CertificateKeyUsage
Identifies the intended usage for which the public-key certificate has been issued
enum CertificateKeyUsage {
DIGITAL_SIGNATURE
NON_REPUDIATION
KEY_ENCIPHERMENT
DATA_ENCIPHERMENT
KEY_AGREEMENT
KEY_CERT_SIGN
CRL_SIGN
ENCIPHER_ONLY
DECIPHER_ONLY
}
Values
CertificateKeyUsage.DIGITAL_SIGNATURE
for verifying digital signatures that are used with an entity authentication service, a data origin authentication service and/or an integrity service
CertificateKeyUsage.NON_REPUDIATION
for verifying digital signatures which are intended to signal that the signer is committing to the content being signed
CertificateKeyUsage.KEY_ENCIPHERMENT
for enciphering keys or other security information, e.g., for key transport
CertificateKeyUsage.DATA_ENCIPHERMENT
for enciphering user data, but not keys or other security information
CertificateKeyUsage.KEY_AGREEMENT
for use as a public key agreement key, such an when an asymmetric Diffie-Hellman key pair is used for key management
CertificateKeyUsage.KEY_CERT_SIGN
for verifying a CA's signature on public-key certificates
CertificateKeyUsage.CRL_SIGN
for verifying an authority's signature on CRLs
CertificateKeyUsage.ENCIPHER_ONLY
public key agreement key for use only in enciphering data when used with KEY_AGREEMENT also set
CertificateKeyUsage.DECIPHER_ONLY
public key agreement key for use only in deciphering data when used with KEY_AGREEMENT also set
Member Of
Certificate object