Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

JKS to store upstart data

Posted on 2016-08-23
2
Medium Priority
?
170 Views
Last Modified: 2016-08-29
I'm wondering if its possible to use JKS as an alternative to zookeeper or databases..
im writing an app that has some important information that needs to be created upon startup, this information should be kept safe/secure/encrypted.  upon shutting down the app, i'd like the created info to be stored on disk, and next time server starts back up to load this info from .jks file... im pretty sure its possible but i've yet experience a situation where someoen stored more then just a hash/pw/private key in a .jks file...

i've read " The keystore a database which holds encrypted information and the information about how to decrypt it. If you do not specify a keystore, the default keystore to use is a file called .keystore in your home directory." from https://access.redhat.com/documentation/en-US/JBoss_Enterprise_Application_Platform/6/html/Administration_and_Configuration_Guide/Create_a_Java_Keystore_to_Store_Sensitive_Strings.html so hence my question.

thx for the feedback
0
Comment
Question by:Squadless
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 86

Accepted Solution

by:
CEHJ earned 2000 total points
ID: 41768363
Certainly using a keystore is the wrong tool for the job. But there's a bigger problem: you can't encrypt and store data securely in the same location you're proposing to keep the keys to do that. That's the main reason why professional applications do not have client-side databases

One way of doing it securely would be to make the user enter the secret into the gui on startup and then connect over SSL to the entity that would supply the data for the rest of the gui. The secret would not be stored anywhere on the client
0
 
LVL 1

Author Closing Comment

by:Squadless
ID: 41774775
on point as usual
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ever wonder what it's like to get hit by ransomware? "Tom" gives you all the dirty details first-hand – and conveys the hard lessons his company learned in the aftermath.
If you're a modern-day technology professional, you may be wondering if certifications are really necessary. They are. Here's why.
An overview on how to enroll an hourly employee into the employee database and how to give them access into the clock in terminal.
With the power of JIRA, there's an unlimited number of ways you can customize it, use it and benefit from it. With that in mind, there's bound to be things that I wasn't able to cover in this course. With this summary we'll look at some places to go…
Suggested Courses

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question