starred/certidude-laurivosandi
1
0
Fork 0
mirror of https://github.com/laurivosandi/certidude.git synced 2026-04-25 00:25:57 +03:00
Code Issues 29 Projects Releases Packages Wiki Activity

[GH-ISSUE #55] Sign OCSP responses and CRL-s with keypair other than CA-s #46

New issue
Open
opened 2026-02-26 03:33:34 +03:00 by kerem · 0 comments
kerem commented 2026-02-26 03:33:34 +03:00
Owner
Copy link

Originally created by @laurivosandi on GitHub (Nov 9, 2018).
Original GitHub issue: https://github.com/laurivosandi/certidude/issues/55

Since OCSP responses and CRL-s can basically be queried by anyone it would be a good idea to use keypair other than CA-s to sign them, so CA keypair wouldn't be exposed too much (consider timing attacks)

Originally created by @laurivosandi on GitHub (Nov 9, 2018). Original GitHub issue: https://github.com/laurivosandi/certidude/issues/55 Since OCSP responses and CRL-s can basically be queried by anyone it would be a good idea to use keypair other than CA-s to sign them, so CA keypair wouldn't be exposed too much (consider timing attacks)
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
dev
No results found.
Labels
Clear labels   
pull-request

Mirrored from GitHub Pull Request

No labels
pull-request
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/certidude-laurivosandi#46
No description provided.