keystore

My application only targets Android 6.0+. In my application I generate a RSA key in the AndroidKeyStore with the following: KeyPairGenerator kpg = KeyPairGenerator.getInstance("RSA", "AndroidKeyStore"); kpg.initialize(new KeyGenParameterSpec.Builder( "myKey", KeyProperties.PURPOSE_ENCRYPT | KeyProperties.PURPOSE_DECRYPT) .setCertificateSubject(new X500Principal("CN=myKey")) .setDigests("SHA-1") .setEncryptionPaddings("OAEPPadding") .build()); KeyPair kp = kpg.generateKeyPair(); This works well on 20+ devices that we have tested and nearly 100% percent of our users. However, there is a small

I am calling a webservice that requires client certificate authentication. If I specify a Java keystore containing a single certificate (the client certificate the service expects) then everything works fine. However if I use a keystore that contains multiple certificates then I can't seem to be able to specify which certificate should be picked up by the client, the client seems to pick up the first available certificate (in alphabetical order). I have tried the following property but without expected result: System.setProperty("com.sun.enterprise.security.httpsOutboundKeyAlias", "my-client

I need to use to key-pair in one socket ssl connection without change nothing in clients. Why? Because one client use a CN attribute in trust store for connection handshake and other clients using another value in the same attribute to process the same task in the same way. So I need to use two key store (private) with distinct CN attributes and also aliases and share two different trust store (public key) with distinct CN attributes and also aliases too. Describing bellow: keyStore1 Keystore type: JKS Keystore provider: SUN Alias name: identity1 Owner: CN=app1 ... Issuer: CN=app1 ...

I am using Java keystore to store the secret key for AES encryption. final String strToEncrypt = "Hello World"; KeyGenerator kg = KeyGenerator.getInstance("AES"); kg.init(128); SecretKey sk = kg.generateKey(); String secretKey = String.valueOf(Hex.encodeHex(sk.getEncoded())); //Storing AES Secret key in keystore KeyStore ks = KeyStore.getInstance("JCEKS"); char[] password = "keystorepassword".toCharArray(); java.io.FileInputStream fis = null; try { fis = new java.io.FileInputStream("keyStoreName"); ks.load(fis, password); } finally { if (fis != null) { fis.close(); } KeyStore

Does anyone know if it is possible to load a KeyStore so that it only prompts for the password for the given alias? Example: In my key store i have two private keys: Alice's Encryption Certificate and Bob's Encryption Certificate. When i load my key store: keyStore = KeyStore.getInstance("Windows-MY", "SunMSCAPI"); keyStore.load(null); I am prompted for both Alice's and Bob's key store password. Once they are entered i can use getKey("Alice's Encryption Certificate", null); to retrieve Alice's private key. My keys are protected by Entrust's Security Provider, it is who prompts me for the

I'm having issues with the https connection to a server with a self signed certificate on devices < api 19. I followed this guide published by android for trusting self-signed certifcates Android SSL and it seems to work fine with all the api>19 devices i tested. How ever i keep getting the "Trust anchor for certification path not found" error on pre 19. I've created the keystore using keytool and doesn't seem to be the problem because is working on some devices. This is my code: URL url_uri = new URL(url); AssetManager am = context.getAssets(); InputStream caInput = am.open("certs/myCert.bks"