Expand description
TLS configuration with NIAP CA PP and FIPS compliance.
Enforces:
- TLS 1.2+ only (no SSLv3, TLS 1.0, TLS 1.1) per NIAP CA PP
- FIPS-approved cipher suites only per NIAP CA PP FCS_TLSC_EXT.1
- mTLS client certificate verification for EST enrollment
- PKCS#11 URI detection for HSM-backed private keys
Structs§
- TlsConfig
- Serializable TLS configuration from the config file.
- TlsConfig
Builder - Builder for constructing a
rustls::ServerConfig.
Enums§
- TlsError
- Errors during TLS configuration.