CryptoKeyStorage Class
Properties Methods Events Configuration Settings Errors
The CryptoKeyStorage class offers key storage functionality for a variety of key store types.
Syntax
class secureblackbox.CryptoKeyStorage
Remarks
CryptoKeyStorage provides access to many types of key stores, such as files or PKCS#11.
Property List
The following is the full list of the properties of the class with short descriptions. Click on the links for further details.
key_count | The number of records in the Key arrays. |
key_algorithm | The algorithm of the cryptographic key. |
key_bits | The length of the key in bits. |
key_exportable | Returns True if the key is exportable (can be serialized into an array of bytes), and False otherwise. |
key_handle | Allows to get or set a 'handle', a unique identifier of the underlying property object. |
key_id | Provides access to a storage-specific key identifier. |
key_iv | The initialization vector (IV) of a symmetric key. |
key_key | The byte array representation of the key. |
key_nonce | A nonce value associated with a key. |
key_private | Returns True if the object hosts a private key, and False otherwise. |
key_public | Returns True if the object hosts a public key, and False otherwise. |
key_subject | Returns the key subject. |
key_symmetric | Returns True if the object contains a symmetric key, and False otherwise. |
key_valid | Returns True if this key is valid. |
opened | Indicates whether the storage is in the open state. |
pinned_key_handle | Allows to get or set a 'handle', a unique identifier of the underlying property object. |
selected_key_count | The number of records in the SelectedKey arrays. |
selected_key_algorithm | The algorithm of the cryptographic key. |
selected_key_bits | The length of the key in bits. |
selected_key_exportable | Returns True if the key is exportable (can be serialized into an array of bytes), and False otherwise. |
selected_key_handle | Allows to get or set a 'handle', a unique identifier of the underlying property object. |
selected_key_id | Provides access to a storage-specific key identifier. |
selected_key_iv | The initialization vector (IV) of a symmetric key. |
selected_key_key | The byte array representation of the key. |
selected_key_nonce | A nonce value associated with a key. |
selected_key_private | Returns True if the object hosts a private key, and False otherwise. |
selected_key_public | Returns True if the object hosts a public key, and False otherwise. |
selected_key_subject | Returns the key subject. |
selected_key_symmetric | Returns True if the object contains a symmetric key, and False otherwise. |
selected_key_valid | Returns True if this key is valid. |
storage_id | A unique identifier of this storage. |
storage_location | Specifies the location of the currently opened storage. |
Method List
The following is the full list of the methods of the class with short descriptions. Click on the links for further details.
add_pinned | Adds the pinned key to the storage. |
clear | Removes all existing keys from the storage. |
close | Closes the logical storage. |
config | Sets or retrieves a configuration setting. |
create_new | Creates a new storage. |
import_bytes | Adds a key to the storage. |
import_from_file | Adds a key to the storage. |
open | Opens existing storage or creates one in memory. |
refresh | Refreshes all storage keychains. |
remove | Removes a key from the storage. |
select | Allows the selection of keys from the store. |
Event List
The following is the full list of the events fired by the class with short descriptions. Click on the links for further details.
on_error | Fires when an errors happens during a key storage operation. |
on_notification | This event notifies the application about an underlying control flow event. |
on_password_needed | This event is fired when a decryption password is needed. |
Configuration Settings
The following is a list of configuration settings for the class with short descriptions. Click on the links for further details.
TempPath | Path for storing temporary files. |
CheckKeyIntegrityBeforeUse | Enables or disable private key integrity check before use. |
CookieCaching | Specifies whether a cookie cache should be used for HTTP(S) transports. |
Cookies | Gets or sets local cookies for the class (supported for HTTPClient, RESTClient and SOAPClient only). |
DefDeriveKeyIterations | Specifies the default key derivation algorithm iteration count. |
EnableClientSideSSLFFDHE | Enables or disables finite field DHE key exchange support in TLS clients. |
GlobalCookies | Gets or sets global cookies for all the HTTP transports. |
HttpUserAgent | Specifies the user agent name to be used by all HTTP clients. |
LogDestination | Specifies the debug log destination. |
LogDetails | Specifies the debug log details to dump. |
LogFile | Specifies the debug log filename. |
LogFilters | Specifies the debug log filters. |
LogFlushMode | Specifies the log flush mode. |
LogLevel | Specifies the debug log level. |
LogMaxEventCount | Specifies the maximum number of events to cache before further action is taken. |
LogRotationMode | Specifies the log rotation mode. |
MaxASN1BufferLength | Specifies the maximal allowed length for ASN.1 primitive tag data. |
MaxASN1TreeDepth | Specifies the maximal depth for processed ASN.1 trees. |
OCSPHashAlgorithm | Specifies the hash algorithm to be used to identify certificates in OCSP requests. |
UseOwnDNSResolver | Specifies whether the client classes should use own DNS resolver. |
UseSharedSystemStorages | Specifies whether the validation engine should use a global per-process copy of the system certificate stores. |
UseSystemOAEPAndPSS | Enforces or disables the use of system-driven RSA OAEP and PSS computations. |
UseSystemRandom | Enables or disables the use of the OS PRNG. |