The LibPKI Project is aimed to provide an easy-to-use PKI library for PKI-enabled application development. The library provides the developer with all the needed functionality to manage certificates, from generation to validation. It helps developers integrate X509 digital certificates into their applications, and implement complex cryptographic operations with a few simple function calls using a high-level cryptographic API. The library constitutes the core of other OpenCA Labs Projects like the PRQP Server, the OCSP Responder, and the OpenCA-NG PKI.
|Tags||Cryptography Security PKI|
|Operating Systems||Linux Solaris OpenSolaris BSD Mac OS X|
Release Notes: Improvements over the last publicly released version (0.6.5) include fixed generation of OCSP responses (an uninitialized field was causing OCSP responses to be invalid), support for DNS queries via the URL interface (dns://<domain>?<record_type>), and initial support for experimental Lightweight Internet Revokation Tokens (LIRTs).
Release Notes: This release has extended support for ECDSA (via profile/keyParams in profile configuration files). It fixes linker issues on Solaris, adds a pki-cert command line tool, and fixes the ocsp library code.
Release Notes: Support for IPv6 in network calls, fixes for URL parsing, and PKI_SSL_* interface enhancements.
Release Notes: This release adds support for different operating systems (initial support for Win port), PKI_SSL and support for easy SSL/TLS management, support for the Win LDAP API, support for 64-bit architectures, safe URL encoding for the HTTP GET protocol, and platform-independent thread management together with thread synchronization primitives (mutexes, condition variables, and r/w locks). There are LDAP interface fixes.
Release Notes: Support for PRQP from IETF (draft-ietf-pkix-prqp-04.txt) was increased. Support for PKCS#11 devices was extended. Simple OCSP request/responses managing functionalities were added. A new PKI_MSG interface for managing interactions between applications and CAs was introduced. The PKI_X509 interface for generalized X509 object management was added.