XCA is an interface for managing RSA and DSA keys, certificates, certificate signing requests, revocation lists and templates. It uses the OpenSSL and Qt4 libraries. Certificates and requests can be created and signed and many x509v3 extensions can be added. XCA supports multiple root and intermediate Certificate authorities. The CAs can be used to create CRLs and extend certificates. The following file-formats are supported: PEM, DER, PKCS#7, PKCS#8, PKCS#10, PKCS#12, and SPKAC.
|Tags||Security Cryptography OpenSSL GUI PKI Certificates RSA DSA eC Smartcard PKCS#11|
|Operating Systems||POSIX BSD FreeBSD Mac OS X Linux Windows|
Release Notes: This release adds search functionality for PKCS#11 libraries, allows display of x509v3 extensions as columns in the certificate and request list, and supports exporting of requests and certificates as openssl config files. It also fixes some bugs.
Release Notes: This release improves the usability and Smart-card handling. XCA now supports token initializing, creating keys on a token, storing existing keys on a token, and deleting keys and certificates from a token. XCA supports drag and drop by opening items dropped onto it.
Release Notes: This bugfix release fixes a bug that sometimes crippled DistinguishedName entries.
Release Notes: This release adds support for smartcards via the PKCS#11 library API. They can be used like other keys. Certificates from a smartscard can be imported. XCA now also supports EC Keys. Templates can now be generated from a certificate or a PKCS#10 request.
Release Notes: The validation of certificate requests was fixed. During certificate creation the user is notified about duplicate v3 extensions. The subject of certificate requests can now be modified before signing it. Arbitrary X509v3 extensions may be added by using the OpenSSL configuration file format on the "Advanced Settings" tab. A validation button computes and displays all extensions before creating the certificate.