Solaris only. Java security tool. Use javakey to generate digital signatures for archive files, and to build and manage a database of entities, their keys and certificates, and indications of their "trusted" (or nontrusted) status.
- on options may be omitted. Only one option may be specified per javakey invocation.
In the option arguments below, an id_or_signer is either a secure ID or a secure signer already in the database.
Create a new database identity named identity. The optional
false is an indication as to whether the identity can be trusted. The default is
Create a new signer in the database named signer. The optional
false is an indication of whether the signer can be trusted. The default is
Display the certificate in file.
-ecid_or_signer cnum cfile
Export certificate cnum from id or signer to cfile. The number must be one previously created by javakey.
-ekid_or_signer public [private]
Export the public key for id or signer to file public. Optionally, export the private key to file private. The keys must be in X.509 format.
-gsigner algorithm ksize [public] [private]
-gk to generate a key pair for signer.
Generate a certificate according to the directives in file.
-gksigner algorithm ksize [public] [private]
Generate a key pair for signer using standard algorithm algorithm, with a key-size of ksize bits. The public key is placed in the file public, and the private key in file private. Exporting private keys should be done with caution.
Sign the Java Archive file jarfile according to directives in dfile.
Associate the public key certificate in csrcfile with the named id or signer. This certificate must match a preexisting one, if there is one. Otherwise, this certificate is assigned to the id or signer.
Supply information about the id or signer. javakey reads information typed interactively. End the information with a line containing a single dot.
Associate the public key in ksrcfile with identity. The key must be in X.509 format.
-ikpsigner public private
Import the key pair from files public and private and associate them with signer. The keys must be in X.509 format.
List the usernames of all identities and signers in the database.
-l, but provide detailed information.
Provide detailed information just about the named id or signer.
Remove the id or signer from the database.
Set or reset the trust level for id or signer.
Create a new identity,
arnold, who is to be trusted:
javakey -c arnold true
List detailed information about
javakey -li arnold