What type of keystore should I choose?
Java keystores are files containing cryptographic keys and certificates, protected by a password. The Java truststore, which contains the public key certificates of trusted Certificate Authorities, is an example of a keystore.
In this video series Graham explains the main types of Java keystore that are commonly used, and for each one, investigates whether they are secure.
As part of the suite of cryptography discovery tools included with Cryptosense Analyzer Platform (CAP), Cryptosense File Scanner looks for cryptographic objects including SSH keys, PGP Keys, X.509 certificates and keystores on any filesystem or container image.
In this video Dr. Graham Steel explains how to move to cloud cryptography easily and securely using Cryptosense Analyzer Platform (CAP). In this example we show how we can move an enterprise Tomcat Java application to Amazon's AWS KMS.
A lot of people are concerned that their encryption keys stored in cloud services such as AWS KMS, Azure Keyvault, or GCP KMS, are not really secure...