Trust Stores and Keystores
- Java trust store, cacerts, contain root certificates of well-known certification authorities. The validity of a certificate presented during the TLS/SSL (Transport Layer Security/Secure Sockets Layer) session is checked from
cacerts.jks. There are no private keys or passwords in cacerts. They will contain the intermediate and root certificates of certification authorities. - Java Keystore is used to store private key and the identify certificate for the server, which means that the keystore is used to store your server’s credentials.