stackoom
  简体   繁体   中英

How to bind private key with certificate chain?

 原文  2013-02-21 11:34:06       java/ android/ security/ provider/ pkcs#11

Question

I'm implementing a PKCS#11 JCE provider for Android and there's a method from java.security.KeyStoreSpi which I don't understand:

public void engineSetKeyEntry(String name, Key key, char[] pin, Certificate[] certificateChain)

How can I bind private key with certificate chain? By CKA_ID attribute?

1 answers

solution1
 1  2017-01-24 14:48:17

I'm not sure to fully understand the question, but as far as I know, the PKCS#11 standard does not fully define how a Private Key / Public Key and a Certificate are linked all together. Rather, the standard (v3.01) does recommend to share the same CKA_ID between the 3 objects. If you want to make a link between several obejct this is what I would also recommend. If we speak only about Asymetric keys, then you can find other means to link a public key to other related crypto materials (such as comparing the public Modulus for RSA world)

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to import certificate chain and private key into java keystore Certificate chain not found, but keystore contains private key KeyStore and TrustStore load failed - Private key must be accompanied by certificate chain Transfer trusted certificate (plus private key / chain) from Java keystore (jks) to Windows Certificate Manager How to verify if the private key matches with the certificate..? how to generate a private key certificate using keytool Certificate match to private key Import Certificate and Private Key for Java How to get Certificate for encrypting mail into Java without private key? How to get a private key given a certificate file with Java
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM