+

Search Tips   |   Advanced Search

Collection certificate store


A collection certificate store is a collection of non-root, certificate authority (CA) certificates and certificate revocation lists (CRLs), used to check the signature of a digitally signed SOAP message.

A collection certificate store is one kind of certificate store. A certificate store is defined as javax.security.cert.CertStore in the Java CertPath API. The Java CertPath API defines the following types of certificate stores:

The CertPath API uses the certificate store and the trust anchor to validate the incoming X.509 certificate that is embedded in the SOAP message. The Web services security implementation in the WAS supports the collection certificate store. Each certificate and CRL is passed as an encoded file.



 

Related concepts


Certificate revocation list
Trust anchor
Assembly tools
WS-Security provides message integrity, confidentiality, and authentication