CERTivity® KeyStores Manager

Here you can see some screenshots that reveal CERTivity®‘s main features and advantages (click on images to see a larger version).

CERTivity is seen at its full power, having many KeyStores of different types opened, a Certificate panel displaying the details of a certificate and a panel for testing a certificate on a custom raw text protocol.

CERTivity provides a simple installation, from the Oracle JDK website via an integrated JavaFX browser, of the Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files. Only the users located in countries with no import restrictions should use these Oracle files. The user is simply performing the actions s(he) performs in the browser, accepting the Oracle License Agreement and clicking the download link. After the download finishes CERTivity will automatically install the files in the necessary JRE location on disk, backing up the standard files.

How SSL certificates can be obtained from a given server analyzed and then either imported into the current KeyStore, or exported to a file. Here we can see the details of the certificates available through the View Details button. Any certificate from the certificate hierarchy can be analyzed, imported in the current KeyStore or exported to a file as a standalone certificate in various formats: X.509 (with/without PEM encryption), PKCS #7 (with/without PEM encryption), PKI Path.

CERTivity displaying multiple KeyStore types, having the first KeyStore active, and one Key Pair entry selected for which details are shown in the bottom panel. The KeyStore is represented in a Tree fashion. Also, most of the entries of the KeyStore can be seen expanded, showing their inner components (Private Key, Certificate Chain, Certificates, Public Key) as well as providing a contextual menu.

The PDF verification results dialog, showing the verification status and additional details about a PDF document and its signatures and embedded certificates. The certificates associated with the signatures can be viewed and exported as standalone certificates files in various formats. Valuable information such as the SubFilter type or the reason why the signature is or is not valid are presented. For example, depending on the SubFiter type, there may be two digests to be verified, and if one of these fails the validation fails, and this could be visible by inspecting the Details section - such details are not usually available through the PDF Readers.

CERTivity displaying a KeyStore, a CSR file and having active the tab where a CRL sample file is displayed as follows: the fields of the CRL file are displayed in the left part of the application window using a tree structure and the content of the CRL fields or tree node selected is displayed in the right part of the application window. The revoked certificates entries can be viewed individually by clicking on each revoked certificate node, or they can be displayed as a list, by selecting the Revoked Certificates List.

The Options dialog, showing the settings contained in the "Trust Path Options / TrustStores Selection" tab. The "Trust Path Options" allows dynamic TrustStore management at runtime. This new option contains two tabs called "TrustStores Selection" and "Trust Validation Options", these tabs containing in turn new options for setting the active TrustStores and validation parameters.