Search Results for "ocsp"
Sort By:
Showing 29 open source projects for "ocsp"
View related business solutions-
Gen AI apps are built with MongoDB AtlasMongoDB Atlas is the developer-friendly database used to build, scale, and run gen AI and LLM-powered apps—without needing a separate vector database. Atlas offers built-in vector search, global availability across 115+ regions, and flexible document modeling. Start building AI apps faster, all in one place.
-
Get the most trusted enterprise browserDefend against security incidents with Chrome Enterprise. Create customizable controls, manage extensions and set proactive alerts to keep your data and employees protected without slowing down productivity.
-
1
Caddy
Powerful, enterprise-ready, open source web server w/ automatic HTTPS
Caddy is a powerful, extensible, enterprise-ready server platform that uses TLS by default. Everything you would require in your infrastructure, from TLS certificate renewals and OCSP stapling, to reverse proxying and ingress, Caddy simplifies it all. Its modular architecture lets you do more with just a single static binary that compiles for any platform. Caddy is the only web server that uses HTTPS automatically and by default. It automatically renews TLS certificates, staples OCSP... -
2
Windows ACME Simple (WACS)
A simple ACME client for Windows (for use with Let's Encrypt et al.)
This is a ACMEv2 client for Windows that aims to be very simple to start with, but powerful enough to grow into almost every scenario. A very simple interface to create and install certificates on a local IIS server. A more advanced interface for many other use cases, including Apache and Exchange. Automatically creates a scheduled task to renew certificates when needed. Get certificates with wildcards, international names, OCSP Must Staple extension (optional). Re-use private keys for DANE... -
3
Boulder
An ACME-based certificate authority, written in Go
This is an implementation of an ACME-based CA. The ACME protocol allows the CA to automatically verify that an applicant for a certificate actually controls an identifier, and allows domain holders to issue and revoke certificates for their domains. Boulder is the software that runs Let's Encrypt. This component model lets us separate the function of the CA by security context. The Web Front End, Validation Authority, OCSP Responder and Publisher need access to the Internet, which puts them... -
4
s2n
An implementation of the TLS/SSL protocols
... implements SSLv3, TLS1.0, TLS1.1, TLS1.2, and TLS1.3. For encryption, s2n-tls supports 128-bit and 256-bit AES in the CBC and GCM modes, ChaCha20, 3DES, and RC4. For forward secrecy, s2n-tls supports both DHE and ECDHE. s2n-tls also supports the Server Name Indicator (SNI), Application-Layer Protocol Negotiation (ALPN), and Online Certificate Status Protocol (OCSP) TLS extensions. SSLv3, RC4, 3DES, and DHE are each disabled by default for security reasons. -
Build Securely on AWS with Proven FrameworksMoving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.
-
5
CertMagic
Automatic HTTPS for any Go program
Caddy's automagic TLS features, now for your own Go programs, in one powerful and easy-to-use library! CertMagic is the most mature, robust, and powerful ACME client integration for Go, and perhaps ever. With CertMagic, you can add one line to your Go application to serve securely over TLS, without ever having to touch certificates. Just a line of code will serve your HTTP router mux over HTTPS, complete with HTTP->HTTPS redirects. It obtains and renews the TLS certificates. It staples OCSP... -
6
JSignPdf is an open-source Java application that adds digital signatures to PDF documents.
-
7
X509 GUI Certificate Viewer
Display online (TLS, DTLS, OPC, QUIC, SMTP) & offline certificates
-
8
NaviServer
NaviServer, a high performance web server written in C and Tcl
NaviServer is an extensible web server suited to create scalable websites and services. Originally based on AOLserver (http://www.aolserver.com), the ongoing development is done independently under Mozilla Public License by a core group of people that use it for their businesses and by other supporters. Features: High performance multi-threaded architecture, massively scalable and extensible, many modules, dynamic scripted pages (ADP), caching functions (static files, Tcl byte code,... -
9
The wolfSSL embedded SSL library (formerly CyaSSL) is a lightweight, portable, C-language-based SSL/TLS library targeted at IoT, embedded, and RTOS environments primarily because of its size, speed, and feature set. It works seamlessly in desktop, enterprise, and cloud environments as well. wolfSSL supports industry standards up to the current TLS 1.2 and DTLS 1.2, is up to 20 times smaller than OpenSSL, offers a simple API, an OpenSSL compatibility layer, OCSP and CRL support, is backed...
-
Simple, Secure Domain RegistrationRegister or renew your domain and pay only what we pay. No markups, hidden fees, or surprise add-ons. Choose from over 400 TLDs (.com, .ai, .dev). Every domain is integrated with Cloudflare's industry-leading DNS, CDN, and free SSL to make your site faster and more secure. Simple, secure, at-cost domain registration.
-
10
The SignServer is an application for server side signatures called by other systems. It is flexible and can be customized to specific needs. The SignServer have a ready to use TimeStamp server and signers for PDF, XML, ODF, PGP, OOXML and MRTD (ePassport DS).
