#cryptography #security

app signify

Create cryptographic signatures for files and verify them

5 releases (3 breaking)

Uses old Rust 2015

0.4.1 Jan 12, 2018
0.4.0 Dec 12, 2017
0.3.0 Sep 27, 2016
0.2.0 Jun 26, 2016
0.1.0 Jun 14, 2016

#235 in #security

23 downloads per month

MIT license

18KB
390 lines

Signify - Ed25519 signature tool

crates.io Build Status

Create cryptographic signatures for files and verify them. This is based on signify, the OpenBSD tool to sign and verify signatures on files. It is based on the Ed25519 public-key signature system by Bernstein et al.

signify-rs verifies signatures generated by BSD signify and signs data in a format that BSD signify can verify.
You can read more about the ideas and concepts behind signify in Securing OpenBSD From Us To You.

Installation

cargo install signify

Usage

Create a key pair:

signify -G -p pubkey -s seckey

Sign a file using the secret key:

signify -S -s seckey -m README.md

Verify the signature:

signify -V -p pubkey -m README.md

Testing

Currently, there are no unit tests. 😞
But we ensure that a full cycle of generating a keypair, then signing & verifying works. To do so:

./tests/full-cycle.sh

For correctness, we compare interoperability with the OpenBSD signify:

./tests/compare.sh

Limitations

  • No embedded signatures
  • No password-protection for secret keys

Both things will be implemented eventually. I also accept PRs.

License

MIT. See LICENSE.

Dependencies

~13MB
~309K SLoC