My Oracle Support Banner

[Java SE] How to Convert a JKS Keystore File to PKCS12 Format (Doc ID 3020238.1)

Last updated on JUNE 17, 2024

Applies to:

Java SE JDK and JRE - Version 8 and later
Information in this document applies to any platform.

Goal

Since JDK 8 and higher, the default keystore type generated when using Keytool is set to PKCS12 which is used to store private keys, trusted public key certificates, and secret keys.

PKCS12 is an extensible, standard, and widely supported cryptographic key storage format. Switching to PKCS12 enhances keystore integrity and confidentiality. It also allows for interoperability with other systems that implement PKCS12.

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.