A Java KeyStore (JKS) is a repository of security certificates (public key or authorization) often used for encryption or authentication.
Challenges and security risks associated with Java KeyStores
Updating these repositories involves issuing and revoking certificates from within their consoles, using time-consuming and mistake-prone command-line functions. Oversight and error is common, causing outages, loss of productivity and costly reputation damage from inappropriate trust.
To ensure that disparate Java KeyStores are not a weak link in your security policy, they should be managed with the same policies and procedures used to manage your Enterprise PKI Certificate Authorities. Aligning these time-consuming tasks and ensuring that Java KeyStore management falls within an integrated management process ensures that distinct application servers and apps do not override your overarching security posture.