发表新帖
发表新帖

JKS protection

后端 未结
关注
2 1933
被撕碎了的回忆
被撕碎了的回忆 2020-12-11 04:18

Are JKS (Java Key Store) files encrypted? Do they provide full protection for encryption keys, or do I need to rely solely on access control?
Is there a way to ensure th

相关标签:
2条回答
  • 心在旅途
    2020-12-11 04:46

    To be more precise:

    • PrivateKeys and SecretKeys within a JKS file are encrypted with their own password.
    • Integrity of trusted certificates is protected with a MAC using the key store password.
    • The file as a whole is not encrypted, and an attacker can list its entries without the key store password.
    0 讨论(0)
  • 轻奢々
    2020-12-11 04:56

    They are encrypted.

    The algorithm is provider dependent. The provider will return the key/certificate based on a password. If you need strong security, find a keystore provider that uses a strong encryption.

    0 讨论(0)
 看不清?
提交回复
热议问题