Creating Your Own Certificates
Prerequisites
Set Up Your Own CA
Use the CA to Create Signed Certificates in a Java Keystore
Use the CA to Create Signed PKCS#12 Certificates
Please enable JavaScript to view the
comments powered by Disqus.
Comments powered by
Disqus
Contents
Search
Security for HTTP-Compatible Bindings
Managing Certificates
What is an X.509 Certificate?
Certification Authorities
Choice of CAs
Commercial Certification Authorities
Private Certification Authorities
Certificate Chaining
Special Requirements on HTTPS Certificates
Creating Your Own Certificates
Prerequisites
Set Up Your Own CA
Use the CA to Create Signed Certificates in a Java Keystore
Use the CA to Create Signed PKCS#12 Certificates
Configuring HTTPS
Authentication Alternatives
Target-Only Authentication
Mutual Authentication
Specifying Trusted CA Certificates
When to Deploy Trusted CA Certificates
Specifying Trusted CA Certificates for HTTPS
Specifying an Application’s Own Certificate
Deploying Own Certificate for HTTPS
Configuring HTTPS Cipher Suites
Supported Cipher Suites
Cipher Suite Filters
SSL/TLS Protocol Version
The WS-Policy Framework
Introduction to WS-Policy
Policy Expressions
Message Protection
Transport Layer Message Protection
SOAP Message Protection
Introduction to SOAP Message Protection
Basic Signing and Encryption Scenario
Specifying an AsymmetricBinding Policy
Specifying a SymmetricBinding Policy
Specifying Parts of Message to Encrypt and Sign
Providing Encryption Keys and Signing Keys
Specifying the Algorithm Suite
Authentication
Introduction to Authentication
Specifying an Authentication Policy
Providing Client Credentials
Authenticating Received Credentials
WS-Trust
Introduction to WS-Trust
Basic Scenarios
Defining an IssuedToken Policy
Creating an STSClient Instance
The Security Token Service
STS Architecture
Overview of the STS
Customizing the STS WSDL
Customizing the Issue Operation
Customizing the Validate Operation
Customizing the Cancel Operation
Configuring STS Properties
STS Demonstration
Overview of the Demonstration
STS WSDL Contract
Security Token Service Configuration
Server WSDL Contract
Server Configuration
Client Configuration
Build and Run the Demonstration
Enabling Claims in the STS
Enabling AppliesTo in the STS
Enabling Realms in the STS
Issuing Tokens in Multiple Realms
Validating Tokens in Multiple Realms
Token Transformation across Realms
Realms Demonstration
ASN.1 and Distinguished Names
ASN.1
Distinguished Names
Index
Search
