简体繁体 English

如何检查X509Certificate颁发者是否可信？

[英]how do I check if the X509Certificate issuer is trusted?

原文 2012-03-01 12:59:51 9 1 java/ security/ ssl/ https/ x509certificate

I have an instance of X509Certificate in java and I need to check if the issuer is trusted? 我在java中有一个X509Certificate实例，我需要检查发行者是否可信？

thanks gal 谢谢你

1 个解决方案

If you just have the certificate (out of context), you should build a certification path using the Java PKI Cert. 如果您只拥有证书（脱离上下文），则应使用Java PKI Cert构建证书路径。 Path API . 路径API 。 If it's within the context of SSL, you should be able to use a TrustManager and check it when using your SSLContext . 如果它在SSL的上下文中，您应该能够使用TrustManager并在使用SSLContext时进行检查。

This will verify whether the certificate was issued by a CA you trust (or via one of its intermediate CAs perhaps). 这将验证证书是否由您信任的CA（或通过其中间CA之一）颁发。

You may also be interested in " What data should I validate when validating X.509 certificates using Java? " (on Security.SE). 您可能还对“ 使用Java验证X.509证书时应该验证哪些数据？ ”（在Security.SE上）感兴趣。

Java X509证书发行者验证 - Java X509Certificate issuer validation

我如何检查证书A是否在Java中将证书B作为发行人？ - > X509Certificates - How do i check if certificate A got certfiicate B as issuer in Java? --> X509Certificates

如何检查X509Certificate是否为CA证书？ - How to check if X509Certificate is CA certificate?

X509证书文件检查 - X509Certificate file check

获取Java SSLSocket的受信任的X509证书 - Getting the trusted X509Certificate for a Java SSLSocket

如何从SSLSocket中提取X509Certificate []实例？ - How do I pull an instance of X509Certificate[] out of an SSLSocket?

如何序列化/反序列化X509Certificate - how to serialize/deserialize X509Certificate

JAVA-Android-根据CA证书验证X509Certificate（颁发者证书） - JAVA-Android- Validating the X509Certificate Against CA Certificate(Issuer Certificate)

如何使用JAVA检查X509证书链的吊销状态？ - How to check revocation status of X509Certificate chain using JAVA?

Java X509Certificate 中不允许空颁发者 DN（Libimobiledevice 实现） - Java Empty issuer DN not allowed in X509Certificate (Libimobiledevice implementation)

暂无

暂无

声明:本站的技术帖子网页，遵循CC BY-SA 4.0协议，如果您需要转载，请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Java X509证书发行者验证 - Java X509Certificate issuer validation 我如何检查证书A是否在Java中将证书B作为发行人？ - > X509Certificates - How do i check if certificate A got certfiicate B as issuer in Java? --> X509Certificates 如何检查X509Certificate是否为CA证书？ - How to check if X509Certificate is CA certificate? X509证书文件检查 - X509Certificate file check 获取Java SSLSocket的受信任的X509证书 - Getting the trusted X509Certificate for a Java SSLSocket 如何从SSLSocket中提取X509Certificate []实例？ - How do I pull an instance of X509Certificate[] out of an SSLSocket? 如何序列化/反序列化X509Certificate - how to serialize/deserialize X509Certificate JAVA-Android-根据CA证书验证X509Certificate（颁发者证书） - JAVA-Android- Validating the X509Certificate Against CA Certificate(Issuer Certificate) 如何使用JAVA检查X509证书链的吊销状态？ - How to check revocation status of X509Certificate chain using JAVA? Java X509Certificate 中不允许空颁发者 DN（Libimobiledevice 实现） - Java Empty issuer DN not allowed in X509Certificate (Libimobiledevice implementation)

相关标签

粤ICP备18138465号 © 2020-2024 STACKOOM.COM