Introduction

Certificate, Key, and Trust Services Programmer’s Guide contains an overview of Certificate, Key, and Trust services, discusses the functions and data structures that are most commonly used by developers, and provides examples of how to use Certificate, Key, and Trust Services in your own applications.

Certificate, Key, and Trust Services provides a C API for verifying certificates, evaluating trust, and generating asymmetric keys. You can use these services in your application to:

In addition, the Certificate, Key, and Trust Services API includes a number of functions that make it easier to move between the OS X security APIs and CSSM.

Certificate, Key, and Trust Services can be used in Carbon, Cocoa, and UNIX applications running in OS X.

This document concentrates on the use of Certificate, Key, and Trust Services to evaluate trust of a certificate.

In order to read this document, you should be familiar with general concepts of computer security and with the use of the keychain to store certificates and keys. See “See Also” for suggestions for further reading.

Organization of This Document

This document contains the following chapters:

See Also

For more information on the APIs and concepts covered in this book, use the following resources: