We are developing SOAP based webservices and finalized to secure them using SSL certificates. I have gone through some of the tutorials on SSL Certificates. Below are my doubts regarding this:
1. If we have 5 SOAP webservice consumer and 1 producer, then how many certificates we need to use? All the consumers will be having the same certificate or all of them will use their unique certificate?
2. What is the difference between Key Store and Trust Store? Where should we install the certificates?
3. There are certificates with different extensions such as pem, p12, cert, etc. What is the difference between these? Which one is the best to use?