Ruleset.xml - keytool and certificates

Question

I am trying to understand how keytool work.

I have few questions:

Question about Keytool: If we use keytool (keygen) using exact same details (DN/password .. etc) on two different machines, will we end up with identical keys?
Question about ruleset.xml and DeploymentRuleSet.jar (Java 1.7 security): If we use self signed certificates, and import those certificates on client machines, will that resolve the issues of pop up warning that are getting nastier and nastier with each Java upgrade (now 1.7.0_45 is giving even worse warnings)

Try to keep to only one question within each question; so they can be answered individually — Richard Tingle, Dec 04 '13 at 11:42

score 0 · Answer 1 · answered Dec 03 '13 at 20:54

Public/private key pairs are randomly seeded. You will not get the same keys on two machines using the same input.
Java has its own certificate store. Yes, if you import your self-signed certificate into client's key store, and app is signed properly, you should not get too nasty warnings.

1 Answers1