keystore

Android - Programmatically retrieve certificate (manually installed) from keystore

為{幸葍}努か 提交于 2019-12-07 08:02:28
问题 On my android device, I manually installed a certificate which goal is to allow me access to a specific website. When I look in Security -- User certs, I see can see my certificate. My website is displayed into a webview, so I have to use the following code @Override public void onReceivedClientCertRequest(WebView view, final ClientCertRequest request) { if (mCertificates == null || mPrivateKey == null) { loadCertificateAndPrivateKey(); } request.proceed(mPrivateKey, mCertificates); } In my

Unable to export signed APK in Android Studio

半城伤御伤魂 提交于 2019-12-07 07:14:55
问题 When I use keytool -list -keystore /path/to/keyfile.jks and give my password, I'm able to see the entry there, but when I use the same password while trying to Generate signed APK using the same password, I get the error Cannot load key store: Keystore was tampered with, or password was incorrect Please help! 回答1: Got the answer after 20 hours of tireless searching. Apparently there is some issue with the character '&' in passwords as mentioned here https://code.google.com/p/android/issues

How to generate KeyPair in android KeyStore, protected by custom password

三世轮回 提交于 2019-12-07 03:52:17
问题 I have app which uses Fingerprint and 4 digit pin (which can be set by user in application settings, this is not system pin/pattern/password) authorization. With Fingerprint everything is fine, I have problem with pin. What I'm trying to do is: Let user set pin from application settings Generate Keypair in keystore for some alias protected by entered pin (so that private key can not be accessed without this pin) Send public key to server for future signature verification Get user token from

'JKS not found' when trying GoogleNetHTTPTransport

空扰寡人 提交于 2019-12-07 01:15:20
问题 I've been having some troubles with Google Authorization and I've never worked with any "Google credentials-involved" process before. My problem takes place after I've created the credential reader (which I assume means that I could access my Google credential's JSON file correctly), just in the line where I instantiate a new Trusted Transport from the GoogleNetHTTPTransport . There, the Exception error throws: W/System.err: java.security.KeyStoreException: JKS not found at java.security

Difference between Entry Type “keyEntry” and “trustedCertEntry” in a keystore

て烟熏妆下的殇ゞ 提交于 2019-12-06 19:05:22
问题 I don't have much knowledge in this area, but i have still tried to do things by googling. Here is the problem i am facing. Case 1(Works): I have a CA signed certificate and i would like to use it in my Web Application. I first created a keystore. I see that it creates an entry type "keyEntry" in the keystore. Then i import the CA signed certificate to the keystore created. Here are the steps: keytool -genkeypair -keystore keystore.jks I see an entry in the keystore of type "keyEntry" of

Private and public key separately

折月煮酒 提交于 2019-12-06 17:03:37
οκ!I want to establish a client server communication oves SSL/TLS in java. The server is multithreaded. With openssl I acted as my own CA (created private key and self-signed certificate for the authority). Now I want to create keys and certs for my server and clients which are signed from the CA I created. 1)Do I have to create certs and keys from the prompt for every single client? Or is it another "automated" way eg with a script? 2) I have seen that this code for setting up keystores private void setupClientKeyStore() throws GeneralSecurityException, IOException { clientKeyStore = KeyStore

SSL intermediate certificates

混江龙づ霸主 提交于 2019-12-06 15:03:09
问题 We are having a lot of trouble getting our SSL certificates to work properly. We have generated our keystores (using multiple sources) from an existing key and certificate by first creating a pkcs12 file and exporting it to a java keystore. Now, Thawte requires that you install 2 intermediate ca files. If I inspect our keystore, all three (the 2 intermediates and our own) are present. Tomcat starts up properly, but on visiting the site (and using the verisign ssl checker), the two

Fetch SSL certificate from local store using java into sslContext object

[亡魂溺海] 提交于 2019-12-06 14:48:37
问题 I need to perform a rest call by attaching the local ssl certificate. I do not have any info about KeyStore. I just know there is a Certificate installed in my PC and I have to use the certificate based on details of certificate like "Serial number", "Issuer" etc which i can see in the certificate details in the personal certificate store. I need to create SSLConnectionSocketFactory object which can be attached to rest call. My question is how to create the SSLContext object? SSLContext

ECDH with key in Android Key Store

家住魔仙堡 提交于 2019-12-06 13:16:52
I'm developping an Android App that generates an EC Asymetric key. When my app gets connected to a device, they exchange their public key. They then use ECDH to establish a shared secret. This shared secret is then used to derive an AES session key. All this is working fine. I'm now working on the storage of the asymetric key. I wanted to put it in the Android KeyStore but I don't see how I can then do the ECDH operation. The key in the key store can be used to sign, decrypt or encrypt but I don't see the possibility to do ECDH operation. Is it possible? While browsing SO, I have seen this

applet with SunMSCapi not working in linux

时光毁灭记忆、已成空白 提交于 2019-12-06 13:09:35
问题 We have created a new site for our web where we let the users to sign a pdf document using an applet we have designed. The issue is that this applet works fine only in Windows OS and we would like to extend it to linux OS. When we run the applet in linux we get this error message: [opensc-pkcs11] reader-pcsc.c:896:pcsc_detect_readers: SCardListReaders failed: 0x8010002e [opensc-pkcs11] reader-pcsc.c:1015:pcsc_detect_readers: returning with: No readers found [opensc-pkcs11] reader-pcsc.c:896
订阅 keystore