obelisk / rustica
An SSHCA that uses a standard Yubikey to issue new host and user certificates.
☆40Updated this week
Related projects ⓘ
Alternatives and complementary repositories for rustica
- A crate for reading, parsing, verifying, and generating OpenSSH certificates and keys.☆16Updated 4 months ago
- A Secure Enclave Token Driver Smartcard Extension☆55Updated last year
- Pure Rust client for YubiHSM2 devices☆64Updated last month
- Hallow is a SSH Certificate Authority designed for use with AWS native environments☆63Updated 4 months ago
- Libraries and binaries for running witnesses for verifiable logs☆22Updated this week
- Yubikey client API library, Challenge-Response & Configuration☆52Updated 7 months ago
- Manage linux luks client devices and escrow recovery keys to crypt-server☆39Updated last week
- A Go client for the yubihsm2 binary protocol and connector service☆36Updated 6 months ago
- Rust access to macOS Keychain Services (experimental)☆57Updated 4 years ago
- Hardware private key storage for next-generation cryptography (e.g. BLS) supporting USB armory MkII devices☆110Updated 11 months ago
- Security-oriented protobuf-like serialization format with "Merkleized" content hashing support☆118Updated last year
- ☆29Updated this week
- A CLI to use a Google Cloud KMS key for PGP signing operations.☆43Updated 3 years ago
- ☆16Updated last year
- Pure Rust client for YubiHSM2 devices☆70Updated 4 years ago
- WIP x509 Certificate auditing CLI☆32Updated 3 months ago
- Find unmaintained packages in Rust projects☆66Updated this week
- Some code to duct-tape an SSH agent to a Chrome extension that implements the chrome.certificateProvider API.☆17Updated 8 years ago
- Chef cookbook for hardening macOS systems☆27Updated 7 years ago
- Resizable ORAM, remote storage agnostic, written in Rust☆68Updated 2 years ago
- Command line program for secret-sharing strings☆71Updated 2 years ago
- 🔑 Command-line wrapper around RustySecrets, a Rust implementation of threshold Shamir's secret sharing.☆10Updated 6 years ago
- An experimental, work-in-progress PAM module for Tailscale☆138Updated 2 years ago
- Certificate transparency SCT verification library in rust☆51Updated this week
- Pure Rust YubiKey host-side driver for PIV-based RSA/ECC key storage + signing/encryption support☆218Updated 3 months ago
- A Setup for creating a Public Key Infrastructure backed by a YubiHSM2☆14Updated last year
- proof-of-concept for recovering the master key from a Hashicorp Vault process☆68Updated last year
- Utilities to reproducibly build images for AWS Nitro Enclaves☆27Updated last month
- XChaCha8Blake3Siv is a nonce-reuse misuse-resistant (NRMR) and key-committing authenticated encryption with associated data (AEAD) algori…☆17Updated 3 years ago