Service Identity Verification for pyOpenSSL & cryptography

Release v21.1.0 (What’s new?).

Use this package if:

  • you use pyOpenSSL and don’t want to be MITMed or

  • if you want to verify that a PyCA cryptography certificate is valid for a certain hostname or IP address.

service-identity aspires to give you all the tools you need for verifying whether a certificate is valid for the intended purposes.

In the simplest case, this means host name verification. However, service-identity implements RFC 6125 fully and plans to add other relevant RFCs too.

service-identity’s documentation lives at Read the Docs, the code on GitHub.

Indices and tables