Skip to main content

A library that provides cryptographic and general-purpose routines for Secure Systems Lab projects at NYU

Project description

securesystemslib

CI Documentation Status

Securesystemslib is a cryptography interface for signing and verifying digital signatures. It is developed for the TUF and in-toto projects: the key and signature containers are compatible with metadata formats from those projects.

Under the hood, Securesystemslib can use various digital signing systems (e.g. cryptography, PIV hardware keys and multiple cloud-based key management systems).

Installation

The default installation supports pure-Python ed25519 signature verification only. To enable other schemes and signature creation, securesystemslib can be installed with extras. See pyproject.toml for available optional dependencies.

# Install with ed25519, RSA, ECDSA sign and verify support
pip install securesystemslib[crypto]
# ...or with HSM (e.g. Yubikey) support
pip install securesystemslib[hsm]

Usage

python-securesystemslib.readthedocs.io

Contact

Contribute

See Instructions for contributors.

Legacy key migration

Use migrate_keys script to convert key pairs generated with legacy keys or interface modules to a consistent standard format, which is compatible with CryptoSigner. The script requires securesystemslib~=0.31.0.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

securesystemslib-1.4.0.tar.gz (934.3 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

securesystemslib-1.4.0-py3-none-any.whl (871.5 kB view details)

Uploaded Python 3

File details

Details for the file securesystemslib-1.4.0.tar.gz.

File metadata

  • Download URL: securesystemslib-1.4.0.tar.gz
  • Upload date:
  • Size: 934.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.13

File hashes

Hashes for securesystemslib-1.4.0.tar.gz
Algorithm Hash digest
SHA256 faea87be0f9c4b4277a5fa1b54bf9bfd807be9a94ab11be6c557dc8b75c43285
MD5 7bcf3e52bfa05b084d27eaa34e97f3bf
BLAKE2b-256 b8119623c61604f9b8955248d43fc6a75658bb687c0d3ab65b032b2e43613bd5

See more details on using hashes here.

Provenance

The following attestation bundles were made for securesystemslib-1.4.0.tar.gz:

Publisher: cd.yml on secure-systems-lab/securesystemslib

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file securesystemslib-1.4.0-py3-none-any.whl.

File metadata

File hashes

Hashes for securesystemslib-1.4.0-py3-none-any.whl
Algorithm Hash digest
SHA256 a0743a3d978cf26e98a70a57e3fbd5a18e0a74c20cabe615f6a55b02ef0272b3
MD5 b9f8bd5c4bfc7bcfb8beb88faf825580
BLAKE2b-256 f9293ff76b9d90ce4482dc8e8d216dc3a6b6d0c934c52f68b0738e2c99ca685f

See more details on using hashes here.

Provenance

The following attestation bundles were made for securesystemslib-1.4.0-py3-none-any.whl:

Publisher: cd.yml on secure-systems-lab/securesystemslib

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page