-
Notifications
You must be signed in to change notification settings - Fork 1.1k
PKI at the edge with Bouncy Castle
As great as the progress has been in PKI tooling, there are still some situations which require a hands-on approach to deploying and establishing certificates and storing their associated private keys. Sometimes involving tasks that must be performed by system administrators rather than developers so having to edit Java programs might not be the best choice.
This training shows how to use the Bouncy Castle APIs for generating certificates and certification requests, including for EJBCA. In the training, Certificate Management Protocol (CMP) is used as an enrollment protocol for issuing certificates. Read more in Tech update – CMP in EJBCA and Bouncy Castle.
We will also look at Kotlin DSL as a scripting language to enable people who do not typically regard themselves as programmers to perform some of the basic tasks as well.
To take full advantage of the training content, you will need a background in Java development. The course material will suit developers who are beginners up to intermediate in terms of their experience with PKI and cryptography.
After the training, you will be able to:
- Determine the right key strengths for the security level you need
- Have a basic understanding of standard certificate request protocols and the relative security of some asymmetric algorithms
- Determine what type of certification request is appropriate for your key pair
- Create certification requests using the Bouncy Castle APIs for Java and Kotlin
- Create certificates using the Bouncy Castle APIs and EJBCA
- Save and encrypt private keys using the Bouncy Castle APIs for Java and Kotlin
- Use KeyStores and understand their limitations in certified environments
The training is held by:
- David Hook, Bouncy Castle Developer
- Bastian Fredriksson, Solution Consultant