mbed TLS
According to Wikipedia:
- mbed TLS (previously PolarSSL) is an implementation of the TLS and SSL protocols and the respective cryptographic algorithms and support code required. It is dual-licensed with the Apache License version 2.0 (with GPLv2 also available). Stated on the website is that mbed TLS aims to be "easy to understand, use, integrate and expand".
Usage
The command names start with "mbedtls_", for usage examples see the Knowledge Base.
Generate an RSA private key
$ mbedtls_gen_key rsa_keysize=keysize filename=filename
Generate a certificate signing request
$ mbedtls_cert_req filename=private_key subject_name=subject output_file=filename
Generate a self-signed certificate
$ mbedtls_cert_write selfsign=1 issuer_key=private_key issuer_name=subject not_before=YYYYMMDDHHMMSS not_after=YYYYMMDDHHMMSS is_ca=1 max_pathlen=0 output_file=file
gollark: I generally like simpler things. Also, less attack surface.
gollark: I mean, admittedly being CISC is better in some ways and RISC is worse in others, but I kind of prefer RISC.
gollark: ARM positives:- originally more riscy- more implementations- better power efficiencyARM negatives:- literally has a JS floating point conversion instruction???- horrendous software compatibility; most Android devices run ancient kernels with weird device-specific patches and can never be updated, the bootloaders are weird and inconsistent- now very CISC anyway
gollark: Yes, x86 sort of bad, ARM also horrible in similar ways.
gollark: My laptop spends something like 5 to 10 seconds in UEFI when booting. It *ruins* my boot times. I have to wait 25 seconds, it's ridiculous.
See also
This article is issued from Archlinux. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.