-
11
CacheGuard PKI
Public Key Infrastructure
CacheGuard PKI (Public Key Infrastructure) is a mini PKI and an OCSP server that you can safely connect to the internet to revoke your public certificates. CacheGuard PKI allows you to easily generate, import and export your SSL client, server and CA root certificates. CacheGuard PKI is distributed as an open source OS to install on a virtual or hardware machine. Once installed on a machine, CacheGuard-OS transforms that machine into a PKI network appliance. CacheGuard-OS is based... -
12
StrongKey PKI2FIDO
Web application to register FIDO keys from TLS ClientAuth sessions
... process validates the digital certificate's chain (if any) and uses CRLs to verify the certificate's revocation status (OCSP checking will come in the next release). Once the certificate chain is validated, it checks an LDAP server to determine if the user is authorized to register a FIDO Security key with the site. Since PKI2FIDO is a sample application, a De-register button is enabled to delete FIDO keys; This enables the user to keep testing with the same username. -
13
AWS EC2 Instance Connect Configuration
ssh daemon configuration and necessary EC2 instance scripting
... be tested without mocking the actual service. The curl script verifies we are actually running on an EC2 instance and cURLs relevant information from EC2 Instance Metadata Service and send it to parse. Note that it must make several curl commands to proceed. If it cannot do so it fast-fails to prevent blocking the ssh daemon. The command also queries several OCSP staples from EC2 Instance Metadata Service. -
14
OCSP Evaluator
Performs an OCSP revocation check of the current TLS/SSL Certificate
------ END OF LIFE - 2022/06/30 This project has been discontinued and the WebExtension is no longer available ------ It is WebExtension for browser that performs an OCSP request to obtain the revocation status of all used SSL certificates on the currently visited website. Due to restrictions in the browser APIs the OCSP request cannot be performed by the browser itself. Therefore the request is done on a server which provides a simple [REST Api](https://ocspchecker.com/) to trigger... -
15
lua-resty-auto-ssl
On the fly (and free) SSL registration and renewal inside OpenResty
On the fly (and free) SSL registration and renewal inside OpenResty/nginx with Let's Encrypt. This OpenResty plugin automatically and transparently issues SSL certificates from Let's Encrypt (a free certificate authority) as requests are received. By default, resty-auto-ssl will not perform any SSL registrations until you define the allow_domain function. You may return true to handle all possible domains, but be aware that bogus SNI hostnames can then be used to trigger an indefinite number... -
16
H2O
The optimized HTTP1, HTTP2, and HTTP3 server
H2O is a new generation HTTP server that provides quicker response to users with less CPU utilization when compared to older generation of web servers. Designed from ground-up, the server takes full advantage of HTTP/2 features including prioritized content serving and server push, promising outstanding experience to the visitors of your web site. Full support for dependency and weight-based prioritization with server-side tweaks. Static file serving, FastCGI, reverse proxy, scriptable using... -
17
Php Ocsp
Online Certificate Status Protocol with php
RFC 2560 Compatible OCSP For question, installation please send me mail to hidactive@gmail.com. This is first release. The example of database will included soon. -
18
Cryptography Playground
The best cryptography playground available
The best cryptography playground available Demo @ https://8gwifi.org How to Install wget https://downloads.sourceforge.net/project/cryptography-playgroud/crypto-installer.tar tar xvf crypto-installer.tar;cd crypto-installer ./bootstart.sh Browse http://localhost:8080 -
19
OpenCA
Open Source PKI solutions
The OpenCA PKI Development Project is a collaborative effort to develop a robust, full-featured and Open Source out-of-the-box Certification Authority implementing the most used protocols with full-strength cryptography world-wide. -
20
QR-CERT. Free PKI Certificate Authority
PKI & Card Management System to issue and manage tokens & certificates
The QR-CERT software is a specialized package of applications dedicated for the development of a Public Key Infrastructure system as well as the cards personalization and management system. The software contains a number of functional modules, enabling a flexible selection of functionalities for implementation. The software is dedicated for large organizations and corporate environments, with a PKI infrastructure and microprocessor cards. The QR-CERT is a solution both for the companies... -
21
Omnibroker
Singe interface to trusted services (DNS, OCSP, NTP)
Singe interface to trusted services (DNS, OCSP, NTP) -
22
This package provides the following pure Java extensions to the Bouncy Castle framework www.bouncycastle.org and was made freely available by www.novosec.com: 1. OCSP (RFC 2560) server and client / 2. CMP (RFC 2510, RFC 2511) generator and parser
-
23
Certificate-helper is a utility desktop application written in Java designed and created to assist (mainly developers) in creating and viewing keystores and digital certificates. This is done via a user interfaces implemented in Swing.
-
24
The PKI Framework (PKIF) is a cross-platform library for performing PKIX-compliant certificate processing. It includes support for SCVP, OCSP, CMS and Timestamps. It uses Windows CAPI, NSS or Crypto++ for cryptographic services and hardware support.
-
25
A library help for signing data with PKCS11 token (certificates with SHA1withRSA Sign Algorithm) and create CMS packages. It uses Bouncy Castle Crypto API and SUNPKCS11. Also it verify the signed data and verify signing certificate's OCSP control.
