https://github.com/gsa/fpkilint

Federal PKI, X.509 certificate linter
https://github.com/gsa/fpkilint

bridge-pki certificate common-policy conformance federal fpki pki x509

Last synced: 5 months ago
JSON representation

Federal PKI, X.509 certificate linter

• Host: GitHub
• URL: https://github.com/gsa/fpkilint
• Owner: GSA
• Created: 2017-09-05T13:41:52.000Z (about 8 years ago)
• Default Branch: dev
• Last Pushed: 2024-04-18T17:19:05.000Z (over 1 year ago)
• Last Synced: 2024-04-24T06:09:08.616Z (over 1 year ago)
• Topics: bridge-pki, certificate, common-policy, conformance, federal, fpki, pki, x509
• Language: JavaScript
• Homepage:
• Size: 3.59 MB
• Stars: 16
• Watchers: 22
• Forks: 11
• Open Issues: 4
• Metadata Files:
  • Readme: README.md
  • Changelog: changelog.md

Awesome Lists containing this project

README

          
## Certificate Profile Conformance Tool (CPCT)

CPCT is capable of analyzing a certificate’s conformance to a pre-defined certificate profile. User input consists of a certificate and a profile selection. After processing the certificate, CPCT outputs a table similar in formatting to the certificate format tables often included in Certificate Profile documents, but including additional analysis content indicating PASS or specific text describing the non-conformance.

[Example output](https://github.com/GSA/fpkilint/blob/dev/docs/sample.md)

The tool is capable of analyzing certificates for conformance with the FPKI profiles described in the documents available on the [Federal Public Key Infrastructure (FPKI) web page](https://playbooks.idmanagement.gov/fpki/)

#### Running the CPCT Application

To better serve the FPKI community, the CPCT was transitioned from an online application to an application that is hosted and run from the user’s workstation. Users can now access the CPCT application directly from their local hard drive using Docker Desktop. A link to more information on how to access the CPCT application is provided below.

[Step-by-step Instructions on How Run the CPCT Tool](https://playbooks.idmanagement.gov/fpki/tools/cpct/#accessing-the-cpct-application)

#### Common Policy Framework

[Certificate Policy for the Federal PKI Common Policy Framework (FCPF)](https://www.idmanagement.gov/docs/fpki-x509-cert-policy-common.pdf)

[X.509 Certificate and CRL Extensions Profile for the Shared Service Provider (SSP) Program](https://www.idmanagement.gov/docs/fpki-x509-cert-profile-common.pdf)

#### Federal Bridge

[X.509 Certificate and CRL Extensions Profile](https://www.idmanagement.gov/docs/fpki-x509-cert-profiles-fbca.pdf)

[X.509 Certificate and CRL Extensions Profile for Personal Identity Verification Interoperable (PIV-I) Credentials](https://www.idmanagement.gov/docs/fpki-x509-cert-profiles-pivi.pdf)