- 1. The first concept to understand is asymmetric encryption, which can be understood by just looking for some posts.
- 2. Public key encryption, private key decryption, the public key is to be sent out, and the private key is kept by itself.
- 3. The certificate is used to verify the legitimacy of the public key to avoid tampering with XXX and the like by people with ulterior motives.
- 4. Java provides keytool.exe to support related functions.
- 5. The public key and private key digital certificates in java are stored in a file called keystore. Of course, this file does not necessarily end with .keystore. This file can be understood as a directory, which includes public key and private key, etc.
- 6.Keytool provides commands to update this library, such as exporting keys, updating keys and so on.
Some good references:
http://www.ruanyifeng.com/blog/2011/08/what_is_a_digital_signature.html
http://www.cnblogs.com/yang-wu/archive/2012/12/02/2798212.html
http ://blog.csdn.net/bluishglc/article/details/7585965 After
reading these three posts, you can basically understand, but if you don't read or use it often, you will forget it in two weeks.