Hi.

I've downloaded and using the latest version (1.47) of the BouncyCastle API.
In this version the SignerInformation class only has one verify method that takes a SignerInformationVerifier object. This class is not mentioned in the book. I've tried to figure out how to use it the best. As it is right now I've made my own method that looks like this.

private SignerInformationVerifier createSIV(X509CertificateHolder x509ch) throws Exception {
BcRSAContentVerifierProviderBuilder qaz = new BcRSAContentVerifierProviderBuilder((DigestAlgorit hmIdentifierFinder) new DefaultDigestAlgorithmIdentifierFinder()); CMSSignatureAlgorithmNameGenerator sang = new DefaultCMSSignatureAlgorithmNameGenerator(); SignatureAlgorithmIdentifierFinder saif = new DefaultSignatureAlgorithmIdentifierFinder();
DigestCalculatorProvider dcp = new BcDigestCalculatorProvider();
SignerInformationVerifier siv = new SignerInformationVerifier(sang, saif, qaz.build(x509ch), dcp);
return siv;
}

I've a hard time thinking this is how it's supposed to be.

Could you please explain how to use/create the SignerInformationVerifier class and an example.

Regards
Patric

The class you're referring to is one of the next generation BC APIs which have only recently been added.

You can find some more details on them at:

http://www.bouncycastle.org/wiki/dis...Version+2+APIs

The other place which is good to look is at the test classes, specifically the CMS test class BcSignedDataTest which is slowly evolving to doing more and more operations using the lightweight API.

Other than that, it looks like you have worked it out yourself!

Regards,

David

Thanks!

The JcaSimpleSignerInfoVerifierBuilder class is the easier way to go and the one I was looking for.

Your support is commendable.

Regards
Patric