[Ejbca-develop] Private key Generation

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi,

I'm looking for the method used by EJBCA to generate the private keys in
general (CA, Sub-Ca, certificates...).

_So I have multiple questions, which at the end are all related to the
same thing:_

  * Is the generation process all done in EJBCA application ?
  * Or do they rely on Java EE-based application server random number
    generation (in my case Jboss) ?
  * Is there a link somewhere with the locally implemented random number
    generation, so for instance on Linux /dev/random ?
  * What is the level of entropy, and is there some guaranty about a
    minimum value, and could we improve it by taking some action while
    it's generating a key ?

I looked in the documentation and didn't find any informations about
that, but maybe I missed it.

Thanks for your help,
Florent.