Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/thibmeu/rfc9500
Public Key Cryptography Test Keys from RFC 9500
https://github.com/thibmeu/rfc9500
cryptography rfc test
Last synced: 2 days ago
JSON representation
Public Key Cryptography Test Keys from RFC 9500
- Host: GitHub
- URL: https://github.com/thibmeu/rfc9500
- Owner: thibmeu
- License: mit
- Created: 2024-01-26T20:30:02.000Z (10 months ago)
- Default Branch: main
- Last Pushed: 2024-01-26T21:02:07.000Z (10 months ago)
- Last Synced: 2024-01-27T21:35:31.180Z (10 months ago)
- Topics: cryptography, rfc, test
- Language: Shell
- Homepage:
- Size: 20.5 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Public Key Cryptography Test Keys
[RFC 9500](https://www.rfc-editor.org/rfc/rfc9500.html) proposes a set of standard test keys. This repository presents the private and public keys, in different format to ease consumptions.
## Table of Content
* [RSA Keys](#rsa-keys)
* [DLP Keys](#dlp-keys)
* [ECDLP Keys](#ecdlp-keys)
* [Security Considerations](#security-considerations)
* [FAQ](#faq)
* [Development](#development)
## RSA Keys
|testRSA1024|||
|--|--|--|
|private|[pem](./pem/testRSA1024.pem)||
|public|[pem](./pem/testRSA1024.pub.pem)||
|testRSA2048|||
|--|--|--|
|private|[pem](./pem/testRSA2048.pem)||
|public|[pem](./pem/testRSA2048.pub.pem)||
|testRSA4096|||
|--|--|--|
|private|[pem](./pem/testRSA4096.pem)||
|public|[pem](./pem/testRSA4096.pub.pem)||
## DLP Keys
|testDLP1024|||
|--|--|--|
|private|[pem](./pem/testDLP1024.pem)|[hex](./hex/testDLP1024.hex)|
|public|[pem](./pem/testDLP1024.pub.pem)|[hex](./hex/testDLP1024.pub.hex)|
|testDLP2048|||
|--|--|--|
|private|[pem](./pem/testDLP2048.pem)|[hex](./hex/testDLP2048.hex)|
|public|[pem](./pem/testDLP2048.pub.pem)|[hex](./hex/testDLP2048.pub.hex)|
|testDLP4096|||
|--|--|--|
|private|[pem](./pem/testDLP4096.pem)|[hex](./hex/testDLP4096.hex)|
|public|[pem](./pem/testDLP4096.pub.pem)|[hex](./hex/testDLP4096.pub.hex)|
## ECDLP Keys
|testECCP256|||
|--|--|--|
|private|[pem](./pem/testECCP256.pem)|[hex](./hex/testECCP256.hex)|
|public|[pem](./pem/testECCP256.pub.pem)|[hex](./hex/testECCP256.pub.hex)|
|testECCP384|||
|--|--|--|
|private|[pem](./pem/testECCP384.pem)|[hex](./hex/testECCP384.hex)|
|public|[pem](./pem/testECCP384.pub.pem)|[hex](./hex/testECCP384.pub.hex)|
|testECCP521|||
|--|--|--|
|private|[pem](./pem/testECCP521.pem)|[hex](./hex/testECCP521.hex)|
|public|[pem](./pem/testECCP521.pub.pem)|[hex](./hex/testECCP521.pub.hex)|
## Security considerations
This software has not been audited. Please use at your sole discretion. With this in mind, dee security relies on the following:
* [RFC 9500](https://www.rfc-editor.org/rfc/rfc9500.html) holds the source cryptographic material, and more.
## FAQ
### Should I use this in production
**NO**. At the same time, this repository might allow you to detect such usages.
### How do I get a test certificate
For local development, have a look at [mkcert](https://github.com/FiloSottile/mkcert).
If you want to generate a fresh certificate with one of the RFC provided test key, use the following
```bash
# Select a PEM formated key in this repository
KEY=./pem/testRSA1024.pem
# Generate a Certificate Signing Request
openssl req -new -key "${KEY}" -out example_test.csr
# Generate the associated certificate
openssl x509 -req -in example_test.csr -signkey ./pem/testRSA1024.pem -out example_test.crt
```
## Development
### Requirements
* [bash](https://www.gnu.org/software/bash/)
* [OpenSSL](https://www.openssl.org/)
### Run
All development happens in [generate.sh](./scripts/generate.sh). The initial private key in PEM format have been taken from RFC 9500, along with their recommended name. The script has then been run to generate public keys, and hex encoded keys.
```bash
./scripts/generate.sh
```