The openssl crl command and utility will process CRL (Certificate Revocation List) files in both DER and PEM format. CRL locations can be found on the X.509 certificate itself, under the "CRL Endpoints" section. Here is a screenshot from the Mozilla Firefox certificate viewer of the SSL … [Read more...] about openssl crl
Keytool generate CSR – Generate a certificate signing request
What is java keytool? Keytool generate CSR - The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates. You can use keytool to create a pkcs 10 certificate signing request or in other words. In many respects, it’s a competing utility … [Read more...] about Keytool generate CSR – Generate a certificate signing request
EV Certificates – Extended Validation Certificates
Question: What are EV Certificates? Answer: Extended Validation (EV) Certificates are SSL Certificates that have been issued after a rigorous validation process. The cryptographic strength and security of an EV certificate is no different than that of a DV (Domain Validated) or OV (Organization … [Read more...] about EV Certificates – Extended Validation Certificates
keytool delete alias – How to delete an alias from a keystore
What is Java keytool? The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates. You can use the java keytool to delete an alias from a keystore. In many respects, the java keytool is a competing utility with openssl for keystore, … [Read more...] about keytool delete alias – How to delete an alias from a keystore
keytool alias -changealias – How to change a private key alias
What is Java keytool? The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates. You can use the java keytool to change a private key alias in a keystore. In many respects, it’s a competing utility with openssl for keystore, key, and … [Read more...] about keytool alias -changealias – How to change a private key alias
SSL Certificate Expiration and SSL Certificate Renewal
SSL Certificate expiration will occur after the not_after date on the certificate is passed. Now that most of the web is encrypted and depends on SSL certificates, one single expired SSL certificate can cause outages that affect millions of people at once. Or, it may only affect a few people, but … [Read more...] about SSL Certificate Expiration and SSL Certificate Renewal
Java SecureRandom
Java SecureRandom lives in the java.security package, at java.security.SecureRandom. The number or value generated by this class is cryptographically strong and the generator is also known as a secure pseudo-random number generator (CSPRNG). Java SecureRandom examples The examples specify … [Read more...] about Java SecureRandom
keytool list certs – How to list contents of a keystore
What is Java keytool? The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates. You can use the java keytool to list the contents a keystore. In many respects, the java keytool is a competing utility with openssl for keystore, key, … [Read more...] about keytool list certs – How to list contents of a keystore