W3C home > Mailing lists > Public > public-xg-webid@w3.org > January 2012

Source releases

From: Mo McRoberts <mo.mcroberts@bbc.co.uk>
Date: Thu, 5 Jan 2012 22:47:18 +0000
Message-Id: <91A690D4-C6F1-447E-B257-0FEA5508B71E@bbc.co.uk>
To: "public-xg-webid@w3.org XG" <public-xg-webid@w3.org>
Hi all,

Iíve made a couple of projects available which may be of interest to WebID folks. Both are pretty embryonic, andófor the avoidance of doubtóboth are personal projects rather than being anything under the auspices of my employer.

The first is Locksmith, a utility for manipulating keypairs:


It can write more formats than it can read at the moment, and shouldn't be trusted with the private keys of anything important. Locksmith is built upon OpenSSL, and will build on most Unix platforms, as well as Win32.

The second is a library, and associated command-line tool, which will process a certificate in PEM format, look for URIs in the SAN, attempt to fetch the data retrievable using those URIs, and compare any referenced cert:RSAPublicKey instances with the key in the certificate.


The tool prints debugging output where verification fails. Itís built on OpenSSL and Redland, but I've not spent more than about an hour on the code, so consider it massively experimental. The library is intended to (eventually) do more than handle WebID certs, but that aspect of it (and the tool) isn't going to go away.


Mo McRoberts - Technical Lead - The Space,
0141 422 6036 (Internal: 01-26036) - PGP key CEBCF03E,
Project Office: Room 7083, BBC Television Centre, London W12 7RJ
Received on Thursday, 5 January 2012 22:50:12 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 21:06:29 UTC