CERTivity is a powerful pure Java multi-platform visual tool for creating, managing and handling different KeyStore types (such as JKS, JCEKS, PKCS12, the Bouncy Castle types BKS and UBER, or Windows Native), Keys such as Private Keys, Public Keys or Secret Keys in different formats (e. g. PKCS, OpenSSL, using various algorithms - RSA/DSA), Certificates (version 1 and 3) and Certificates Chains.
CERTivity reveals many features related to KeyStore management and Public Key Infrastructure domain; common actions are exporting/importing KeyPairs, Private/Public Keys and Certificates, import SSL certificates from servers, extend validity period for self-signed certificates, testing given certificates on custom protocols (e.g. raw text such as STARTTLS), obtain revocation status, convert from one KeyStore type to another, change KeyStore or KeyStore entries passwords.
CERTivity also creates and verifies digital signatures on PDF, XML, JAR or CSR files. For PDF signatures it is covering all of the standard SubFilter values "adbe.x509.rsa_sha1", "adbe.pkcs7.detached" and "adbe.pkcs7.sha1", as well as providing rich and "intriguing" information on signature verification.
Signatures on XML documents can be used as authentication credentials or as a way to check data integrity. XML signatures can be applied to XML files, HTML pages, binary-encoded data and any XML-encoded data.
More than this, CERTivity can verify XML signatures using either the certificates embedded in the signature, or using a specific certificate given by the user. CERTivity also brings up the ability to sign and verify JAR files, which is useful when having to be sure of the integrity of Java archives, and to protect against changes intended to be harmful.
The features are combined and centralized having an intuitive and productive organization. CERTivity is a program designed to maximize the productivity of developers and system administrators.
Note: In order to use this application, users have to request a trial license.
Here are some key features of "CERTivity":
· The tabbed Document Interface allowing for visualizing in parallel the following types of models: KeyStores, individual Certificates and Test Certificate Scenarios. The GUI representation is taking advantage of the natural approach of using an IDE style interface.
· The application is able to work with a wide range of KeyStores types: (JKS, JCEKS, PKCS #12, BKS, UBER and Windows native ones)
· Import Certificates/Certificates Chains into KeyStore either from files or from SSL connections;
· Open an existing Certificate as standalone (not part of a KeyStore);
· Display Certificate Details;
· Obtain the revocation status from the signing CA through CRL;
· Use/test a certificate against a SSL connection (including plain upgradeable sockets) to an end-point and permitting raw TCP/IP level communication (similar to telnet/nc raw inspections); verbose handshaking information is also available;
· View Public Key details for the opened certificate;
· View PEM, ASN.1 representations;
· Extend validity for a Key Pair entry.
· Sign and Verify with verbose details: JAR, PDF, CSR, XML files.
· Retrieve and Export Certificates from multiple sources into multiple formats
· Export Key Pairs, Certificates Chains, Private Keys, Public Keys
· 800 MHz Intel Pentium III or equivalent
· 512 MB of RAM
· 100 MB of free disk space
· 30 days trial
What's New in This Release: [ read full changelog ]
Added support for viewing CRL files - Implemented a CRL viewer that acts as a top component when opening a CRL file. The user can open a CRL file from two sources:
· From a file;
· From a URL.
· The information contained in a CRL file is displayed as follows: the fields of the CRL file are displayed in the left part of the application window using a tree structure and the content of the CRL fields or tree node selected is displayed in the right part of the application window. The revoked certificates can be viewed individually by clicking on each revoked certificate node, or they can be displayed as a list, by selecting the Revoked Certificates List.
· Also implemented CRL extensions and CRL entry extensions as defined in the RFC 3280, and the extensions Issuer Alternative Name and Subject Alternative Name which can be used also as CRL or Certificate extensions.
· Updated the "Open Recent File" option from the "File" menu to also remember URL locations, not just file locati...