TibrvSdContext.setUserCertWithKeyBin()

Method

Declaration

void setUserCertWithKeyBin(
    byte[]              userCertWithKey,
    java.lang.String    password);

Purpose

Register a (PKCS #12) certificate with private key for identification to secure daemons.

Remarks

When any program transport connects to a secure daemon, the daemon verifies the program’s identity using TLS protocols.

The Rendezvous API includes two methods that achieve similar effects:

•

This call accepts a certificate in PKCS #12 binary format.

•

TibrvSdContext.setUserCertWithKey() accepts a certificate in PEM text format.

Parameter	Description
userCertWithKey	Register this user certificate with private key. The binary data of this certificate must be in PKCS #12 format.
password	Use this password to decrypt the private key.

Important

For important information about password security, see Security Factors.

CA-Signed Certificate

You can also supply a certificate signed by a certificate authority (CA). To use a CA-signed certificate, you must supply not only the certificate and private key, but also the CA’s public certificate (or a chain of such certificates).

Exceptions

An exception that reports status TibrvStatus.INVALID_FILE can indicate either disk I/O failure, or invalid certificate data, or an incorrect password.

See Also

TibrvSdContext.setUserCertWithKey()

www.rsasecurity.com/rsalabs/pkcs