pkcs#10

Create Certificate Signing Request inside an Android app

北城余情 提交于 2020-07-08 11:55:28
问题 I'm generating a SSL KeyPair in an Android app using the KeyStore API. I want to create a Certificate Signing Request (CSR) from the Public/Private key pair so that it can be sent to an external CA for signing. Is this possible? I'd like to use the builtin Android libraries rather than BouncyCastle if possible, in order have Android store the keys securely. 回答1: Certificate enrollment process Check this link. It generate key pair and CSR. Regarding generating a CSR (certificate sign request)

Create Certificate Signing Request inside an Android app

流过昼夜 提交于 2020-07-08 11:55:05
问题 I'm generating a SSL KeyPair in an Android app using the KeyStore API. I want to create a Certificate Signing Request (CSR) from the Public/Private key pair so that it can be sent to an external CA for signing. Is this possible? I'd like to use the builtin Android libraries rather than BouncyCastle if possible, in order have Android store the keys securely. 回答1: Certificate enrollment process Check this link. It generate key pair and CSR. Regarding generating a CSR (certificate sign request)

sun.security.x509.CertAndKeyGen and sun.security.pkcs.PKCS10 - missing in JDK8. Implementation suggestions

孤者浪人 提交于 2020-01-01 09:36:14
问题 In JDK8 the class sun.security.x509.CertAndKeyGen does not exists anymore. Also sun.security.pkcs.PKCS10 is missing. In JDK7 they existed. What could be an alternatives to these classes methods? 回答1: I think you are looking for: sun.security.tools.keytool.CertAndKeyGen You'll find it inside the rt.jar under the JRE libraries. Keep in mind this class is outside of J2SE, it's likely only available with OpenJDK, so for example the GNU Compiler won't have it. 回答2: If you are using maven, put this

What is the difference between req_extensions in config and -extensions on command line?

南笙酒味 提交于 2019-12-20 03:17:28
问题 The sample openssl root ca config from the OpenSSL Cookbook defines the following (p40): [req] ... req_extensions = ca_ext [ca_ext] ... Later (p43), the root ca key is generated, then the root ca selfsigned cert. openssl req -new \ -config root-ca.conf \ -out root-ca.csr \ -keyout private/root-ca.key openssl ca -selfsign \ -config root-ca.conf \ -in root-ca.csr \ -out root-ca.crt \ -extensions ca_ext Isn't req_extensions redundant in this specific use case? When is req_extension really needed

sun.security.x509.CertAndKeyGen and sun.security.pkcs.PKCS10 - missing in JDK8. Implementation suggestions

不羁岁月 提交于 2019-12-04 05:09:33
In JDK8 the class sun.security.x509.CertAndKeyGen does not exists anymore. Also sun.security.pkcs.PKCS10 is missing. In JDK7 they existed. What could be an alternatives to these classes methods? I think you are looking for: sun.security.tools.keytool.CertAndKeyGen You'll find it inside the rt.jar under the JRE libraries. Keep in mind this class is outside of J2SE , it's likely only available with OpenJDK , so for example the GNU Compiler won't have it. mesompi If you are using maven, put this in pom.xml. ( from this question ): <plugin> <groupId>org.apache.maven.plugins</groupId> <artifactId

What is the difference between req_extensions in config and -extensions on command line?

Deadly 提交于 2019-12-01 23:33:47
The sample openssl root ca config from the OpenSSL Cookbook defines the following (p40): [req] ... req_extensions = ca_ext [ca_ext] ... Later (p43), the root ca key is generated, then the root ca selfsigned cert. openssl req -new \ -config root-ca.conf \ -out root-ca.csr \ -keyout private/root-ca.key openssl ca -selfsign \ -config root-ca.conf \ -in root-ca.csr \ -out root-ca.crt \ -extensions ca_ext Isn't req_extensions redundant in this specific use case? When is req_extension really needed? frasertweedale req_extensions is used for declaring request extensions to be included in PKCS #10
订阅 pkcs#10