Mikhail Loenko wrote:
> 2006/7/21, Geir Magnusson Jr <geir@pobox.com>:
>>
>>
>> Tim Ellison wrote:
>> > Geir Magnusson Jr wrote:
>> >> I've asked Sun about this. It would be nice if people could re-use
>> >> their root cert store.
>> >>
>> >> What format does IBM and BEA use?
>> >
>> > FWIW the IBM Java SDK passes through the Sun format JKS.
>>
>> Does "passes through" means it's able to use it?
>>
>> > Besides JKS
>> > there is also the BouncyCastle format (BKS) and a GNU keystore format.
>> >
>> > Take your pick.
>>
>> Well, I was just thinking that if people already have cacerts w/
>> additions, they may want to drop them into place and use them w/o having
>> to convert...
>
> ...or we can make this conversion as easy as possible.
> I think we should learn our keytool doing it.
>
> BTW, can you please share some you think "common" scenarios people use
> when operate with certs? That would help us understand additional
> requirements
> for our keytool.
Well, in my experience, I had to maintain a set of certs on my servers.
But this is different - this is really about being able to let people
reuse their root certs from vendor to vendor.
I wonder why Sun chose a proprietary route...
geir
---------------------------------------------------------------------
Terms of use : http://incubator.apache.org/harmony/mailing.html
To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
For additional commands, e-mail: harmony-dev-help@incubator.apache.org
|