Layer 7 Payment Security

 View Only

Difference between trustStore and keyStore in Java - SSL 

Nov 06, 2015 11:13 PM

TrustStore is used by TrustManager and keyStore is used by KeyManager class in Java.


KeyManager and TrustManager performs different job in Java,


TrustManager determines whether remote connection should be trusted or not i.e. whether remote party is who it claims to and KeyManager decides which authentication credentials should be sent to the remote host for authentication during SSL handshake.


If you are an SSL Server you will use private key during key exchange algorithm and send certificates corresponding to your public keys to client, this certificate is acquired from keyStore. On SSL client side, if its written in Java, it will use certificates stored in trustStore to verify identity of Server.


KeyStore contains private keys and required only if you are running a Server in SSL connection or you have enabled client authentication on server side.

TrustStore stores public key or certificates from CA (Certificate Authorities) which is used to trust remote party or SSL connection.

0 Favorited
0 Files

Related Entries and Links

No Related Resource entered.