1 /*

     2 * Copyright (c) 2743 Nokia Corporation and/or its subsidiary(-ies). 

     3 * All rights reserved.

     4 * This component and the accompanying materials are made available

     5 * under the terms of "Eclipse Public License v1.0"

     6 * which accompanies this distribution, and is available

     7 * at the URL "http://www.eclipse.org/legal/epl-v10.html".

     8 *

     9 * Initial Contributors:

    10 * Nokia Corporation - initial contribution.

    11 *

    12 * Contributors:

    13 *

    14 * Description:  Security interface for HTI framework will provide

    15 *        implementation of security functionality:

    16 *        - authenication (establishing security context),

    17 *        - integrity (generating Message Integrity Code),

    18 *        - confidentiality (message encryption/decryption).

    19 *        The interface and terms are based on the GSS API [RFC 2743].

    20 *

    21 */

    22 

    23 

    24 #ifndef SECURITYMANAGER_H__

    25 #define SECURITYMANAGER_H__

    26 

    27 #include <e32base.h>

    28 

    29 

    30 class CHtiSecurityManager : public CBase

    31     {

    32 public:

    33     static CHtiSecurityManager* NewL();

    34     static CHtiSecurityManager* NewLC();

    35 

    36     virtual ~CHtiSecurityManager();

    37 

    38     /**

    39     * Processes the token in question and generates reply tokens

    40     * for security context establishment.

    41     * The function is called as many times as needed depending on

    42     * underlying authentication algorithm

    43     *

    44     * @param aToken token received from client that wish to establish

    45     *       communcation with HTI framework

    46     *

    47     * @return reply token that should be sent back to the client,

    48     *         transfer ownership

    49     */

    50     TDesC8* SetSecurityContext(const TDesC8& aToken);

    51 

    52     /**

    53     * Checks either security context has been established

    54     */

    55     TBool IsContextEstablashed() const;

    56 

    57     /**

    58     * Reset security context

    59     */

    60     void ResetSecurityContext();

    61 

    62     /**

    63     * Implementeion of integrity and confedentiality services.

    64     * It can generates message MIC and combine it with message.

    65     * Optionaly, the message also can be encrypted.

    66     *

    67     * @param aMessage message to be wrapped

    68     * @param aEncrypt flag indicates that message should be encrypted

    69     *

    70     * @return wrapped message ready to send, transfer ownership

    71     *

    72     */

    73     TDesC8* WrapL(const TDesC8& aMessage, TBool aEncrypt = EFalse);

    74 

    75     /**

    76     * Implementeion of integrity and confedentiality services.

    77     * It unwrape message that was previosly wrapped.

    78     *

    79     * @param aMessage wrapped message

    80     *

    81     * @return plain message ready for processing, transfer ownership

    82     *

    83     */

    84     TDesC8* UnwrapL(const TDesC8& aMessage);

    85 

    86     /**

    87     * Generates MIC for a message in question.

    88     *

    89     * @param aMessage plain message

    90     *

    91     * @return MIC generated by an underlying algorithm (e.g. CRC16)

    92     */

    93     TPtrC8 MIC(const TDesC8& aMessage) const;

    94 

    95 protected:

    96     CHtiSecurityManager();

    97     void ConstructL();

    98 

    99 protected:

   100     TBool iSecurityContext;

   101     };

   102 

   103 #endif