1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253 |
- =pod
- =head1 NAME
- ct - Certificate Transparency
- =head1 SYNOPSIS
- #include <openssl/ct.h>
- =head1 DESCRIPTION
- This library implements Certificate Transparency (CT) verification for TLS
- clients, as defined in RFC 6962. This verification can provide some confidence
- that a certificate has been publicly logged in a set of CT logs.
- By default, these checks are disabled. They can be enabled using
- SSL_CTX_ct_enable() or SSL_ct_enable().
- This library can also be used to parse and examine CT data structures, such as
- Signed Certificate Timestamps (SCTs), or to read a list of CT logs. There are
- functions for:
- - decoding and encoding SCTs in DER and TLS wire format.
- - printing SCTs.
- - verifying the authenticity of SCTs.
- - loading a CT log list from a CONF file.
- =head1 SEE ALSO
- L<d2i_SCT_LIST(3)>,
- L<CTLOG_STORE_new(3)>,
- L<CTLOG_STORE_get0_log_by_id(3)>,
- L<SCT_new(3)>,
- L<SCT_print(3)>,
- L<SCT_validate(3)>,
- L<SCT_validate(3)>,
- L<CT_POLICY_EVAL_CTX_new(3)>,
- L<SSL_CTX_set_ct_validation_callback(3)>
- =head1 HISTORY
- This library was added in OpenSSL 1.1.0.
- =head1 COPYRIGHT
- Copyright 2016-2017 The OpenSSL Project Authors. All Rights Reserved.
- Licensed under the OpenSSL license (the "License"). You may not use
- this file except in compliance with the License. You can obtain a copy
- in the file LICENSE in the source distribution or at
- L<https://www.openssl.org/source/license.html>.
- =cut
|