What is Java keytool? The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates. You can use the java keytool to change a keystore password, key password, or both. In many respects, it’s a competing utility with openssl for keystore, … [Read more...] about Change keystore password with Java keytool
curl authentication – Certificate, Bearer token, and Basic Auth
The following examples will go through how to use curl with authentication. For obvious reasons, public APIs do not require authentication but private APIs will require authentication using authorization headers with basic auth, a bearer token header using a JWT (Javascript Web Token), or with a … [Read more...] about curl authentication – Certificate, Bearer token, and Basic Auth
openssl crl
The openssl crl command and utility will process CRL (Certificate Revocation List) files in both DER and PEM format. CRL locations can be found on the X.509 certificate itself, under the "CRL Endpoints" section. Here is a screenshot from the Mozilla Firefox certificate viewer of the SSL … [Read more...] about openssl crl
Keytool generate CSR – Generate a certificate signing request
What is java keytool? Keytool generate CSR - The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates. You can use keytool to create a pkcs 10 certificate signing request or in other words. In many respects, it’s a competing utility … [Read more...] about Keytool generate CSR – Generate a certificate signing request
EV Certificates – Extended Validation Certificates
Question: What are EV Certificates? Answer: Extended Validation (EV) Certificates are SSL Certificates that have been issued after a rigorous validation process. The cryptographic strength and security of an EV certificate is no different than that of a DV (Domain Validated) or OV (Organization … [Read more...] about EV Certificates – Extended Validation Certificates
Code Signing Certificate
Question: What is a code signing certificate? Answer: A code signing cert is an X509 certificate specifically used to sign code or software. Unlike an SSL Certificate used to protect data transmitted to and from a server which also identifies a server, and also unlike a user certificate that may … [Read more...] about Code Signing Certificate
PKCS7
Introduction to PKCS7 What is PKCS7? It is a standard in the "Public Key Cryptography Standards" used as a cryptographic message syntax and as a format for an X.509 certificate and corresponding chain. A PKCS7 certificate can be formatted as both PEM and DER. For a deep dive, check out the … [Read more...] about PKCS7
keytool delete alias – How to delete an alias from a keystore
What is Java keytool? The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates. You can use the java keytool to delete an alias from a keystore. In many respects, the java keytool is a competing utility with openssl for keystore, … [Read more...] about keytool delete alias – How to delete an alias from a keystore