O'Reilly logo

Special Edition Using Java™ 2 Enterprise Edition by Mark Wutka

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Managing Keys and Certificates

JSSE uses two kinds of repositories for data exchange: a key store and a trust store. The server uses the key store to locate its private keys and its certificates, whereas the client uses the trust store to locate trusted CAs, as illustrated in Figure 35.4.

Figure 35.4 . The server uses a key store, and the client uses a trusted CA store.

The difference between a key store and a trust store is really more of a difference in terminology. A trust store is just a key store without any keys—only certificates. You can use the JDK's keytool program to manage key stores and trust stores. JDK 1.3 ships with a default trust ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required