# Create JSON Web Key (JWK)

To create JSON Web Signature (JWS) you need to create the signing certificate public and private key and then share public key with the AA. 

You need to give the public key in the Certificate field when creating your FIU entity at the central registry aacommons portal. Refer - [Create FIU Entity](https://docs.saafe.in/central-registry/create-fiu-entity)

Steps to create the signature keys.

1. Open <https://mkjwk.org/> - This is an online JSON Web Key generator
2. Use RSA (encryption algorithm)
3. Key Size = 2048
4. Key Use = Signature
5. Algorithm = RS256
6. Key ID = Unique UUID (Use [online UUID Generator](https://www.uuidgenerator.net/) to create an UUID)
7. Click generate to create the Public and Private Key

You will get 3 JSON objects.

<table><thead><tr><th width="278">Values</th><th>Description</th></tr></thead><tbody><tr><td><mark style="color:red;">Public and Private Keypair</mark></td><td>Keep this <mark style="color:red;">confidential</mark> and share this with your developer.</td></tr><tr><td><mark style="color:red;">Public and Private Keypair Set</mark></td><td>Keep this <mark style="color:red;">confidential</mark> and share this with your developer.</td></tr><tr><td><mark style="color:green;">Public Key</mark></td><td>Use this public key in the Certificate field when <a href="../../central-registry/create-fiu-entity">creating the FIU entity</a></td></tr></tbody></table>