kepler
Another certificate format BCM
, similar to PEM
OR DER
OpenSSL
The file suffix
root.pri
: Private Key
root.pub
: Public Key
root.csr
: Certificate Signing Request
root.crt
: Certificate File
trust.crts
: Trusted Root Certificate List
Usage
First you need to create the root certificate, then the union chain certificate, and finally optionally the banker and replay
ROOT
kepler genkey --out-private-key root.pri --out-public-key root.pub
kepler trust --in-public-key root.pub --out-trust-crts trust.crts
kepler req --in-public-key root.pub --is-ca true
kepler sign --in-key-pri root.pri --in-key-pub root.pub
kepler verify
kepler show
QSC
kepler genkey --out-private-key qsc.pri --out-public-key qsc.pub $VERBOSE
kepler genkey --out-private-key banker.pri --out-public-key banker.pub $VERBOSE
kepler req-qsc --in-public-key qsc.pub --chain-id qos-test --name qstars --banker banker.pub --out-sign-req qsc.csr
kepler sign --in-key-pri root.pri --in-key-pub root.pub --in-sign-req qsc.csr --out-signed-ca qsc.crt
kepler verify --in-signed-ca qsc.crt
kepler show --in-csr-file qsc.csr --in-crt-file qsc.crt
QCP
kepler genkey --out-private-key qcp.pri --out-public-key qcp.pub $VERBOSE
kepler req-qcp --in-public-key qcp.pub --chain-id qos-test --qcp-chain qstars-test --out-sign-req qcp.csr
kepler sign --in-key-pri root.pri --in-key-pub root.pub --in-sign-req qcp.csr --out-signed-ca qcp.crt
kepler verify --in-signed-ca qcp.crt
kepler show --in-csr-file qcp.csr --in-crt-file qcp.crt
REPLAY
kepler genkey --out-private-key relay.pri --out-public-key relay.pub $VERBOSE
kepler req --in-public-key relay.pub --cn QSC_RELAY --out-sign-req relay.csr
kepler sign --in-key-pri root.pri --in-key-pub root.pub --in-sign-req relay.csr --out-signed-ca relay.crt
kepler verify --in-signed-ca relay.crt
kepler show --in-csr-file relay.csr --in-crt-file relay.crt
TODO
- Two-factor
- Add test case
- Test illegal certificates
- Conversion tools, pem and der to bcm
- Http RPC
- Cobra do not use global var
Acknowledgements
Disclaimer
This is work in progress. Mechanisms and values are susceptible to change.