tags:

views:

24

answers:

2
+1  Q: 

Cache the contents of KeyStore and convert it to a InputStream

Hi, I am using AES to accomplish symmetric-key encryption. I store the Key in a password protected KeyStore.

the api exposes the following for loading the key from keystore

keyStore.load(inputStream, keyStorePassword.toCharArray());

so everytime when i want to enrypt or decrypt , i have to pass the inputstream which is atleast in my opinion a performance hit as it has to read the content everytime afresh.

Could you anyone please help me out with the strategy of storing it in memory and from then on accessing it and converting to a InputStream?

Note : i did try to read the contents of the keystore to String (UTF-8)and convert it to InputStream and passed it to the api .But it spit out following exception

java.io.IOException: Invalid keystore form

+1  A: 

The KeyStore is in some binary format. Converting it to a UTF-8 string is no good. You could use a ByteArrayInputStream which uses a byte buffer.

But: in my opinion doesn't count when it comes to performance optimization. You should do some profiling to check whether this really impacts performance. Because it shouldn't. The operating system does cache too and most probably won't read the same file from disk over and over again if it didn't change in the meantime. Programmers usually are extremely bad at judging which parts of a program are performance hogs and which aren't.

Also: It has a reason that passwords usually are provided via char arrays: You have total control over the content of the array and can clear it once it isn't needed anymore. The password should stay in memory as short as possible. You don't have that kind of control with simple strings (you don't know when they are garbage collected).

musiKk  2010-08-18 09:39:51
+1. This really looks like premature optimization by the OP, and it really is not a good idea to maintain a cache of the keystore contents.
Vineet Reynolds  2010-08-18 11:05:14
A: 

Thanks for the responses. I am all for the below alternative.

I would Load the keystore once and extract the SecretKey and assign to an instance or class variable of the class you are using and then use the SecretKey whenever one need to encrypt or decrypt

Sudhakar  2010-08-18 11:27:43
This is not a forum. If you have some comments to an answer, you can add a comment. If you have to update the question, simply edit it.
musiKk  2010-08-18 12:25:21
Well since i found a solution , i posted it .I dont see any harm nor i dont see any part of my post violating the stackoverflow rules.
Sudhakar  2010-08-25 12:54:53

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java