A credential contains your private key information needed for signing or identifying documents. A certificate is public key information that you configure for trust. AEM forms uses certificates and credentials for several purposes:
Generating a pair key
AEM forms uses its Trust Store to store and manage certificates, credentials, and certificate revocation lists (CRLs). Additionally, you can use an independent Hardware Security Module (HSM) device to store private keys.
AEM forms does not provide any option to generate a key pair. However, you can generate it using tools, such as Java keytool, and import it in AEM forms Trust Store. For more information on Java keytool, see the following:
The following signature types are supported and can be imported in AEM forms:
Handling lost or compromised key
If you suspect that your key is lost or has been compromised, take the following actions: