Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

"Only" missing how to safely distribute, trust and revoke/renew the root cert - and how to enforce/distribute revocation lists for certs...


"only" out of scope.

But based on the comments here, I guess you could use the smallstep CA with Nitrokey HSM if that's your jam...


Well, the title says: "Running one's own root Certificate Authority in 2023".

"Running a CA" is pretty much dominated by managing certificates? Including distribution and revocation - not just issuing?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: