PKI Certificate Tutorials - Herong's Tutorial Examples
∟PKI Certificate Store
∟What Is Java KeyStore
This section describes what is Java KeyStore - a database file used by older Android systems and Java applications to store PKI certificates.
What Is Java KeyStore?
Java KeyStore is a database file used by older Android systems and Java applications
to store PKI certificates.
Newer versions of Java applications are using PKCS12 database files now.
Main features of Linux Truststore are:
- Java KeyStore is a single file in JKS (Java KeyStore) format
defined as part the Java standard.
- Java KeyStore files are password protected.
- Self-signed certificates in Java KeyStore files include
their private keys.
- The Java KeyStore file for trusted root CA certificates
is located at $JAVA_HOME/jre/lib/security/cacerts on most computers.
Its password is "changeit".
- The "keytool" command provided in JDK (Java Development Kit)
can be used manage certificates in the Linux Truststore.
- Linux Truststore also maintains a Java KeyStore file for
trusted root CA certificates at
/etc/pki/ca-trust/extracted/java/cacerts.
Its password is also "changeit".
For more information, see
Java "keytool" Commands and KeyStore Files chapter.
Table of Contents
About This Book
Introduction of PKI (Public Key Infrastructure)
Introduction of PKI Certificate
PKI Certificate File Formats
OpenSSL - Cryptography Toolkit
"openssl ca" - CA (Certificate Authority) Tool
Java "keytool" Commands and KeyStore Files
►PKI Certificate Store
What Is PKI Certificate Store
What Is Windows Certificate Store
What Is macOS KeyChain
What Is Linux Truststore
►What Is Java KeyStore
What Is PEM Certificate Bundle
What Is PKCS12 Certificate Bundle
PKCS12 Certificate Bundle File
PKCS7 Certificate Chain File
PKI Certificate Related Terminology
References
Full Version in PDF/EPUB