-
Updated
Jul 28, 2021 - Shell
#
pki
Here are 374 public repositories matching this topic...
An ACME-based certificate authority, written in Go.
-
Updated
Aug 13, 2021 - Go
AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to 2019, some Linux distributions and various products like AD, Exchange, PKI, IIS, etc.
deployment
powershell
azure
directory
active-directory
hyper
exchange
pki
active
scripted
domain-controller
automated-deployment
scripted-deployment
lab-machine
hyperv
-
Updated
Aug 11, 2021 - PowerShell
PKI.js is a pure JavaScript library implementing the formats that are used in PKI applications (signing, encryption, certificate requests, OCSP and TSP requests/responses). It is built on WebCrypto (Web Cryptography API) and requires no plug-ins.
javascript
encryption
certificate
es6
signing
javascript-library
pkcs7
pki
plug-ins
asn
timestamp
crl
pkcs5
webcrypto
pki-applications
ocsp
tsp
-
Updated
Jul 22, 2021 - JavaScript
DebOps - Your Debian-based data center in a box
ansible
debian
ubuntu
playbook
gitlab-ci
sysadmin
data-center
self-hosted
pki
debops
sysadmin-tool
ansible-controller
-
Updated
Aug 15, 2021 - Jinja
Certificate Transparency Log Monitor
-
Updated
Jun 30, 2020 - Go
A miniature version of Boulder, Pebble is a small RFC 8555 ACME test server not suited for a production certificate authority. Let's Encrypt is hiring! Work on Pebble with us.
-
Updated
Aug 14, 2021 - Go
security
oauth
jwt
awesome
cryptography
cloud
privacy
authentication
iam
secret-management
acl
password
authorization
pki
awesome-list
openid
2fa
gdpr
hardware-security-module
anonymization
-
Updated
Jul 27, 2021
Sharkey is a service for managing certificates for use by OpenSSH
-
Updated
May 10, 2021 - Go
OpenXPKI Code
-
Updated
Aug 14, 2021 - Perl
Reusable django app implementing x509 PKI certificates management
-
Updated
Jun 2, 2021 - Python
Highly scalable and high-performance open source PKI (CA and OCSP responder). Minimal dependencies, No-JPA, No-Spring, No-EJB.
java
certificate
rest-api
pki
certificate-transparency
hsm
certificate-authority
crl
ocsp
pkcs11
ca
cmp
ocsp-responder
scep
rfc5280
rfc2560
rfc6960
certification-authority
ca-browser-forum
-
Updated
Aug 12, 2021 - Java
PowerShell PKI Module
-
Updated
Aug 4, 2021 - PowerShell
ASN1js is a pure JavaScript library implementing a full ASN.1 BER decoder and encoder.
-
Updated
Apr 26, 2021 - JavaScript
Certificate Manager in .NET Core for creating and using X509 certificates
-
Updated
Nov 8, 2020 - C#
A Brisk and Better Assured Cryptographic Toolkit
-
Updated
Aug 12, 2021 - C
pki-bot
commented
Oct 3, 2020
This issue was migrated from Pagure Issue #3199. Originally filed by rcritten (@rcritten) on 2020-08-03 15:59:52:
- Assigned to nobody
IPA can be installed in a CA-less configuration with the user providing the certificates required for operation. Running ipa-healthcheck with this will generate quite a few pk
Small wrapper utility to manage OpenVPN configuration combined with a Vault PKI
-
Updated
May 8, 2021 - Go
A tool to monitor a certificate transparency log for operational problems
-
Updated
Oct 14, 2020 - Go
vqhuy
commented
Aug 4, 2017
During our last meeting, we discussed how should the server/the client compute the commitment:
-
Main concern: server is using a static salt which would allow an attacker to test whether keys exist in the tree
=> client sends salt along with the registration
=> need secure PRNG -
How to ensure the server is using the right commitment scheme? Client should verify with the scheme specified
Open
CertificateImport: Remove non-mandatory parameter `Ensure` from the `Get-TargetResource` function
1
johlju
commented
Jul 20, 2018
Details of the scenario you tried and the problem that is occurring:
In the resource CertificateImport there should be no need to have the non-mandatory parameter Ensure in the Get-TargetResource function.
Repositório que contém os componentes para facilitar a implementação de assinatura digital nos padrões da ICP-BRASIL
-
Updated
Aug 13, 2021 - Java
Improve this page
Add a description, image, and links to the pki topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the pki topic, visit your repo's landing page and select "manage topics."
What would you like to be added
I'd like to have the option to not have the HSM pin stored in a configuration file, but instead be required to be entered manually by an operator each time the CA is started.
Why this is needed
Having HSM pins sitting on the file system weakens the security in cases of hardware being stolen.
In theory if the PIN is not known then stealing a server a