In WSO2 products, asymmetric encryption is used by default for the following purposes:
- Authenticating the communication over Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocols.
Encrypting sensitive information
data such as plain
as plain-text passwords found in both product-level and product feature-level configurations/configuration files using secure vault.
- Encrypting data such as scripts, configuration files, xmld, xsds etc. into the registry.Encrypting/signing in and signing SOAP messages using WS-Security.
You can set up several keystores with separate key pairs and certificates for the above use cases in your system. It is recommended to maintain the following keystores: