Code release for Signing Policies

OpenFortress has developed a library and some end-user applications for the signing policy project at OpenFortress.

The ideas of signing policies that originated at OpenFortress have been implemented by Edwin Woudt in the course of an internal working experience at OpenFortress. He has documented the ideas, as well as released code.

The code consists of two main parts:

A library that implements an easy-to-use API for validation of signing policy URNs. The library is implemented in a portable manner and should compile on a variety of systems without much problems.
A number of GUI toolkits to compose and analyse signing policy document formats, including URNs and policy descriptions in the documented XML format.

Code and report are available on our open source outlet under the GPL. Companies that prefer a more liberal license are welcome to contact us for more information.

This project is currently on hold. The logical next step would be to craft it into an internet standard through the IETF. We are willing to invest labour into that, but we are looking for partners for whom this is interesting enough to compensate our time spent on that.