Entrust Authority

Security Toolkit for the Java Platform

Frequently Asked Questions

  1. What is the Security Toolkit for the Java Platform ?
  2. Who would benefit from using the Security Toolkit for the Java Platform ?
  3. We already use Secure Socket Layer (SSL) security, isn't that enough?
  4. Is this toolkit Entrust specific or will it work with other vendors X.509 certificates
  5. Is the Security Toolkit for the Java Platform 100% Pure Java?
  6. Do you provide Java Cryptography Extension (JCE) with an extended set of strong algorithms?
  7. Do you provide PKCS#12 support?
  1. What is the Security Toolkit for the Java Platform ? (top)

    The Security Toolkit for the Java Platform is a fast, cost-effective way for building SSL, PKIX, PKCS and Entrust Ready security applications. Developers can easily build privacy solutions that enable Web sites to identify users that are using digital certificates, providing a permanent digitally-signed record of transactions and protecting sensitive data on Web application servers.

  2. Who would benefit from using the Security Toolkit for the Java Platform ? (top)

    The Security Toolkit for the Java Platform is designed for businesses that need to:

    • enable digitally-signed transactions, providing a provable record for verification
    • create electronic receipts using digital signatures
    • encrypt data end-to-end, from the browser directly to a back-end server or database, by-passing confidential data exposure on Web application servers (where most privacy violations occur today)
    • identify or authenticate users to a Web site using digital certificates as opposed to username/password authentication where passwords are stored on the server and open to attacks
  3. We already use Secure Socket Layer (SSL) security, isn’t that enough? (top)

    SSL provides an important basic element of security. It ensures the Web server is properly identified to the Web browser (through a digital certificate) and it enables an encrypted channel between the browser and the server. The Security Toolkit for the Java Platform builds on the base SSL security in two important ways:

    • enables users to authenticate to Web sites using digital certificates, without using confusing security dialogs and without restricting mobility. It’s true that SSL security has client authentication capabilities, but these rely on the browser’s less user-friendly SSL client certificate dialogs, and users are not free to move from computer to computer since certificates are stored locally.
    • enables transactions to be digitally signed. Native SSL capabilities built into the browser do not universally support this (Netscape has basic form-signing capabilities but they are somewhat limited and not portable to Microsoft’s Internet Explorer™).
  4. Is this Entrust specific or will it work with other vendors X.509 certificates? (top)

    The low-level classes will accept other PKI vendor issued X.509 certificates.

    • through its transaction encryption capability, the Security Toolkit for the Java Platform enables the persistent encryption of user data at the browser through to a back-end server. With SSL alone, data is immediately decrypted when the Web server receives it. With the Security Toolkit for the Java Platform , the data remains encrypted while on the Web server, preventing data theft or unauthorized access.
  5. Is the Security Toolkit for the Java Platform 100% Pure Java? (top)

    Yes. The toolkit does not depend on any native C, C++ code for any of the base JCE functions.

  6. Do you provide Java Cryptography Extension (JCE) with an extended set of strong algorithms? (top)

    Yes. We extend the JCE provided within the JDK and offer the following algorithms: RSA, DSA, SHA, SHA-256, SHA-384, SHA-512, MD5, MD2, DES, Triple-DES, CAST-128, IDEA, RC2, RC4 and ECDSA.

  7. Do you provide PKCS#12 support? (top)

    Yes. Our PKCS#12 support provides the ability to export private keying material to a file that conforms to the Personal Information Exchange Syntax Standard, PKCS#12. This provides increased interoperability among PKIs as the PKCS#12 portable storage format allows keys and certificates to be shared among different applications.

If you have any questions or comments about the Toolkit, please send an email message to .

Current customers may login to online support.

back to Entrust Authority Security Toolkit for the Java Platform

White Papers

Entrust Public Key Infrastructure (PKI)

Public key infrastructure or PKI refers to a system that provides certificate management for digital certificates. Digital certificates contain public key pairs that can be used for encryption, digital signature and authentication security. Entrust PKI security solutions help government agencies and corporations to secure their digital identities and information.

Specialized "passport PKI" is used by governments to verify and secure data stored on a chip imbedded in passports issued to citizens. Epassport PKI involves the use of PKI by governments to secure data stored on a chip imbedded in a passport. The government acts as a certification authority that issues the digital certificates used in an ePassport system.

Entrust is a trusted provider of network security solutions that include digital certificates, managed PKI certificates, two factor-authentication, ssl certificates, token authentication, smart card PKI and encryption software.