简体繁体 English

Java 中的 SSL 证书验证

[英]SSL Certificate Verification in Java

原文 2012-06-21 17:17:33 4 4 java/ ssl

Say I have two Java apps that I wrote: Ping.jar and Pong.jar and they get deployed and ran on two separate servers ( Ping.jar deploys to srv-01.myorg.com and Pong.jar deploys to srv-02.myorg.com ), and these two apps need to communicate with each other (2-way) via SSL.假设我有两个我编写的 Java 应用程序： Ping.jar和Pong.jar ，它们在两个独立的服务器上部署和运行（ Ping.jar部署到srv-01.myorg.com ， Pong.jar部署到srv-02.myorg.com ），这两个应用程序需要通过 SSL 相互通信（双向）。 Let's also assume that each app has its own SSL Certificate.我们还假设每个应用程序都有自己的 SSL 证书。

How do I, a Java programmer, code Ping and Pong to verify each other's SSL cert?作为 Java 程序员，我如何编写Ping和Pong代码来验证彼此的 SSL 证书？ Does each CA provide some kind of RESTful API that I can hit with, say, HttpClient ?每个 CA 是否都提供某种 RESTful API，我可以使用HttpClient进行访问？ Does Java have its own certificate-verifying API? Java 有自己的证书验证 API 吗？ Are there open source third party JARs or services I can use?是否有我可以使用的开源第三方 JAR 或服务？

I was surprised by how little turned up when I searched for this online.当我在网上搜索这个时，我很惊讶地发现了这么少的东西。

4 个解决方案

If you're connecting using the Java SE SSL/TLS classes (eg SSLSocket or SSLEngine ), you're using the Java Secure Socket Extension (JSSE) .如果您使用 Java SE SSL/TLS 类（例如SSLSocket或SSLEngine ）进行连接，则您使用的是Java 安全套接字扩展 (JSSE) 。

It will verify the remote party's certificate according to the SSLContext that was used to create this SSLSocket or SSLEngine .它将根据用于创建此SSLSocket或SSLEngine的SSLContext验证远程方的证书。

This SSLContext will be initialised with TrustManager that dictate how trust should be established.这个SSLContext将用TrustManager初始化，它指示应该如何建立信任。

Unless you need specific configuration, you can often rely on the default values : this will rely on the PKIX algorithm (RFC 3280) to verify the certificate against a set of trust anchors (in cacerts by default).除非您需要特定配置，否则您通常可以依赖默认值：这将依赖 PKIX 算法 (RFC 3280) 根据一组信任锚（默认情况下在cacerts中）验证证书。 cacerts , shipped with the Oracle JRE is a JKS keystore to which you can add additional certificates. cacerts随 Oracle JRE 一起提供，是一个 JKS 密钥库，您可以向其中添加其他证书。 You can add certificates explicitly using keytool for example.例如，您可以使用keytool显式添加证书。

You can also create an X509TrustManager based on a custom keystore programmatically (as described in this answer ) and use it in a specific SSLContext that doesn't affect the default one.您还可以以编程方式创建基于自定义密钥库的X509TrustManager （如本答案中所述），并在不影响默认值的特定SSLContext中使用它。

In addition to this, if you're using your own protocol, you'll need to verify that the certificate you've obtained matches the host name you were looking for (see RFC 6125).除此之外，如果您使用自己的协议，则需要验证您获得的证书是否与您要查找的主机名相匹配（请参阅 RFC 6125）。 Typically, you can look for the subject alternative name in the X509Certificate you get (get the first peer certificate in the chain from the SSLSession ), failing that, look for the CN RDN in the Subject Distinguished Name.通常，您可以在获得的X509Certificate中查找主题备用名称（从SSLSession获取链中的第一个对等证书），否则，在主题专有名称中查找CN RDN。

You can get the peer certificate either by attaching a HandshakeCompletedListener to the SSLSocket and getting the certificate from the event, or else by getting the SSLSession from the SSLSocket and getting the peer certificate from the session.您可以通过将HandshakeCompletedListener附加到SSLSocket并从事件中获取证书来获取对等证书，或者通过从SSLSocket获取SSLSession并从会话中获取对等证书。

SSL provides privacy, integrity, and authentication of the peer identity. SSL 提供隐私、完整性和对等身份的验证。 Whether that peer identity is the one the application expects, and what that identity is allowed to do in the application, should be checked by the application if necessary.该对等身份是否是应用程序所期望的身份，以及该身份在应用程序中被允许做什么，应由应用程序在必要时进行检查。 This is the 'authorization' step, and SSL cannot do it for you.这是“授权”步骤，SSL 无法为您完成。

AFAIK certificate verification should consist of following steps: AFAIK 证书验证应包括以下步骤：

Certificate formal verification by verifying its signature, validity in terms of current time and validity in terms of a domain that is using given certificate.通过验证其签名、当前时间的有效性和使用给定证书的域的有效性来进行证书形式验证。 These things can be checked without any additional network communication.无需任何额外的网络通信即可检查这些内容。
Checking if certificate was not revoked - this is what is missing in answer given by @Bruno (otherwise I agree with him).检查证书是否未被撤销 - 这是@Bruno 给出的答案中缺少的内容（否则我同意他的看法）。 I think this check can be only done after getting a fresh CRL (certificate revocation list) from the CA that signed the certificate (network communication with CA).我认为只有在从签署证书的 CA（与 CA 的网络通信）获得新的 CRL（证书撤销列表）后才能进行此检查。

You don´t have to manually check each other´s certificates.您不必手动检查彼此的证书。

You just have to import each server certificate into each other´s cacerts, this way both application servers will automatically trust each other.您只需将每个服务器证书导入彼此的 cacerts，这样两个应用程序服务器就会自动相互信任。