You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
createWithMtlsJavaKeystore extracts the key, assumes it is RSA and then creates the TLS options using the in-memory private key and certificate. There should be a way to use the Java KeyStore via custom key operations to provide security without exporting the key from secure storage such as PKCS11 or AndroidKeyStore.
This can be done by customers manually by writing the necessary code, but having a prebuilt implementation to call the necessary Java APIs to sign and verify using the secure key material would make a lot of sense.
The text was updated successfully, but these errors were encountered:
Feature Request:
aws-crt-java/src/main/java/software/amazon/awssdk/crt/io/TlsContextOptions.java
Line 373 in 54af471
createWithMtlsJavaKeystore extracts the key, assumes it is RSA and then creates the TLS options using the in-memory private key and certificate. There should be a way to use the Java KeyStore via custom key operations to provide security without exporting the key from secure storage such as PKCS11 or AndroidKeyStore.
This can be done by customers manually by writing the necessary code, but having a prebuilt implementation to call the necessary Java APIs to sign and verify using the secure key material would make a lot of sense.
The text was updated successfully, but these errors were encountered: