Skip to main content

CertificateKeyUsage

Identifies the intended usage for which the public-key certificate has been issued

enum CertificateKeyUsage {
DIGITAL_SIGNATURE
NON_REPUDIATION
KEY_ENCIPHERMENT
DATA_ENCIPHERMENT
KEY_AGREEMENT
KEY_CERT_SIGN
CRL_SIGN
ENCIPHER_ONLY
DECIPHER_ONLY
}

Values

CertificateKeyUsage.DIGITAL_SIGNATURE

for verifying digital signatures that are used with an entity authentication service, a data origin authentication service and/or an integrity service

CertificateKeyUsage.NON_REPUDIATION

for verifying digital signatures which are intended to signal that the signer is committing to the content being signed

CertificateKeyUsage.KEY_ENCIPHERMENT

for enciphering keys or other security information, e.g., for key transport

CertificateKeyUsage.DATA_ENCIPHERMENT

for enciphering user data, but not keys or other security information

CertificateKeyUsage.KEY_AGREEMENT

for use as a public key agreement key, such an when an asymmetric Diffie-Hellman key pair is used for key management

CertificateKeyUsage.KEY_CERT_SIGN

for verifying a CA's signature on public-key certificates

CertificateKeyUsage.CRL_SIGN

for verifying an authority's signature on CRLs

CertificateKeyUsage.ENCIPHER_ONLY

public key agreement key for use only in enciphering data when used with KEY_AGREEMENT also set

CertificateKeyUsage.DECIPHER_ONLY

public key agreement key for use only in deciphering data when used with KEY_AGREEMENT also set

Member Of

Certificate object