java.security.KeyStore# Java - 爪哇娇娃
i*p
1 楼
Android provides android.security.KeyStore. What is difference between them?
t*e
2 楼
just pick whichever you like.
i*p
3 楼
Do you mean java.security.KeyStore can do whatever android.security.KeyStore
does on Android?
Then why does android provide a new one?
【在 t*******e 的大作中提到】
: just pick whichever you like.
does on Android?
Then why does android provide a new one?
【在 t*******e 的大作中提到】
: just pick whichever you like.
t*e
4 楼
KeyStore is a place to store public-private key pairs, plus the
corresponding certificates. Why is Android different from the one comes with
JDK? App server vendors tend to bundle their own key stores in their products
too.
corresponding certificates. Why is Android different from the one comes with
JDK? App server vendors tend to bundle their own key stores in their products
too.
g*g
5 楼
I would think for security reason, Google doesn't want you to
tamper the system keystore but still want to give you some restricted
access. Imagine you install an app from market, it tampers the keystore,
adds a self-signed certificate that shouldn't be trusted, intercept
your connection and start man-in-the-middle attack.
with
products
【在 t*******e 的大作中提到】
: KeyStore is a place to store public-private key pairs, plus the
: corresponding certificates. Why is Android different from the one comes with
: JDK? App server vendors tend to bundle their own key stores in their products
: too.
tamper the system keystore but still want to give you some restricted
access. Imagine you install an app from market, it tampers the keystore,
adds a self-signed certificate that shouldn't be trusted, intercept
your connection and start man-in-the-middle attack.
with
products
【在 t*******e 的大作中提到】
: KeyStore is a place to store public-private key pairs, plus the
: corresponding certificates. Why is Android different from the one comes with
: JDK? App server vendors tend to bundle their own key stores in their products
: too.
t*e
6 楼
Keystore is protected by password. As long as one has the password, he can
export the key pairs and import into another keystore. Does android keystore
have anything unique?
【在 g*****g 的大作中提到】
: I would think for security reason, Google doesn't want you to
: tamper the system keystore but still want to give you some restricted
: access. Imagine you install an app from market, it tampers the keystore,
: adds a self-signed certificate that shouldn't be trusted, intercept
: your connection and start man-in-the-middle attack.
:
: with
: products
export the key pairs and import into another keystore. Does android keystore
have anything unique?
【在 g*****g 的大作中提到】
: I would think for security reason, Google doesn't want you to
: tamper the system keystore but still want to give you some restricted
: access. Imagine you install an app from market, it tampers the keystore,
: adds a self-signed certificate that shouldn't be trusted, intercept
: your connection and start man-in-the-middle attack.
:
: with
: products
r*l
7 楼
This is not in the public API. And it does not do what Java KeyStore is
doing. Why do you have to use it?
them?
【在 i**p 的大作中提到】
: Android provides android.security.KeyStore. What is difference between them?
doing. Why do you have to use it?
them?
【在 i**p 的大作中提到】
: Android provides android.security.KeyStore. What is difference between them?
i*p
8 楼
Implement an app to read the certificates' info from Android KeyStore on the
phone.
【在 r*****l 的大作中提到】
: This is not in the public API. And it does not do what Java KeyStore is
: doing. Why do you have to use it?
:
: them?
phone.
【在 r*****l 的大作中提到】
: This is not in the public API. And it does not do what Java KeyStore is
: doing. Why do you have to use it?
:
: them?
r*l
9 楼
Can you provide the API and/or source android.security.KeyStore, and specify
which method you plan to use to "read the certificates' info from Android
KeyStore".
I found the source code from GrepCode but I don't think that class is for
this purpose. Maybe you are talking about a totally different animal.
the
【在 i**p 的大作中提到】
: Implement an app to read the certificates' info from Android KeyStore on the
: phone.
which method you plan to use to "read the certificates' info from Android
KeyStore".
I found the source code from GrepCode but I don't think that class is for
this purpose. Maybe you are talking about a totally different animal.
the
【在 i**p 的大作中提到】
: Implement an app to read the certificates' info from Android KeyStore on the
: phone.
相关阅读
有没有好的software load balancer 可推荐?准备开始学Scala了请推荐 Spring bookJtable for large databaseEE出身,正在找JAVA工作,求建议请问 如何准备java certificateJava Array请教namespace到底应该有最后那个/不?oracle xe 11g安装完启动页面里workspace填什么?hibernate question? session and hibernate.cfg.xml寻Eclipse RCP开发高手请教关于e4 navigator问个swing login窗口的问题这玩意是啥?tomcat7部署war,jar写权限无法获得one java question under ubuntu大妈来奔,有包子吃吗?问个swing的问题怎么实现 twitter 桌面程序弱问:System.out.println( Math.sqrt( 4 ) ); 输出2.0。如果要出整数2,该怎么写?C# is light-years ahead of Java now (转载)