Skip to content
/ Mini-CA Public

Files and instructions for generating a Root CA and End Entity certificates for PIV smart cards (e.g: YubiKey) using OpenSSL

sophie.smeeton.icu/security/openssl-toolkit/

License

GPL-3.0 license
3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sophie-s1/Mini-CA

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
Notes
Notes
 
 
cnf
cnf
 
 
Backend.py
Backend.py
 
 
CA_Menu.py
CA_Menu.py
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
Root-CA.cnf
Root-CA.cnf
 
 
index.txt
index.txt
 
 
serial
serial
 
 
yubikey_oids.cnf
yubikey_oids.cnf
 
 

Repository files navigation

Mini CA

A python based tool for generating and managing OpenSSL keys and certificates

Guide: https://sophie.smeeton.icu/security/openssl-toolkit/ #Not active link

Requires python 3.10+, openssl, opensc (Smart card support), libp11 (Smart card support)

TODO:

  • Update PIV configs
  • Add systemd service for periodicaly updating CRLs
  • Add proper error handeling
  • Allow picking Key type for CA

Potential future features:

  • Intermediate CA support
  • Run with args from cmdline

About

Files and instructions for generating a Root CA and End Entity certificates for PIV smart cards (e.g: YubiKey) using OpenSSL

sophie.smeeton.icu/security/openssl-toolkit/

Topics

openssl yubikey piv openssl-tools

Resources

Readme

License

GPL-3.0 license
Activity

Stars

3 stars

Watchers

1 watching

Forks

0 forks
Report repository

Languages