<feed xmlns='http://www.w3.org/2005/Atom'>
<title>sec-certs.git/src/sec_certs/utils, branch 0.3.2</title>
<subtitle>Tool for analysis of security certificates (Common Criteria, FIPS 140...).</subtitle>
<id>https://git.neuromancer.sk/sec-certs.git/atom/src/sec_certs/utils?h=0.3.2</id>
<link rel='self' href='https://git.neuromancer.sk/sec-certs.git/atom/src/sec_certs/utils?h=0.3.2'/>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/'/>
<updated>2025-02-01T21:57:40Z</updated>
<entry>
<title>process PP maintenances</title>
<updated>2025-02-01T21:57:40Z</updated>
<author>
<name>Adam Janovsky</name>
</author>
<published>2025-01-27T15:31:36Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=92f7e3e2c7bc6ed32bef2fe02a59ef4c6225c6c7'/>
<id>urn:sha1:92f7e3e2c7bc6ed32bef2fe02a59ef4c6225c6c7</id>
<content type='text'>
</content>
</entry>
<entry>
<title>implement PP processing</title>
<updated>2025-02-01T21:57:08Z</updated>
<author>
<name>Adam Janovsky</name>
</author>
<published>2025-01-25T17:20:49Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=2500d9536beb658853cff3d0baad30b8f414a817'/>
<id>urn:sha1:2500d9536beb658853cff3d0baad30b8f414a817</id>
<content type='text'>
</content>
</entry>
<entry>
<title>refactor auxiliary dataset handling, heuristics computation</title>
<updated>2025-02-01T21:56:46Z</updated>
<author>
<name>Adam Janovsky</name>
</author>
<published>2025-01-22T09:48:00Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=3c34bbe70f36eb2c5504be7ec81cfcb3fdf543c6'/>
<id>urn:sha1:3c34bbe70f36eb2c5504be7ec81cfcb3fdf543c6</id>
<content type='text'>
</content>
</entry>
<entry>
<title>update deps, linter versions</title>
<updated>2024-11-19T11:35:00Z</updated>
<author>
<name>Adam Janovsky</name>
</author>
<published>2024-11-19T11:35:00Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=83b10db0d714669ae74f997d78a8d026e93105e6'/>
<id>urn:sha1:83b10db0d714669ae74f997d78a8d026e93105e6</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Improve CC scheme extraction and matching.</title>
<updated>2024-11-07T23:17:39Z</updated>
<author>
<name>J08nY</name>
</author>
<published>2024-11-07T23:17:39Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=17ae4dbfe97d8f7ef41ea272325d85de9f731af1'/>
<id>urn:sha1:17ae4dbfe97d8f7ef41ea272325d85de9f731af1</id>
<content type='text'>
This significantly improves the CC scheme extraction by:

 - Fixing the extraction of several schemes that were mixing
   certified and archived entries by accident.
 - Improving the extraction of cert_ids from scheme sites.
 - Improving the matching heuristic to consider more attributes
   that are usually present in the site data.

Also adds an evaluation notebook to see how this performs.
</content>
</entry>
<entry>
<title>Fix NVD api download.</title>
<updated>2024-09-19T12:54:14Z</updated>
<author>
<name>J08nY</name>
</author>
<published>2024-09-19T12:54:14Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=c6000c334229405f1d5c8ba4a964308008ce1300'/>
<id>urn:sha1:c6000c334229405f1d5c8ba4a964308008ce1300</id>
<content type='text'>
They changed the parameter names:
https://nvd.nist.gov/developers/vulnerabilities#:~:text=lastModStartDate%20%26%20lastModEndDate
</content>
</entry>
<entry>
<title>Move to new dgst algorithm for CC.</title>
<updated>2024-07-19T14:00:03Z</updated>
<author>
<name>J08nY</name>
</author>
<published>2024-07-19T14:00:03Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=e42f5ca573a971af80c332453341e7ff84c6b09b'/>
<id>urn:sha1:e42f5ca573a971af80c332453341e7ff84c6b09b</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Fix typing issue.</title>
<updated>2024-06-20T12:45:42Z</updated>
<author>
<name>J08nY</name>
</author>
<published>2024-06-20T12:45:42Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=6eb3aa156815db688142f9ba86a301a7547bfe4a'/>
<id>urn:sha1:6eb3aa156815db688142f9ba86a301a7547bfe4a</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Fix NVD CPE Match API usage.</title>
<updated>2024-06-10T21:54:30Z</updated>
<author>
<name>J08nY</name>
</author>
<published>2024-06-10T21:47:30Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=77bf4d941260c871f4da37ed2f8cc1a04ea1a3b9'/>
<id>urn:sha1:77bf4d941260c871f4da37ed2f8cc1a04ea1a3b9</id>
<content type='text'>
NIST recently lowered the limit on resultsPerPage for the
CPE Match API, hence we have to adapt:

https://nvd.nist.gov/general/news/cpematch-resultsperpage-update
</content>
</entry>
<entry>
<title>Allow for download through our caching proxy at sec-certs.org</title>
<updated>2024-06-10T11:19:23Z</updated>
<author>
<name>J08nY</name>
</author>
<published>2024-06-10T11:19:23Z</published>
<link rel='alternate' type='text/html' href='https://git.neuromancer.sk/sec-certs.git/commit/?id=2e442328a33319cf27820fc3d1541795147f4ec5'/>
<id>urn:sha1:2e442328a33319cf27820fc3d1541795147f4ec5</id>
<content type='text'>
Recently, CCportal changed infra and enabled a rate limit. Our
usual download procedure hits this rate limit and is able to download
only a small subset of the artifacts.

Thus a proxy is running at sec-certs.org that caches the artifacts.
This commit makes it possible to use the proxy in the tool.

By querying the proxy on the background, the server makes sure that
the rate limit is not hit and the artifacts are available.
</content>
</entry>
</feed>
