Bug#1062706: ITP: python-pyhanko-certvalidator -- Validates X.509 certificates and paths
Package: wnpp
Severity: wishlist
Owner: Bastian Germann <bage@debian.org>
* Package name : python-pyhanko-certvalidator
* URL : https://github.com/MatthiasValvekens/certvalidator
* License : Expat
Programming Lang: Python
Description : Validates X.509 certificates and paths
A Python library that offers functionality for validating X.509 digital
certificates, which are widely used in security systems such
as TLS/SSL, email encryption, PDF signatures, and more.
The pyhanko-certvalidator library performs the following main tasks:
- Certificate Validation: The library checks the validity of X.509
digital certificates. This includes checking the certificate signature,
expiration date, issuing authority (CA), certificate revocation, and
other important properties.
- Chain of Trust: It helps to build and validate the certificate chain,
that is, the sequence of certificates that links a specific certificate
to a trusted certification authority (root CA).
- CRL (Certificate Revocation Lists) Check: The library checks whether a
certificate has been revoked by querying Certificate Revocation Lists
(CRLs) published by certification authorities.
- Online Certificate Status Protocol (OCSP) Check: In addition to CRL
checking, certvalidator can check the status of a certificate through
the Online Certificate Status Protocol (OCSP) to determine whether the
certificate is still valid.
- Custom Expiration Policy: You can configure and apply custom validity
policies to meet specific certificate validation requirements.
- Extensibility: The library is designed to be extensible and customizable.
This is a fork of the python-certvalidator package.
I need it in order to package pyhanko.
Reply to: