- Ability to work in both Node and browser environment
- Pure ES6 code and examples
- All you need to deal with Certificate Transparency logs V1 (RFC6962)
- All you need to deal with Certificate Transparency logs V2 (RFC6962-bis)
- Merkle Tree realization having all functions like making/verifiying inclusion proof, making/verifiying consistency and many more
- Signed Certificate Timestamp verification
- Signed Tree Head verification
- Calculation of tree head hash on any previous tree size (algorithm based on inclusion proof)
- Verification of internal CT extension in X.509 certificate (pre-certificate verification)
- Full-featured example from RFC6962 on a real data from all known CT logs
- Full-featured examples showing how to build real monitor/auditor for any Certificate Transparency log
NOTE: CT.js (CTjs) has ability to run in both browser and Node.js environment. But since moder browsers deny access to a "side resources" all the existing examples run in Node.js environment. It is pretty easy to re-configure them for browsers (just change "crypto engine" for PKI.js).
- Full-featured example directly from RFC6962
- In this example you would be able to check all the Merkle Tree functions directly on a real data from all known Certificate Transparency logs.
Example of full-featured auditor/monitor service for Certificate Transparency logs
- In this example I made a real full-featured auditor/monitor service, having all possible verification functionality, together with a kind of "phishing checking".