x509

Public Key Infrastructure (RFC 5280, PKCS) purely in OCaml
README

v0.11.2
X.509 is a public key infrastructure used mostly on the Internet. It consists
of certificates which include public keys and identifiers, signed by an
authority. Authorities must be exchanged over a second channel to establish the
trust relationship. This library implements most parts of
RFC5280 and
RFC6125. The
Public Key Cryptography Standards (PKCS)
defines encoding and decoding in ASN.1 DER and PEM format, which is also
implemented by this library - namely PKCS 1, PKCS 7, PKCS 8, PKCS 9 and PKCS 10.

Read further and our Usenix Security 2015 paper.

Documentation

API documentation

Installation

opam install x509 will install this library.

Install
Published
14 May 2020
Sources
x509-v0.11.2.tbz
sha256=42ccf807a7b397b8f5411d261f64ae3cb671e59b2a2f10f16b507a5ae16594ac
sha512=e7f9757f74e2b4caa4f5fb2eb801aa203ba1b77ab7629f01a4bd6e4a02cb82dc67bd97353d45999a5862519b2c704b8285f5e36115efc3e01553379a6f9d1f6c
Dependencies
domain-name
>= "0.3.0"
gmap
>= "0.3.0"
mirage-crypto-pk
with-test & < "0.8.9"
cstruct-unix
with-test & >= "3.0.0"
alcotest
with-test
fmt
>= "0.8.7"
base64
>= "3.1.0"
cstruct
>= "4.0.0" & < "6.1.0"
dune
>= "1.2"
ocaml
>= "4.07.0"
Reverse Dependencies
albatross
< "1.1.1"
awa
< "0.0.2"
ca-certs
< "0.2.1"
ca-certs-nss
< "3.64.0.1"
capnp-rpc-net
>= "0.7.0" & < "1.1"
dkim
!= "0.2.0"
dns-certify
>= "4.4.0" & < "5.0.0"
dns-cli
>= "4.4.0" & < "5.0.1"
git-mirage
>= "3.7.0"
irc-client-tls
>= "0.7.0"
jose
< "0.6.0"
letsencrypt
>= "0.2.2" & < "0.2.5"
paf
= "0.0.2"
sendmail-lwt
< "0.4.1"
tls
>= "0.11.1" & < "0.13.0"
tls-mirage
< "0.13.1"
tlstunnel
< "0.2.0"