In this digital age, cryptographic keys and certificates play an important role in information security.
A key is a string of characters used in the encryption and decryption of any important information that has to retain its confidentiality, integrity, and authenticity. Depending on the type of encryption, the key used may vary.
A certificate/digital certificate is a document containing a public key that is signed by a trusted third party (a certificate authority) to guarantee the authenticity of the key.
While the keys ensure the safety of data, a keystore is used to safely store the keys by giving managed access to the keys and certificates that are stored in them. There are different types of keystores, such as JKS, PKCS12, and BKS. While their primary function is to store keys and certificates, there can be slight differences between the keystore types.
Before moving on to the keystore types, it’s important to understand the types of keys that a keystore can store.
To secure the keys and certificates inside a keystore, there are multiple methods used.
JKS (Java Keystore) is the proprietary keystore implementation provided by the SUN provider; it was the default keystore in SUN until Java 9. JKS keystore files have the .jks extension. It is one of the most widely used keystore types, but it can only be used within Java applications. One of the drawbacks of the JKS is that it cannot store secret keys. In JKS, private keys are protected with the password by first SHA-1 hashing and salting the password recursively until the number of bytes is equal to the private key. Then, the password byte stream is XORed against the private key and stored.
Furthermore, to check the integrity of the stored private key, an authenticator tag is used. This authenticator tag is made of the SHA-1 hash of the password and private key. Finally, to check the integrity of the whole keystore, the SHA-1 hash of the keystore password, the phrase “Mighty Aphrodite,” and the encoded keystore entries are hashed together.
JCEKS (Java Cryptography Extension Keystore) is the proprietary keystore implementation provided by the SunJCE provider. JCEKS keystores are much more secure when compared to JKS keystores when storing private keys because they use Triple DES encryption. In JCEKS keystore, to encrypt individual key entries, the password is hashed using MD5, with a 64-bit salt in 200,000 iterations (PBKDF1). It is further protected by the TripleDES encryption algorithm with 3 keys in CBC mode.
In JCEKS, integrity checks can only be done for the whole keystore. And it uses the same method with the phrase ‘Mighty Aphrodite’ as JKS to do this integrity check.
PKCS12 (Public Key Cryptography Standards #12) is a standard and universal keystore type. Unlike Java-specific JKS, PKCS12 is supported across a wide variety of platforms and tools. PKCS12 keystore files usually have the extension pfx or p12. PKCS12 keystores also support the storage of secret keys in addition to private and public keys and certificates. The PKCS#12 standard is flexible in choosing the encryption algorithm. By choosing a stronger algorithm like AES block cipher, the stored keys will be more secure when compared to JKS or JCEKS keystores.
But in PKCS#12 keystores, there is no integrity check for individual entries but the whole keystore. Basically, PKCS#12 is a better keystore option than the above legacy keystores, and it is the default keystore type in Java from JDK version 9 and higher.
BouncyCastle Keystore (BKS) is the keystore implementation provided by the BouncyCastle cryptography library. Like the other keystores, it also derives the stored keys using the keystore password that the user provides, using the PBKDF function, and the hashing function is repeated in a random number (between 1024 and 2047) of iterations. The TripleDES algorithm is also used in this key encryption.
The Bouncy Castle UBER keystore also uses the PBKDF1 algorithm with a random number of iterations of the SHA-1 hash function. But one difference of the UBER keystore is that it uses the TwoFish block cipher instead of the Triple DES algorithm used by BKS. Also, it encrypts the whole keystore again using a password with the same PBKDF1 and TwoFish algorithms. To do the integrity check of the keys, a SHA-1 hash of the whole keystore before the encryption is used.
BCFKS is a FIPS-approved keystore provided by BouncyCastle. It uses the password with the PBKDF2 function to derive the stored key. The hashing function used in the key derivation of BCFKS is the SHA-512, and the hash function is repeated 16,384 times.
Samadhi is a Software Engineer at Aayu Technologies with around 1 year experience in the company during which she worked in various Aayu products. She specializes in Full Stack Development with a strong focus on B2B communication software and Cloud Technologies. Outside of work she enjoys watching a movie or a TV show or going on a shopping spree with friends.
We are a US based company with Sri Lankan ingenuity majored in Cloud and Serverless technology based product engineering.
Our solutions power small businesses using our hosted SaaS solutions , to enterprises that run our software on-cloud and on-premise.
