An educational resource to learn and practice Public Key Infrastructure (PKI) concepts using OpenSSL commands and hierarchical trust models.
[Uc3m] Welcome to the Open Secure Sockets Layer
This tool is designed for students or learners aiming to understand the creation and management of a mini PKI, including root and subordinate Certification Authorities and certificate issuance. It is ideal for those studying identity and access management, cryptography, or security training who want hands-on experience with OpenSSL in a controlled environment.
This resource assumes familiarity with OpenSSL and command-line operations. It is intended for educational use and does not provide automated installation steps or scripts. Users should prepare a proper directory structure and configuration files (e.g., openssl.cnf) before executing commands. Best practice includes understanding the hierarchical trust model and securely managing private keys.
ca
Minimal Certification Authority application used to sign certificate requests.
req
Creates and processes certificate requests, and can create self-signed certificates for root CAs.
x509
Displays certificate information, converts certificates between formats, and signs certificates.
verify
Verifies certificates against a trusted CA.