What is Java keytool? The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates. You can use the java keytool to remove a cert or key entry from a keystore. In many respects, it’s a competing utility with openssl for keystore, key, … [Read more...] about keytool remove cert – command to remove a cert from keystore
How to generate a keystore with java keytool
What is java keytool? The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates, as well as generate a keystore. In many respects, it's a competing utility with openssl for keystore, key, and certificate management. What keytool … [Read more...] about How to generate a keystore with java keytool
Siteground configure SSL with Let’s Encrypt
If you are new to Siteground, configuring SSL, or Let's Encrypt, then these instructions will guide you in setting up your WordPress installation with SSL. Assuming you have already successfully installed WordPress in your Siteground account, follow these steps in Siteground to configure SSL with … [Read more...] about Siteground configure SSL with Let’s Encrypt
64-bit Serial Number Entropy Recap – SSL/TLS Certificates
On February 28, 2019 a CA Compliance bug was filed in the Mozilla NSS product that detailed a flaw where DarkMatter had mis-issued certificates having only 63 bits of entropy, instead of the required 64-bit serial number entropy. See https://wiki.mozilla.org/CA/Incident_Dashboard for incidents … [Read more...] about 64-bit Serial Number Entropy Recap – SSL/TLS Certificates
Certificate Transparency Monitoring
With the certificate transparency (CT) enforcement by Chrome, all publicly trusted TLS certificates are now logged in a distributed manner to multiple CT logs which brings us to discuss certificate transparency monitoring. The irony here is that while a PKI is based on trust, you cannot trust it … [Read more...] about Certificate Transparency Monitoring
SSL/TLS Certificates – Getting Started
What is a self-signed certificate? Self-signed certificates are SSL/TLS certificates generated and signed by you, not a Certification Authority (CA) certificate. Self-signed certificates should not be used on a publicly facing web application, but for local testing purposes, it does the … [Read more...] about SSL/TLS Certificates – Getting Started