Группа :: Безопасность/Сети
Пакет: openpace
навигация по пакетам
Главная Изменения Спек Патчи Sources Загрузить Gear Bugs and FR Repocop
Текущая версия: 1.1.3-alt1
Время сборки: 8 июня 2023, 09:26 ( 45.2 недели назад )
Размер архива: 1245.28 Kb
Домашняя страница: https://github.com/frankmorgner/openpace
Лицензия: GPL-3.0
О пакете: Cryptographic library for EAC version 2
Описание:
Список всех майнтейнеров, принимавших участие
в данной и/или предыдущих сборках пакета: Список rpm-пакетов, предоставляемый данным srpm-пакетом:
ACL:
Время сборки: 8 июня 2023, 09:26 ( 45.2 недели назад )
Размер архива: 1245.28 Kb
Домашняя страница: https://github.com/frankmorgner/openpace
Лицензия: GPL-3.0
О пакете: Cryptographic library for EAC version 2
Описание:
OpenPACE implements Extended Access Control (EAC) version 2 as specified in BSI
TR-03110. OpenPACE comprises support for the following protocols:
* Password Authenticated Connection Establishment (PACE) Establish a secure
channel with a strong key between two parties that only share a weak secret.
Terminal Authentication (TA) Verify/prove the terminal's certificate (or rather
certificate chain) and secret key.
* Chip Authentication (CA) Establish a secure channel based on the chip's
static key pair proving its authenticy.
* Furthermore, OpenPACE also supports Card Verifiable Certificates (CV
Certificates) as well as easy to use wrappers for using the established secure
channels.
The handlers for looking up trust anchors during TA and CA (i.e. the CVCA and
the CSCA certificates) can be customized. By default, the appropriate
certificates will be looked up in the file system.
OpenPACE supports all variants of PACE (DH/ECDH, GM/IM), TA
(RSASSA-PKCS1-v1_5/RSASSA-PSS/ECDSA), CA (DH/ECDH) and all standardized domain
parameters (GFP/ECP).
Текущий майнтейнер: Andrey Cherepanov TR-03110. OpenPACE comprises support for the following protocols:
* Password Authenticated Connection Establishment (PACE) Establish a secure
channel with a strong key between two parties that only share a weak secret.
Terminal Authentication (TA) Verify/prove the terminal's certificate (or rather
certificate chain) and secret key.
* Chip Authentication (CA) Establish a secure channel based on the chip's
static key pair proving its authenticy.
* Furthermore, OpenPACE also supports Card Verifiable Certificates (CV
Certificates) as well as easy to use wrappers for using the established secure
channels.
The handlers for looking up trust anchors during TA and CA (i.e. the CVCA and
the CSCA certificates) can be customized. By default, the appropriate
certificates will be looked up in the file system.
OpenPACE supports all variants of PACE (DH/ECDH, GM/IM), TA
(RSASSA-PKCS1-v1_5/RSASSA-PSS/ECDSA), CA (DH/ECDH) and all standardized domain
parameters (GFP/ECP).
Список всех майнтейнеров, принимавших участие
в данной и/или предыдущих сборках пакета: Список rpm-пакетов, предоставляемый данным srpm-пакетом:
- libeac
- libeac-debuginfo
- libeac-devel
- openpace
- openpace-debuginfo
- openpace-docs