KSI Log Signature Command-line Tool
Guardtime's KSI Blockchain is an industrial scale blockchain platform that cryptographically ensures data integrity and proves time of existence. The KSI signatures, based on hash chains, link data to this global calendar blockchain. The checkpoints of the blockchain, published in newspapers and electronic media, enable long term integrity of any digital asset without the need to trust any system.
There are many applications for KSI, a classical example is signing of any type of logs - system logs, financial transactions, call records, etc. For more, see https://guardtime.com
Log signature command-line tool logksi provides the functions for signing recovery; extension of KSI signatures in the log signature file; verification of logs; extraction of record-level signatures; integration of log signature files.
INSTALLATION
Latest Release from Guardtime Repository
In order to install the logksi CentOS/RHEL packages directly from the Guardtime public repository, download and save the repository configuration to the /etc/yum.repos.d/ folder:
cd /etc/yum.repos.d
# In case of RHEL/CentOS 6
sudo curl -O http://download.guardtime.com/ksi/configuration/guardtime.el6.repo
# In case of RHEL/CentOS 7
sudo curl -O http://download.guardtime.com/ksi/configuration/guardtime.el7.repo
yum install logksi
From Source Code
If the latest version is needed or the package is not available for the platform you are using, check out source code from Github and build it using gcc. To build the KSI log signature command-line tool, libksi-devel (KSI C SDK) and libgtrfc3161-devel packages are needed.
libksiis available in Guardtime repository or as source code in GitHub: https://github.com/GuardTime/libksi.libgtrfc3161is available in Guardtime GitHub: https://github.com/guardtime/libgtrfc3161.
Use rebuild.sh script to build KSI log signature command-line tool and see rebuild.sh -h for more details (use flags --get-dep-online -s to get libksi and libgtrfc3161 from GitHub automatically without installing the libraries).
See test/TEST-README.md to learn how to run logksi tests.
USAGE
In order to get trial access to the KSI platform, go to https://guardtime.com/blockchain-developers
The first argument of the KSI log signature command-line tool is the logksi command, which is followed by the KSI service configuration parameters and options.
For example, to add missing KSI signatures to a log signature file:
logksi sign logfile [ksioptions]
See man logksi for detailed usage instructions.
LICENSE
See LICENSE file.
CONTRIBUTING
See CONTRIBUTING.md file.
DEPENDENCIES
Library Version License type Source
libksi >=3.17 Apache 2.0 https://github.com/GuardTime/libksi
libgtrfc3161 >=1.0 Apache 2.0 https://github.com/GuardTime/libgtrfc3161
OpenSSL >=0.9.8 BSD https://github.com/openssl/
Curl >=7.37.0 MIT https://github.com/curl/curl.git
-
Note 1: OpenSSL is
libksidependency. This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/). This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). This product includes software written by Tim Hudson (tjh@cryptsoft.com). -
Note 2:
Curlislibksidependency.
COMPATIBILITY
OS/Platform Compatibility
RHEL 6 and 7, x86_64 architecture Fully compatible and tested.
CentOS 6 and 7, x86_64 architecture Fully Compatible and tested.
Debian Compatible but not tested on regular basis.
OS X Not supported.
Windows Not supported.