Java 生成安全证书
Java generate secure certificate
如何在 java 中生成此命令的模拟输出?
openssl req -x509 -nodes -days 365 -newkey rsa:4096 -keyout server.key -out cert.pem
接下来我做
KeyPairGenerator gen = KeyPairGenerator.getInstance(keyAlgo);
SecureRandom random = new SecureRandom();
gen.initialize(keyLength, random);
keyPair = gen.genKeyPair();
PublicKey pubk = keyPair.getPublic();
PrivateKey prvk = keyPair.getPrivate();
但结果我收到了另一个长度 public 和私钥。
这是一个例子:
Date validityBeginDate = new Date(System.currentTimeMillis());
Date validityEndDate = new Date(System.currentTimeMillis() + 365 * 24 * 60 * 60 * 1000); //1 year from now
KeyPairGenerator keyPairGenerator = KeyPairGenerator.getInstance("RSA", "BC");
keyPairGenerator.initialize(4096, new SecureRandom());
KeyPair keyPair = keyPairGenerator.generateKeyPair();
X509V1CertificateGenerator certGen = new X509V1CertificateGenerator();
X500Principal dnName = new X500Principal("CN=John Doe");
certGen.setSerialNumber(BigInteger.valueOf(System.currentTimeMillis()));
certGen.setSubjectDN(dnName);
certGen.setIssuerDN(dnName);
certGen.setNotBefore(validityBeginDate);
certGen.setNotAfter(validityEndDate);
certGen.setPublicKey(keyPair.getPublic());
certGen.setSignatureAlgorithm("SHA256WithRSAEncryption");
X509Certificate cert = certGen.generate(keyPair.getPrivate(), "BC");
使用 PEMWriter 输出您的 PEM 文件。
如何在 java 中生成此命令的模拟输出?
openssl req -x509 -nodes -days 365 -newkey rsa:4096 -keyout server.key -out cert.pem
接下来我做
KeyPairGenerator gen = KeyPairGenerator.getInstance(keyAlgo);
SecureRandom random = new SecureRandom();
gen.initialize(keyLength, random);
keyPair = gen.genKeyPair();
PublicKey pubk = keyPair.getPublic();
PrivateKey prvk = keyPair.getPrivate();
但结果我收到了另一个长度 public 和私钥。
这是一个例子:
Date validityBeginDate = new Date(System.currentTimeMillis());
Date validityEndDate = new Date(System.currentTimeMillis() + 365 * 24 * 60 * 60 * 1000); //1 year from now
KeyPairGenerator keyPairGenerator = KeyPairGenerator.getInstance("RSA", "BC");
keyPairGenerator.initialize(4096, new SecureRandom());
KeyPair keyPair = keyPairGenerator.generateKeyPair();
X509V1CertificateGenerator certGen = new X509V1CertificateGenerator();
X500Principal dnName = new X500Principal("CN=John Doe");
certGen.setSerialNumber(BigInteger.valueOf(System.currentTimeMillis()));
certGen.setSubjectDN(dnName);
certGen.setIssuerDN(dnName);
certGen.setNotBefore(validityBeginDate);
certGen.setNotAfter(validityEndDate);
certGen.setPublicKey(keyPair.getPublic());
certGen.setSignatureAlgorithm("SHA256WithRSAEncryption");
X509Certificate cert = certGen.generate(keyPair.getPrivate(), "BC");
使用 PEMWriter 输出您的 PEM 文件。