In Tink, {@code Key} objects are objects which represent some cryptographic functions. For * example, a {@code MacKey} represents the two functions {@code computeMac} and {@code verifyMac}. * The function {@code computeMac} maps a byte sequence (possibly with additional randomness) to * another byte sequence, called the tag. The function {@code verifyMac} verifies the tag. A * subclass {@code HmacKey} then contains all the information one needs to properly compute an HMAC * (including e.g. the hash function and tag length used). * *
Key objects are light weight, i.e., they should have almost no dependencies, except what is * needed to represent the function. This allows key objects to be used in contexts where * dependencies need to be kept at a minimum. */ @Immutable public abstract class Key { /** * Returns a {@link Parameters} object containing all the information about the key which is not * randomly chosen. * *
Implementations need to ensure that {@code getParameters().hasIdRequirement()} returns true * if and only if {@code getIdRequirementOrNull} is non-null. */ public abstract Parameters getParameters(); /** * Returns null if this key has no id requirement, otherwise the required id. * *
Some keys, when they are in a keyset, are required to have a certain ID to work properly.
* This comes from the fact that Tink in some cases prefixes ciphertexts or signatures with the
* string {@code 0x01 Implementations are required to do this in constant time.
*
* Note: this is allowed to return false even if two keys are guaranteed to represent the same
* function, but are represented differently. For example, a key is allowed to internally store
* the number of zero-bytes used as padding when a large number is represented as a byte array,
* and use this in the comparison.
*
* Note: Tink {@code Key} objects should typically not override {@code hashCode} (because it
* could risk leaking key material). Hence, they typically also should not override {@code
* equals}.
*/
public abstract boolean equalsKey(Key other);
}