Threat modelling & update email

[Fraser Scott]

Hello all,

Apologies for being a bit quiet recently. Had to catch up on a few things after the Release 1 push. Anyway, in the mean time I've updated and uploaded the threat modelling tool that should hopefully help with pki.io

Repo is: https://github.com/pki-io/threatspec

Also, was thinking of sending an update email to the 200 or so mailing list peeps. Something like the text below. Any thoughts or feedback?

Subject: A pki.io update - Plans for Release 2

Hello!

It has been just over a month now since the first release of https://pki.io was announced and the feedback has been amazing.

We have exciting things lined up for Release 2, which focuses on remote certificate management over SSH. So far the features to be added include:

* Remote key and cert generation over SSH (push architecture)

* CA and certificate importing

* Using Root entities (private keys stored offline)

* Supporting CA chains (including imported)

* SAN support

We'd love to hear your thoughts, so join in the discussion on the mailing list: ....

As part of our ongoing effort to do security properly and be a model open source project, we have created a tool for building code-driven threat models. The tool and a tutorial are available here: ...

Finally, this is a community project, so we're always looking for people to help out. If you're a developer, security/crypto guru, tester or documentation fanatic, let us know by emailing he...@pki.io

All the best,

The pki.io team

https://pki.io

P.s. You may have noticed that the site is now on HTTPS. And yes, we saw the irony ;)