Small-as-possible self-signed cert SSL example

["Ostermueller, Erik" <Er...@fnis.com>]

Hello all,

I've got a java-first http hello-world cxf service up and going on
Websphere 6.1.  Works great.
I even have a https example up and going with cxf on jetty.  
Now, I'm trying to implement SSL using IBM HTTPServer, 6.1 for the above
Websphere service.
As odd as it may seem, HTTPServer doesn't support the jks keystore
format -- only cms/kdb.

W/o luck, I tried to 'port' the the wibble.jks, truststore.jks and
cherry.jks in the cms/kdb format.

So, I could use some certificate/key advice for creating a
small-as-possible SSL self-signed cert example.
Here is what I've done so far (all using the IBM iKeyMan swing GUI).

1) Created a blank server.kdb
2) Added a self-signed certificate
3) Exported the public key to an arm file
4) Created the client.kdb
5) Create a self-signed certificate in the client.kdb.
6) Imported the above arm file into client.kdb

Am I close to the right approach?  I'd appreciate any feed back, thanks.

--Erik Ostermueller

_____________

The information contained in this message is proprietary and/or confidential. If you are not the 
intended recipient, please: (i) delete the message and all copies; (ii) do not disclose, 
distribute or use the message in any manner; and (iii) notify the sender immediately. In addition, 
please be aware that any message addressed to our domain is subject to archiving and review by 
persons other than the intended recipient. Thank you.
_____________