obelisk / rusticaLinks
An SSHCA that uses a standard Yubikey to issue new host and user certificates.
☆43Updated last month
Alternatives and similar repositories for rustica
Users that are interested in rustica are comparing it to the libraries listed below
Sorting:
- A crate for reading, parsing, verifying, and generating OpenSSH certificates and keys.☆17Updated last month
- A Secure Enclave Token Driver Smartcard Extension☆58Updated 2 years ago
- Hallow is a SSH Certificate Authority designed for use with AWS native environments☆65Updated 10 months ago
- Verify and assert policy on YubiKey attestation certificates☆20Updated 3 weeks ago
- A CLI to use a Google Cloud KMS key for PGP signing operations.☆43Updated 4 years ago
- Pure Rust client for YubiHSM2 devices☆65Updated 2 months ago
- Experimental version of Algo built on Terraform☆80Updated 3 months ago
- Tools for using CFSSL w/ PKCS11 token as a CA☆17Updated 9 years ago
- ☆33Updated last week
- Nitro Enclaves Kubernetes Device Plugin☆25Updated last month
- verify https assets with a public transparency log☆75Updated 3 years ago
- A monitor that checks that Certificate Transparency Logs are complying with RFC 6962 and the Chromium Certificate Transparency Log Policy…☆40Updated 2 years ago
- ☆17Updated 2 years ago
- A Setup for creating a Public Key Infrastructure backed by a YubiHSM2☆15Updated last year
- Proxy for testing network disconnects and jitter/throttling☆16Updated 3 weeks ago
- ☆20Updated 9 months ago
- proof-of-concept for recovering the master key from a Hashicorp Vault process☆67Updated last year
- An experimental, work-in-progress PAM module for Tailscale☆143Updated 2 years ago
- A dumb little utility to streamline the use of ssh-agent with PIV-enabled YubiKeys on OS X.☆12Updated 4 years ago
- Initial discussions on signatures of WebAssembly modules.☆17Updated 3 years ago
- Provides agent and server plugins for SPIRE to allow TPM 2-based node attestation.☆81Updated last year
- Split-Trust Encryption Tool for ubiquitous data encryption.☆38Updated last month
- Yubikey client API library, Challenge-Response & Configuration☆53Updated last year
- Towards an IETF RFC for XChaCha20-Poly1305☆28Updated 5 years ago
- Go implementation for CNAB content trust verification using TUF, Notary, and in-toto☆31Updated last year
- A simple service for interacting with an HSM or other PKCS#11 device.☆56Updated this week
- Some Rust code for submitting a cert to all of Chrome's trusted CT logs and getting back the SCTs☆16Updated 2 years ago
- Libraries and binaries for running witnesses for verifiable logs☆25Updated this week
- A rust implementation of in-toto☆32Updated 2 months ago
- Utilities to reproducibly build images for AWS Nitro Enclaves☆32Updated last week