pkcs12

How to add a *.P12 keystore (with one entry)?

a 夏天 提交于 2020-02-04 02:39:49
问题 Apologies for my lack of understanding of certificates in general. I have a .p12 file (with a non-expired certificate) and a valid password so I can list the contents using: keytool -list -keystore file.p12 -storepass password -storetype PKCS12 -v In my Java code I am attempting an HTTPS post but keep getting this error: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No name matching [host.path.com] found This same post works against one of my other environments

JKS, BKS and PKCS12 file formats

橙三吉。 提交于 2020-01-16 05:51:46
问题 I am in the process of setting up a headless server that builds Phonegap hybrid apps for Android using data - JS, CSS, HTML + a keystore - provided by the user. I want to institute some basic client side checks to ensure that the keystore being uploaded is valid. For JKS files I have found that I can do a rudimentary check by ensuring that the first four bytes of the supplied file are the MAGIC number 0xFEEDFEED as specified here. I realize that this does not eliminate the possibility that

cURL with a PKCS#12 certificate in a bash script

可紊 提交于 2019-11-28 17:08:03
问题 i have to connect to a webservice, where a pkcs12 certificate is a must. the idea was to use curl in a bash script (under OS X, to be specific). i have learnt that one of the few things curl cannot do in communication, is handling pkcs12 certificates (.p12). what are my options? i have read that converting the certificate to PEM format would work (using openssl), however i have no idea how to tell curl that it gets a PEM and should communicate with a webservice requesting PKCS12 certificates.

What is the difference between a PKCS12 keystore and a PKCS11 keystore?

我的未来我决定 提交于 2019-11-28 17:00:30
I'm interested in Java-NSS libraries, and I'm reading the Sun's P11 Guide . I am confused on the following: What is the difference between using a PKCS12 keystore and a PKCS11 keystore? A keystore is just a keystore, right? Are there some differences? Can they be used interchangeably in any aspect? PKCS#12 is a file format (often called .p12 or .pfx) where you can store a private key and certificates. It's used for converting/transporting keys and certificates, mainly. If you export a private key + certificate from your browser, it's likely going to be in that format. PKCS#11 is an interface,

What is the difference between a PKCS12 keystore and a PKCS11 keystore?

白昼怎懂夜的黑 提交于 2019-11-27 10:00:04
问题 I'm interested in Java-NSS libraries, and I'm reading the Sun's P11 Guide. I am confused on the following: What is the difference between using a PKCS12 keystore and a PKCS11 keystore? A keystore is just a keystore, right? Are there some differences? Can they be used interchangeably in any aspect? 回答1: PKCS#12 is a file format (often called .p12 or .pfx) where you can store a private key and certificates. It's used for converting/transporting keys and certificates, mainly. If you export a

android签名机制(3)——如何制作签名

為{幸葍}努か 提交于 2019-11-26 21:53:50
一、 制作android签名公钥/密钥 1. 生成长度为2048位的RSA私钥 openssl genrsa -3 -out test.pem 2048 2. 生成x509格式的公钥证书 openssl req -new -x509 -key test.pem -out test.x509.pem -days 10000 3. 生成符合PKCS8标注的私钥文件 openssl pkcs8 -in test.pem -topk8 -outform DER -out test.pk8 -nocrypt 二、系统平台签名转eclipse签名 1.android 源码目录build\target\product\security 取platform.pk8 platform.x509.pem放到一个目录下 E:\sign\convert_keystore>ls platform.pk8 platform.x509.pem 2.把pkcs8格式的私钥转换成pkcs12格式: E:\sign\convert_keystore>openssl pkcs8 -in platform.pk8 -inform DER -outform PEM -out shared.priv.pem -nocrypt E:\sign\convert_keystore>ls shared.priv.pem