We intend to create an executable python script which automates key generation, csr creation, and certificate issuance using the Yubico Yubikey NEO. The certificates which get issued will be self-signed SMIME and Client Authentication certificates. We intend to build functionality which will eventually allow the CSR to get submitted to a CA using SCEP or some other similar mechanism.
Python, PIV compatible Yubikey NEO
yubi-piv-tool
yubikey-neo-manager
9a: PIV Authentication
9c: Digital Signature (PIN always checked)
9d: Key Management
9e: Card Authentication (PIN never checked)