5 ct - Certificate Transparency
9 #include <openssl/ct.h>
13 This library implements Certificate Transparency (CT) verification for TLS
14 clients, as defined in RFC 6962. This verification can provide some confidence
15 that a certificate has been publicly logged in a set of CT logs.
17 By default, these checks are disabled. They can be enabled using
18 B<SSL_CTX_ct_enable>() or B<SSL_ct_enable>().
20 This library can also be used to parse and examine CT data structures, such as
21 Signed Certificate Timestamps (SCTs), or to read a list of CT logs. There are
23 - decoding and encoding SCTs in DER and TLS wire format.
25 - verifying the authenticity of SCTs.
26 - loading a CT log list from a CONF file.
31 L<CTLOG_STORE_new(3)>,
32 L<CTLOG_STORE_get0_log_by_id(3),
37 L<CT_POLICY_EVAL_CTX(3)>,
38 L<SSL_CTX_set_ct_validation_callback(3)>