Managing Keys and Certificates
JSSE uses two kinds of repositories for data exchange: a key store and a trust store. The server uses the key store to locate its private keys and its certificates, whereas the client uses the trust store to locate trusted CAs, as illustrated in Figure 35.4.
Figure 35.4 . The server uses a key store, and the client uses a trusted CA store.
The difference between a key store and a trust store is really more of a difference in terminology. A trust store is just a key store without any keys—only certificates. You can use the JDK's keytool program to manage key stores and trust stores. JDK 1.3 ships with a default trust ...
Get Special Edition Using Java™ 2 Enterprise Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
