Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards.
For detailed information on standards supported, see Overview of NSS. For a list of frequently asked questions, see the FAQ.
NSS is available under the Mozilla Public License. For information on downloading NSS releases as tar files, see Download PKI Source.
If you're a developer and would like to contribute to NSS, you might want to read the documents highlevel overview of internal details of NSS and getting started with NSS.
Documentation
-
Overview of NSS
-
Provides a brief summary of NSS and its capabilities.
-
NSS FAQ
-
Answers basic questions about NSS.
-
Introduction to Public-Key Cryptography
-
Explains the basic concepts of public-key cryptography that underlie NSS.
-
Introduction to SSL
-
Introduces the SSL protocol, including information about cryptographic ciphers supported by SSL and the steps involved in the SSL handshake.
Getting Started
-
NSS Releases
-
This page contains information about the current and past releases of NSS.
-
Get the source code and Build it
-
Instructions on how to build NSS on the different supported platforms.
-
Get Mozilla Source Code Using Mercurial
-
Information about with working with Mercurial.
-
Get Mozilla Source Code Using CVS (deprecated)
-
Old deprecated CVS documentation.
NSS APIs
-
Introduction to Network Security Services
-
Provides an overview of the NSS libraries and what you need to know to use them.
-
NSS Public Functions
-
Summarizes the APIs exported by the NSS shared libraries.
-
NSS Reference
-
API used to invoke SSL operations.
-
NSS API Guidelines
-
Explains how the libraries and code are organized, and guidelines for developing code (naming conventions, error handling, thread safety, etc.)
-
NSS Technical Notes
-
Links to NSS technical notes, which provide latest information about new NSS features and supplementary documentation for advanced topics in programming with NSS.
-
Build Instructions for NSS
-
Describe how to check out and build NSS releases.
-
NSS Developer Tutorial
-
How to make changes in NSS. Coding style, maintaining ABI compatibility.
-
NSS Tools
-
Tools for developing, debugging, and managing applications that use NSS.
-
Sample Code
-
Demonstrates how NSS can be used for cryptographic operations, certificate handling, SSL, etc.
-
NSS 3.2 Test Suite
-
Archived version. Describes how to run the standard NSS tests.
-
NSS Performance Reports
-
Archived version. Links to performance reports for NSS 3.2 and later releases.
-
Encryption Technologies Available in NSS 3.11
-
Archived version. Lists the cryptographic algorithms used by NSS 3.11.
-
NSS 3.1 Loadable Root Certificates
-
Archived version. Describes the scheme for loading root CA certificates.
-
cert7.db
-
Archived version. General format of the cert7.db database.
- Documentation on PKCS #11 modules
- Implementing PKCS #11 for NSS
- The strings NSS uses to load PKCS #11 modules
- PKCS #11 FAQ
- Using the JAR Installation Manager to Install a PKCS #11 Cryptographic Module
- PKCS #11 Conformance Testing - Archived version
CA certificates pre-loaded into NSS
- Mozilla CA certificate policy
- List of pre-loaded CA certificates
- Consumers of this list must consider the trust bit setting for each included root certificate. More Information, Extracting roots and their trust bits
NSS is built on top of Netscape Portable Runtime (NSPR)
-
Netscape Portable Runtime
-
NSPR project page.
-
NSPR Reference
-
NSPR API documentation.
- Using the window.crypto object from JavaScript
- Delegation of HTTP download for OCSP
- TLS Cipher Suite Discovery
- NSS Certificate Download Specification
- FIPS Mode - an explanation
- Format of key log files
- View all NSS-related articles on MDN
Testing
- Testing third-party PKCS #11 modules/tokens with NSS
Planning
Information on NSS planning can be found at wiki.mozilla.org, including:
- FIPS Validation
- NSS Roadmap page
- NSS Improvement Project
|
- View Mozilla Security forums...
Mailing list
- Twitter
- Stack Overflow
- Google Group
- RSS feed
- View Mozilla Cryptography forums...
Mailing list
- Twitter
- Stack Overflow
- Google Group
- RSS feed
|
Document Tags and Contributors
Contributors to this page:
xfq,
kwilson,
m_t,
fabiob,
Sheppy,
Relyea,
rsleevi,
Wtchang,
ethertank,
kaie,
emaldona@redhat.com,
stefw,
christophe.ravel.bugs@sun.com,
agl,
Glenb,
pamelalea,
Nelson%bolyard.com,
Silviubogan,
Mgjbot,
Madbrain,
Kohei,
Dstutz,
Nickolay