Feature: Add support for intermidiate CAs, CA rotation and CRL (Certificate Revocation List) generation - Githubissues

absmach / certs

Simple and fast certificates management service for basic certificate management actions

2 stars 2 forks source link

Feature: Add support for intermidiate CAs, CA rotation and CRL (Certificate Revocation List) generation #5

Closed nyagamunene closed 2 months ago

nyagamunene commented 3 months ago

Is your feature request related to a problem? Please describe.

[x] Currently we are issuing certs directly with our root CA but for security reason we need intermediate CA to issue the entity certs and protect compromise of our root CA.
[x] Also we need CA rotation to replace the existing root CA with a new one ensuring security by limiting the lifetime of any single CA.
[x] The CRL is useful for checking a certificate that has been revoked and are no longer trusted.

Describe the feature you are requesting, as well as the possible use case(s) for it.

Issuing of entity certs.
Revoking of certs.
Generating list of revoked certs.

Indicate the importance of this feature to you.

Must-have

Anything else?

No response