128KW = 3; public final static int eaA192KW = 4; public final static int eaA256KW = 5; public final static int eaDir = 6; public final static int eaECDH_ES = 7; public final static int eaECDH_ES_A128KW = 8; public final static int eaECDH_ES_A192KW = 9; public final static int eaECDH_ES_A256KW = 10; public final static int eaA128GCMKW = 11; public final static int eaA192GCMKW = 12; public final static int eaA256GCMKW = 13; public final static int eaPBES2_HS256_A128KW = 14; public final static int eaPBES2_HS384_A192KW = 15; public final static int eaPBES2_HS512_A256KW = 16;
Remarks
This property specifies the algorithm used to encrypt the randomly generated content encryption key.
When using an AES algorithm Key must be specified. When using an RSA or ECDH algorithm Certificate must be specified. When using a PBES algorithm KeyPassword must be specified;. Possible values are:
Algorithm | Description | Key Location |
0 (eaRSA1_5 - default) | RSAES-PKCS1-v1_5 | Certificate |
1 (eaRSA_OAEP) | RSAES OAEP using default parameters | Certificate |
2 (eaRSA_OAEP_256) | RSAES OAEP using SHA-256 and MGF1 with SHA-256 | Certificate |
3 (eaA128KW) | AES Key Wrap with default initial using 128-bit key | Key |
4 (eaA192KW) | AES Key Wrap with default initial using 192-bit key | Key |
5 (eaA256KW) | AES Key Wrap with default initial using 256-bit key | Key |
6 (eaDir) | Direct use of a shared symmetric key as the CEK | Key |
7 (eaECDH_ES) | Elliptic Curve Ephemeral Static key agreement using Concat KDF | Certificate |
8 (eaECDH_ES_A128KW) | ECDH-ES using Concat KDF and CEK wrapped with A128KW | Certificate |
9 (eaECDH_ES_A192KW) | ECDH-ES using Concat KDF and CEK wrapped with A192KW | Certificate |
10 (eaECDH_ES_A256KW) | ECDH-ES using Concat KDF and CEK wrapped with A256KW | Certificate |
11 (eaA128GCMKW) | Key wrapping with AES GCM using 128-bit key | Key |
12 (eaA192GCMKW) | Key wrapping with AES GCM using 192-bit key | Key |
13 (eaA256GCMKW) | Key wrapping with AES GCM using 256-bit key | Key |
14 (eaPBES2_HS256_A128KW) | PBES2 with HMAC SHA-256 and A128KW | KeyPassword |
15 (eaPBES2_HS384_A192KW) | PBES2 with HMAC SHA-384 and A192KW | KeyPassword |
16 (eaPBES2_HS512_A256KW) | PBES2 with HMAC SHA-512 and A256KW | KeyPassword |
When set to an ECDH algorithm the following settings are also applicable:
When set to a PBES algorithm the following settings are also applicable:
Default Value
0