About KeyStores
KeyStore Explorer can be used to create,
edit and save KeyStore files.
A KeyStore is a storage mechanism for cryptographic tokens. Such tokens
are known as entries. KeyStore entries can be one of the following types:
-
Trusted Certificate
Contains a single public key certificate.
-
Key Pair
Holds a private key and its associated chain of
one or more certificates.
-
Key
Contains a single cryptographic key.
Each entry in a KeyStore is identified by a different alias or entry name.
Entries also store their last modified date/time.
KeyStores are password protected. The password is required to load the
KeyStore and a password will be requested when saving a KeyStore for the
first time.
Key Pair entries are also password protected. A password is required to access
the private key part of a Key Pair entry.
There are various different types of KeyStore supported by KeyStore Explorer:
-
JKS
Java KeyStore. Oracle's KeyStore format.
-
JCEKS
Java Cryptography Extension KeyStore. More secure version of JKS.
-
PKCS #12
Public-Key Cryptography Standards #12 KeyStore. RSA's KeyStore format.
-
BKS
Bouncy Castle KeyStore. Bouncy Castle's version of JKS.
-
BKS-V1
Older and incompatible version of Bouncy Castle KeyStore.
-
UBER
Bouncy Castle UBER KeyStore. More secure version of BKS.
All of the KeyStores operate identically when managed with KeyStore Explorer
with the exception of PKCS #12 KeyStores.
Unlike other KeyStore types, PKCS #12 KeyStores do not store
the last modified date and time of entries. When viewing a PKCS #12
KeyStore the Last Modified column will always be blank.
Copyright 2004 - 2013 Wayne Grant, 2013 - 2017 Kai Kramer