Crate sct

SCT.rs: SCT verification library

This library implements verification of Signed Certificate Timestamps. These are third-party assurances that a particular certificate has been included in a Certificate Transparency log.

See RFC6962 for the details of the formats implemented here.

It is intended to be useful to libraries which perform certificate validation, OCSP libraries, and TLS libraries.

Structs

• Log
  Describes a CT log
• Sct 🔒

Enums

• Error
  How sct.rs reports errors.

Constants

• ECDSA_SHA256 🔒
• ECDSA_SHA384 🔒
• RSA_PKCS1_SHA256 🔒
• RSA_PKCS1_SHA384 🔒
• SCT_TIMESTAMP 🔒
• SCT_V1 🔒
• SCT_X509_ENTRY 🔒

Functions

• decode_u16 🔒
• decode_u64 🔒
• lookup 🔒
• verify_sct
  Verifies that the SCT sct (a SignedCertificateTimestamp encoding) is a correctly signed timestamp for cert (a DER-encoded X.509 end-entity certificate) valid at_time. logs describe the CT logs trusted by the caller to sign such an SCT.
• write_u16 🔒
• write_u24 🔒
• write_u64 🔒