trust_stores_observatory
trust_stores_observatory copied to clipboard
Continuously monitor and record the content of the major platforms' root certificate stores.
We should automatically add all certificates at https://ccadb-public.secure.force.com/microsoft/IncludedCACertificateReportForMSFT to this repo, before refreshing the stores, so that there are no missing certificates.
https://helpx.adobe.com/acrobat/kb/approved-trust-list1.html Not sure where the data can be fetched from. It should include the EU trust list as well (#16) but is non-normative
https://ec.europa.eu/digital-single-market/en/eu-trusted-lists-trust-service-providers The data is in signed XML: https://ec.europa.eu/information_society/policy/esignature/trusted-list/tl-mp.xml and it points to some national signed trust lists via `TSLLocation` XML elements, making it very hard to observe changes. A public...
https://www.icao.int/Security/FAL/PKD Data download with rather prohibitive terms: https://pkddownloadsg.icao.int/
(JMRTD: An Open Source Java Implementation of Machine Readable Travel Documents) https://jmrtd.org/certificates.shtml It is probably a subset of #19
Bumps [black](https://github.com/psf/black) from 22.6.0 to 24.3.0. Release notes Sourced from black's releases. 24.3.0 Highlights This release is a milestone: it fixes Black's first CVE security vulnerability. If you run Black...
Google Chrome used to use the OS's root store. Starting with Chrome 105, Chrome is using it's own root store maintained by google in the chromium project. Certs can be...