Validation against keys

Help
2011-04-20
2013-04-25
  • Hi!

    I've noticed following situation:

    When verifying, configured keystore is not used directly but its copy. And keys don't get copied (in getCertAliases(KeyStore) method there is: if (tmpKs.isCertificateEntry(tmpAlias))). So I can't validate against key. That's probably OK and I'm probably a bit confused about keys purpose. But I've also noticed that Adobe Reader do validates against keys.

    Can you, please, explain me this behavior?

    Thnaks!

     
  • Josef Cacek
    Josef Cacek
    2011-04-27

    You are right. If the Acrobat verifies against keys we should do the same.
    The problem could come when the key is not exportable from the original keystore. Maybe it's enough to skip such keys.

     
  • when the key is not exportable from the original keystore

    How to detect this case?