Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

Does Java 7 or Java 8 (keytool) support SHA-2 certificates with RSASSA-PSS as Signature algorithm?

user8946808Mar 1 2016 — edited Mar 1 2016

I am trying to import some certificates via the keytool in JRE 7 Update 80 or JRE 8 Update 66. The certificates are SHA256 ones with RSASSA-PSS as signature algorithm.

I have applied relevant JCE files to the JREs.

I have the instructions in the following links

But the keytool commands (to install the web server certificate) failed with

keytool error: java.lang.Exception: Incomplete certificate chain in reply
keytool error: java.lang.Exception: Failed to establish chain from reply

I can use same keytool commands to import certificates if SHA256RSA as signature algorithm.

Microsoft Premier support says that the problem could be whether or not the Java 7 or Java 8 are compatible with RSASSA-PSS as signature algorithm.

Can anyone confirm this?

Thanks in advance.

Locked Post

New comments cannot be posted to this locked post.

Locked on Mar 29 2016

Added on Mar 1 2016

#cryptography

0 comments

3,512 views

Java Security

Does Java 7 or Java 8 (keytool) support SHA-2 certificates with RSASSA-PSS as Signature algorithm?

Comments

Post Details