TLS Resource List

Notes Source
Notes on keys, trusts, certificates and authorities in Java
java-jks.html
Keystore vs. trust store

—a comparison.

hands-on-appendices#appendix-1.html
What role does URL play in a certificate?
hands-on-appendices#appendix-4.html
What role does DNS play in a certificate?
hands-on-appendices#appendix-4-2.html
The Java trust store

—includes discussion of SAN and also code to create a trust store programmatically;
co-authored with Paul Grey.

java-trust-store.html
Apache Tomcat over TLS/SSL

—how to set up HTTPS on Tomcat.

tomcat-tls.html
Generating self-signed certificates for Tomcat and clients

—a set of steps and a shell script, gen-certs.sh.

tomcat-selfsigned.html
Notes on setting up TLS in Tomcat and Docker tomcat-tls-docker.html
Failed attempt to use PKCS12 in Apache NiFi

—how credentials were created, NiFi configured and notes on the failure.

keytool-experience.html
Tools
Java's keytool

—with comments on key- vs. trust store.

java-keytool.html
Notes on openssl
openssl.html
Generating self-signed certificates

—just command-line examples to compare.

generating-selfsigned-certificate.html
Course notes
Hands-on Cryptography with Java
hands-on-cryptography-with-java.html
Scripts
Script for generating certificates using keytool and openssl
gen-certs.sh