Understanding PKCS#12 Keystore: Key Features & Differences 🔑

In this video Graham explains the PKCS#12 keystore. It's a little different from the other keystores we've covered so far in this series because it's an interoperable format. Originally designed by RSA in 1999 so it contains more modern cryptography than JKS or JCEKS. Oracle now recommend that you use PKCS#12 as your Java keystore, rather than using the old Java specific ones.

Even though it does contain support for strong cryptography such as AES and PBKDF2, you still need to be careful how your application uses this keystore.

You can find some more info on Neil Maddens' blog: https://neilmadden.blog/2017/11/17/java-keystores-the-gory-details/
Also our blog: https://cryptosense.com/blog/weaknesses-in-the-java-jceks-keystore?utm_source=youtube&utm_medium=video&utm_campaign=keystores&utm_content=keystores3

Part 1 - Java JKS Keystore https://www.youtube.com/watch?v=viOds2uniC0
Part 2 - JCEKS https://www.youtube.com/watch?v=viOds2uniC0
Part 4 - Bouncy Castle BKS https://www.youtube.com/watch?v=iB41HWOhVnc
Part 5 - Bouncy Castle UBER https://www.youtube.com/watch?v=xe-JiKNvtyQ
Part 6 - Bouncy Castle FIPS Keystore (BCFKS) https://www.youtube.com/watch?v=W_Pppr2nkIc

/////
Find out more about Cryptosense: https://cryptosense.com/
Follow us on Twitter: https://twitter.com/cryptosense
/////

Cryptosense CEO Dr. Graham Steel was formerly an academic researcher before founding Cryptosense in 2013. His cryptography expertise is the basis for the company's 'Analyzer' technology which allows customers to protect themselves against losing sensitive data.