yaSSL is a C++ based SSL library for embedded and RTOS environments, designed for individuals who prefer to use the C++ language. For a C-based solution, please see CyaSSL. yaSSL supports the industry standards up to TLS 1.2, and also includes an OpenSSL compatibility interface.
Owl (Openwall GNU/*/Linux) is a small security-enhanced Linux distribution for servers. Owl also makes a good base system for customized virtual machine images and embedded systems, and Owl live CDs with remote SSH access are good for recovering or installing systems (whether with Owl or not). A single Owl CD includes the full live system, installable packages, the installer program, as well as full source code and the build environment capable of rebuilding the entire system from source. Owl supports multiple architectures (x86, x86-64, SPARC, and Alpha) and offers some compatibility for packages developed for other Linux distributions. The primary approaches to security are proactive source code review, privilege reduction, privilege separation, careful selection of third-party software, safe defaults, and "hardening" to reduce the likelihood of successful exploitation of security flaws.
相关项目SmillaEnlarger, Clonezilla 再生龍, iReport-Designer for JasperReports, Ecolinux, Hinemos |
The OpenCA OCSP Responder is an RFC 2560 compliant
OCSPD responder. It can be used to verify the
status of a certificate using OCSP clients (such
as Mozilla/Netscape7). The Responder is actually
included in the main OpenCA distribution package.
It is also possible to install the daemon as a
stand-alone application, in which case you will
need a CRL (or access to an LDAP server where the
CRL can be obtained).
Zorp is a proxy firewall suite with its core architecture is built around today's security demands: it uses application level proxies, is modular and component based, uses a script language to describe policy decisions, makes it possible to monitor encrypted traffic, lets you override client actions, and lets you protect your servers with its built in IDS capabilities.
The OpenCA Project is a collaborative effort to develop a robust, full-featured and Open Source out-of-the-box Certification Authority implementing the most used protocols with full-strength cryptography world-wide. OpenCA is based on many Open-Source Projects. Among the supported software is OpenLDAP, OpenSSL, Apache Project, Apache mod_ssl.
相关项目Media Player Classic - Home Cinema, Win32 Disk Imager, PeaZip, x64dbg, プロジェクト・ナニ屋 |
J2SSH is an object-orientated Java implementation of the SSH version 2 protocol. It provides a rich, powerful, and extensible SSH API that enables developers to gain access to SSH servers and to develop entire SSH client/server frameworks. The API library provides a fully-featured SSH2 implementation specifically designed for cross-platform development. Higher level components, representing both the standard SSH client and SSH servers, are provided which implement the protocol specification for user sessions and port forwarding. The specification currently supports public key and password authentication and a full implementation of the SFTP protocol.
The NTRU public-key cryptosystem provides a Java implementation of the NTRUEncrypt and NTRUSign algorithms. Both algorithms are considered safe against quantum computer attacks. A C port of NTRUEncrypt is available, as well.
相关项目EasyPG, Dumpper v.60.3, プロジェクト・ナニ屋, MPC-BE, PeaZip |
GnuPG Made Easy (GPGME) is a library designed to make access to GnuPG easier
for applications. It provides a high-level cryptography API for encryption,
decryption, signing, signature verification, and key management. It currently
uses GnuPG as its backend, but the API is not restricted to this engine. In
fact, support for other backends is planned.
相关项目Properties Editor, DeSmuME, Amateras, SlunkCrypt, SharpDevelop-jp |
ssss is an implementation of Shamir's secret
sharing scheme for UNIX systems.
相关项目x64dbg, Win32 Disk Imager, MPC-BE, Dumpper v.60.3, MeCab |
Fingerprint Verification System is an easy-to-use library that allows programmers to integrate fingerprint technology into their software without specific know-how. It is fast and small, and is great for embedded systems.
CryptoFS is a encryption filesystem for Filesystem in Userspace and Linux Userland Filesystem. Files written to the mount point will be stored encrypted (data and filename) in a directory on a normal filesystem.
相关项目DeSmuME, PeaZip, AKARI, iReport-Designer for JasperReports, プロジェクト・ナニ屋 |
Ubuntu Privacy Remix is a modified live CD based on Ubuntu Linux. UPR is not intended for permanent installation on a hard disk. The goal of Ubuntu Privacy Remix is to provide an isolated working environment where private data can be dealt with safely. The system installed on the computer running UPR remains untouched. It does this by removing support for network devices as well as local hard disks. Ubuntu Privacy Remix includes TrueCrypt and GnuPG for encryption and introduces "extended TrueCrypt volumes".
libssh2 is a C library that implements the SSH2 protocol.
相关项目Dumpper v.60.3, PukiWiki, PeaZip, Win32 Disk Imager, Tera Term |
GNU SASL is an implementation of the Simple Authentication and Security Layer framework and a few common SASL mechanisms. SASL is used by network servers such as IMAP and SMTP to request authentication from clients, and in clients to authenticate against servers. The library includes support for the SASL framework (with authentication functions and application data privacy and integrity functions) and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, NTLM, and KERBEROS_V5 mechanisms.