• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

Keytool

 
Author
Posts: 6055
8
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
I am using certicom's security builder package for my crypto implementation. (It uses ECC, but I don't think that should make a difference here.) We have certicom as a provider, and are trying to use the Keytool to generate a certificate. It isn't working.
Certicom claims that although they meet the provider API, Keytool requires a difference interface which they do not meet. This surprises me, since I would have thought that Keytool simply uses the JCE APIs to do it's work. ANyone know how Keytool works?
When we do run Keytool, it complains that it can't find a signature algorithm. We have both tries specifying a signature algorithm as well as not specifying one, and letting the tool try to find one. Perhaps the signature algorithm isn't defined in some configuration file of Certicom's, certainly the algorithm exists.
Any thoughts?

--Mark
 
Ranch Hand
Posts: 214
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Mark
Keytool is just a wrapper around JCE api, so you should be able to use certicom as the provider...
When you run keytool, you should add certicom as a provider. you can do this by using
keytool -genkey
-sigalg "MD5withRSA"
-provider "com.certicom.SecurityProvider()"
-alias "myAlias" etc. etc.
I'm not sure if keytool will use the security.provider flag in the java.security file in $JAVA_HOME/jre/lib/security
--Lewin
 
She said she got a brazillian. I think owning people is wrong. That is how I learned ... tiny ad:
a bit of art, as a gift, that will fit in a stocking
https://gardener-gift.com
reply
    Bookmark Topic Watch Topic
  • New Topic