edcert-restrevoke
| Crates.io | edcert-restrevoke |
| lib.rs | edcert-restrevoke |
| version | 1.0.6 |
| source | src |
| created_at | 2016-03-20 00:19:07.356049 |
| updated_at | 2016-10-22 14:41:19.463333 |
| description | A crate for a REST-based revoke infrastructure for Edcert Certificates. |
| homepage | |
| repository | https://github.com/zombiemuffin/edcert-restrevoke/ |
| max_upload_size | |
| id | 4492 |
| size | 14,591 |
(zombiemuffin)
documentation
https://docs.rombie.de/edcert_restrevoke
README
This is an implementation for a REST-style revoke infrastructure. This contains both the code of the crate "edcert-restrevoke", which is the client implementation (fully rust) and also a sample implementation of a server (found in revoke-server), which is a simple PHP script querying a MySQL database.
Design
The architecture is as follows: You can have multiple "clients", which all connect to one (or more) revoke-server. These can query if a certain public key has been revoked, or not. The server will eg. query a database for public keys known to be revoked and send an appropriate response.
A public key and therefore a certificate will be revoked, if the private key has been disclosed, or the authenticity can't be guaranteed for other reason