First of all, nice site. Been reading it for a long time and I think the time for try to get some help has come
There's a need to build a web service with the concept of mutual authentication at my work and I think I've got the encryption and certificate signing part already figured out.
The question is this: since the web server will have N numbers of client certificates that will be added from time to time, is there a way to import this .cer files into the web service key store without having to redeploy the application and restarting the app server so the application can access the new keys added to the store? Maybe the problem is not that hard and I could just import the clients certs into the cacerts file of the JRE in the server.