CSR Generator using Java Web Start
Overview
The CSR generator using Java Web Start is an open source software
developed by AIST
GTRC. Providing a graphical user interface, the CSR generator
generates certificate signing request (CSR) for user, host, and ldap
certificates and send it to an appropriate certificate authority via
email. The CSR generator is written in Java and uses a light weight
cryptography API in Java provided by bouncycastle.
The CSR generator has the following features:
- A CSR will be generated on the user's machine. This means a
private key is kept on the user's machine.
- It is not required to pre-install the software used to generate
a CSR on the user's machine.
System behavior and trial run
With Java Web Start, applications are launched by clicking on a Web
page link. When a user clicks a Web page link, the application (CSR
generator) and all necessary files, such as required Java class
libraries, are automatically downloaded to the user's machine if the
application is not present on the user's machine. The CSR generator
starts when all necessary files have been downloaded. The generator
will run on the user's machine, as well.
In the first step, the user specifies a user name and an email address
to be used when generating the CSR for the user certificate. The user
has to specify the host's FQDN to generate a CSR for the server
certificate. In the second step, a key pair (private key and public
key) and a CSR are generated. In the third step, the generated CSR
and private key are saved as local files. In the last step, the CSR
generator send the generated CSR to an appropriate CA.
Click here for trial run of the CSR
Generator. Note that the CSR will be sent to a dummy CA and you will
be issues no certificates through this trial.
Download
The CSR generator is implemented to be used by Certificate
Authorities. It is an open source software and you can
download the source now!
|