securex是一个用java编写的的eclipse plugin,它主要提供证书库维护(基于keytool)和xml签名/数字印章处理功能(支持png/gif/bmp), 以及集成microsoft cryptoapi的跨语言调用模块。
它的feature如下:
1,新建,保存,打开查看证书库,设置keystore密码,类型.
支持证书类型包括:
jks
jceks
pkcs #12
bks
uber
同时可以在证书库类型间进行转换。
2,生成密钥对(rsa,dsa)
3,导入信任证书
4,查看数字证书内容(包括证书链)
5,导入密钥对
6,导出数字证书 (x.509 or pkcs #7, der or pem) ,密钥对
7,查看security provider
8,检查crl
9,xml方式输出keystore
10,产生csr请求
11,导入ca对csr签名后的reply
12,克隆keypair
13, 对csr,jar签名
14,对任何形式的文件产生xml签名
15,将数字签名嵌入到电子图片(支持png/bmp/gif两种格式)中
16,支持通过cryptoapi管理windows数字证书/key
securex keytool library features
1
, support rsa
/
dsa digital signature agorithms
2
, support md5
/
sha
/
ripemd digest agorithms
3
, support des
/
idea
/
tripledes
/
blowfish cryptography agorithms
4
, support x.509v1, x.509v3 and crl standard
5
, support keystore management
for
various keystore types including:
jks jceks pkcs #
12
bks uber
6
, support add
/
delete
/
rename entry(trustcert and keyentry) of keystore
7
, support cacerts configuration
for
java
1.3
/
1.4
/
1.5
8
, support privatekey(pkcs#
12
) import
/
export
9
, support csr generation and ca
-
reply import
10
, support password management
for
keystore and privatekey
11
, support treeview
for
x.
509
certificate, crl and crl entry x.
509
v3 extensions
12
, support certificates export in these formats : x.
509
/
pkcs #
7
/
der
/
pem
securex securesign library features
1
, support yallow and jce secure random
2
, support xml signature standard
3
, support bmp watermark (build in with securerandom bitmap stream embbed technology)
4
, support gif watermark (build in rsa
-
oaep embbed technology)
5
, support png watermark (build in secure random and lsb techonnlogy)
securex cryptoapi library features
management x.
509
certificates and rsa
private
keys in windows certstores
set
/
get
/
list
/
remove trust cerficate and keyentry on windows certstores(my, root, ca, address_book etc)
support
for
certificate chain building.
create
/
verify signatures with rsa
private
keys using the following algorithms:
sha1withrsa
md5withrsa
md2withrsa
encrypt
/
decrypt data with rsa
public
/
private
keys using the following algorithm, mode and padding:
rsa
/
ecb
/
pkcs1padding
wrap and unwrap symmetric
-
and asymmetric keys with rsa key pairs through microsoft cryptapi and pkcs#
11
.
management
for
ms csp and pkcs#
11
csp
pin call back
interface
for
private key
set and get microsoft cryptoapi friendly names
for
certificates.
get microsoft cryptoapi friendly names
for
system (certificate) stores.
get detailed information about pkcs#
11
hardware token
该project遵循gpl/apache,参见
代替keytool的图形化界面,增加了数字签名功能,原来的版本来自于keytool gui 1.6(基于swing),我重写了swt界面,集成到securex并以securex为基础,不断扩展java security功能,包括加密,签名,sso向导,ssl向导之类的功能。
下载:securex.sourceforge.net
下载完毕后,解压到plugins目录,然后找到
其子目录securex_1.0.0
然后,将其整个copy到eclipse目录下的plugin目录下,重启eclipse,
然后点击菜单项securex下keytool,就可以运行。
securex是基于jdk1.5版本的,有些网友反映在jdk1.4环境下用不了,即点击keytool菜单没有反应,这是跟bouncycastle的版本有关系,建议到下载for jdk1.4的bcprov包,然后把bcprov-jdk14-132.jar放到securex_1.0.0\lib下,修改manifest.mf(manifest.mf记载了eclipse plugin引导的那些依赖类),然后,重新打开eclipse,keytool也能用了。
如对securex有兴趣,请加入securitysite群(14966586)或者email给我:
securex-keytool 数字签名 数字印章的效果演示:
securex-usbkey效果演示: