SecureX是一個(gè)用Java編寫的的Eclipse Plugin,它主要提供證書庫(kù)維護(hù)(基于Keytool)和XML簽名/數(shù)字印章處理功能(支持PNG/GIF/BMP), 以及集成Microsoft CryptoAPI的跨語(yǔ)言調(diào)用模塊。
它的Feature如下:
1,新建,保存,打開查看證書庫(kù),設(shè)置KeyStore密碼,類型.
支持證書類型包括:
JKS
JCEKS
PKCS #12
BKS
UBER
同時(shí)可以在證書庫(kù)類型間進(jìn)行轉(zhuǎn)換。
2,生成密鑰對(duì)(RSA,DSA)
3,導(dǎo)入信任證書
4,查看數(shù)字證書內(nèi)容(包括證書鏈)
5,導(dǎo)入密鑰對(duì)
6,導(dǎo)出數(shù)字證書 (X.509 or PKCS #7, DER or PEM) ,密鑰對(duì)
7,查看Security Provider
8,檢查CRL
9,XML方式輸出KeyStore
10,產(chǎn)生CSR請(qǐng)求
11,導(dǎo)入CA對(duì)CSR簽名后的Reply
12,克隆KeyPair
13,? 對(duì)CSR,Jar簽名
14,對(duì)任何形式的文件產(chǎn)生XML簽名
15,將數(shù)字簽名嵌入到電子圖片(支持PNG/BMP/GIF兩種格式)中
16,支持通過(guò)CryptoAPI管理Windows數(shù)字證書/Key
SecureX?Keytool?Library?Features??
1
,?Support?RSA
/
DSA?Digital?Signature?Agorithms
2
,?Support?MD5
/
SHA
/
RIPEMD?Digest?Agorithms
3
,?Support?DES
/
IDEA
/
TripleDES
/
Blowfish?Cryptography?Agorithms
4
,?Support?X.509v1,?X.509v3?and?CRL?Standard
5
,?Support?Keystore?management?
for
?various?keystore?types?including:
JKS?JCEKS?PKCS?#
12
?BKS?UBER?
6
,?Support?add
/
delete
/
rename?entry(trustcert?and?keyentry)?of?Keystore
7
,?Support?cacerts?configuration?
for
?JAVA?
1.3
/
1.4
/
1.5
8
,?Support?PrivateKey(PKCS#
12
)?Import
/
Export
9
,?Support?CSR?Generation?and?CA
-
Reply?Import
10
,?Support?Password?management?
for
?KeyStore?and?PrivateKey
11
,?Support?TreeView?
for
?X.
509
?Certificate,?CRL?and?CRL?entry?X.
509
?V3?extensions
12
,?Support?certificates?export?in?these?formats?:?X.
509
/
PKCS?#
7
/
DER
/
PEM
?
?
SecureX?SecureSign?Library?Features??
1
,?Support?Yallow?and?JCE?Secure?Random
2
,?Support?XML?Signature?Standard
3
,?Support?BMP?Watermark?(Build?in?with?SecureRandom?Bitmap?Stream?Embbed?technology)
4
,?Support?GIF?Watermark?(Build?in?RSA
-
OAEP?Embbed?technology)
5
,?Support?PNG?Watermark?(Build?in?Secure?Random?and?LSB?Techonnlogy)
?
?
SecureX?CryptoAPI?Library?Features??
Management?X.
509
?certificates?and?RSA?
private
?keys?in?Windows?CertStores?
Set
/
Get
/
List
/
Remove?Trust?Cerficate?and?KeyEntry?on?Windows?CertStores(MY,?ROOT,?CA,?ADDRESS_BOOK?etc)?
Support?
for
?Certificate?Chain?Building.?
Create
/
Verify?signatures?with?RSA?
private
?keys?using?the?following?algorithms:?
SHA1withRSA?
MD5withRSA?
MD2withRSA?
Encrypt
/
decrypt?data?with?RSA?
public
/
private
?keys?using?the?following?algorithm,?mode?and?padding:?
RSA
/
ECB
/
PKCS1Padding?
Wrap?and?unwrap?symmetric
-
?and?asymmetric?keys?with?RSA?key?pairs?through?Microsoft?CryptAPI?and?PKCS#
11
.?
Management?
for
?MS?CSP?and?PKCS#
11
?CSP?
PIN?Call?Back?
interface
?
for
?Private?key?
Set?and?get?Microsoft?CryptoAPI?friendly?names?
for
?certificates.?
Get?Microsoft?CryptoAPI?friendly?names?
for
?system?(certificate)?stores.?
Get?detailed?information?about?PKCS#
11
?hardware?token?
該P(yáng)roject遵循GPL/Apache,參見(jiàn)https://sourceforge.net/projects/securex/
代替Keytool的圖形化界面,增加了數(shù)字簽名功能,原來(lái)的版本來(lái)自于Keytool Gui 1.6(基于SWing),我重寫了SWT界面,集成到SecureX并以SecureX為基礎(chǔ),不斷擴(kuò)展Java Security功能,包括加密,簽名,SSO向?qū)В琒SL向?qū)е惖墓δ堋?br />
下載:securex.sourceforge.net
下載完畢后,解壓到plugins目錄,然后找到
其子目錄SecureX_1.0.0
然后,將其整個(gè)Copy到Eclipse目錄下的Plugin目錄下,重啟Eclipse,
然后點(diǎn)擊菜單項(xiàng)Securex下KeyTool,就可以運(yùn)行。
SecureX是基于JDK1.5版本的,有些網(wǎng)友反映在Jdk1.4環(huán)境下用不了,即點(diǎn)擊Keytool菜單沒(méi)有反應(yīng),這是跟BouncyCastle的版本有關(guān)系,建議到www.bouncycastle.org下載for jdk1.4的bcprov包,然后把bcprov-jdk14-132.jar放到SecureX_1.0.0\lib下,修改MANIFEST.MF(MANIFEST.MF記載了Eclipse Plugin引導(dǎo)的那些依賴類),然后,重新打開Eclipse,Keytool也能用了。
如對(duì)SecureX有興趣,請(qǐng)加入SecuritySite群(14966586)或者email給我:openssl(at)163.com
SecureX-Keytool+數(shù)字簽名+數(shù)字印章的效果演示:
http://dev2dev.bea.com.cn/bbs/servlet/D2DServlet/download/29304-31620-211417-3031/securex.swf
SecureX-USBKey效果演示:
http://dev2dev.bea.com.cn/bbs/servlet/D2DServlet/download/29304-31620-213693-3060/HNISI_SecureX_USBKey.swf