tags:

views:

60

answers:

2
Q: 

Java: ssl certificates for testing on windows?

Hi,

I'm looking at coding up a very simple server using an ssl connection - but had two questions

How can i use the java keytool in windows to generate a certificate I can use for testing? Most tutorials i can see (for echoservers etc) suggest i run the following command, which doesnt appear to work in the command prompt (running win 7)?

keytool -keystore mySrvKeystore -keypasswd 123456 -genkey -keyalg RSA -alias mycert

Also considering ill be doing some basic AES and RSA based encryption - is there an advantage in using bouncy castle instead of the tools provided off the shelf in the JCE?

Many thanks,

+1  A: 

The -genkey option must come first.

If JCE supports the algorithms you want to use (and it does support AES and RSA), switching to BouncyCastle is extra hassle with no benefit. BouncyCastle would be a great choice if you need something like ECDH, or if you want to use its S/MIME or PGP libraries.

erickson  2010-01-23 18:04:13
Hi, sprry i should have been more eplicit - when i say it 'doesnt work' i meant that windows command prompt doesnt recognize 'keytool' as a valid command.Im using the java / netbeans budle, could the above be because i dont have java EE edition?many thanks
oneAday  2010-01-23 18:09:59
@oneAday. Provide a full path to a keytool executable, usually `C:\Program Files\jre6\bin\keytool.exe`, or if you use SDK in SDK's bin directory.
Alexander Pogrebnyak  2010-01-23 18:38:34
Yes, provide the full path. The JDK and JDK tools aren't placed on the path during installation on Windows; `java` and `javaw` commands are included in the Windows system directory. You can either modify your `PATH` variable or specify a full path on the command line.
erickson  2010-01-23 18:53:57
aha! of course, thank you :)
oneAday  2010-01-23 23:04:19
+1  A: 

If you already have a private key in PEM or DER format and a signed certificate for it, you may use pkeytool to create keystore file from it ( basically import private key into pkcs file format ).

Alexander Pogrebnyak  2010-01-23 18:42:19

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java