Projects

OpenSSL

The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library. The project ... [More] is managed by a worldwide community of volunteers that use the Internet to communicate, plan, and dev [Less]

Openswan

Openswan is an Open Source implementation of IPsec for the Linux operating system. Is it a code fork of the FreeS/WAN project, started by a few of the developers who were growing frustrated with the politics surrounding the FreeS/WAN project.

pyOpenSSL

Python wrapper around a small subset of the OpenSSL library. Includes: X509 Certificates, SSL Context objects, SSL Connection objects using Python sockets as transport layer.

Crypto++

Crypto++ Library is a free C++ class library of cryptographic schemes. It includes classes for many cryptographic functions including DES, Triple DES, Blowfish, MD? and SHA*.

CyaSSL

CyaSSL is an embedded SSL implementation (up to TLS 1.2 and DTLS) for software developers building security functionality into their applications and devices. It is optimized for resource-constrained environments and can be up to 20x smaller than OpenSSL. CyaSSL is ported to a long list of ... [More] environments, including Win/Linux/Mac, Solaris, ThreadX, VxWorks, FreeBSD, NetBSD, OpenBSD, embedded Linux, WinCE, Haiku, OpenWRT, iOS, Android, Nintendo Wii and Gamecube through DevKitPro, QNX, MontaVista, OpenCL, NonStop, TRON/ITRON/µITRON, µC/OS, FreeRTOS, MQX, and Nucleus. Supported chipsets include ARM, Intel, Motorola and others. CyaSSL cryptography includes assembly optimizations for several environments, including ARM, AVR 32, and Intel (with support for Intel AES-NI). [Less]

PHP Secure Communications Library

MIT-licensed pure-PHP implementations of an arbitrary-precision integer arithmetic library, fully PKCS#1 (v2.1) compliant RSA, DES, 3DES, RC4, Rijndael, AES, SSH-1, SSH-2, SFTP, and X.509.

XySSL

[UPDATE 2008-12-31] As of now, XySSL is no longer maintained by Christophe Devine. The current project manager is Paul Bakker, and the new site can be accessed at: http://polarssl.org/ XySSL is an open-source cryptographic library for embedded systems. It provides standard crypto block: AES ... [More] , SHA-1, X.509, etc. as well as higher lever protocols: SSL v3 and TLS v1. XySSL has been ported on a number of architectures, including ARM, PowerPC, MIPS, and Motorola 68000. Its already small memory footprint can be easily reduced to 50k for a basic SSL client or server, by modifying a single .h configuration file. XySSL is currently used in several open-source (GPL) and closed-source projects, such as Adobe's flash player. [Less]

as3crypto

As3 Crypto is a cryptography library written in Actionscript 3 that provides several common algorithms. This version also introduces a TLS engine (TLS is commonly known as SSL.) Protocols: TLS 1.0 support (partial) Certificates: X.509 Certificate parsing and validation, built-in Root CAs. Public ... [More] Key Encryption: RSA (encrypt/decrypt, sign/verify) Secret Key Encryption: AES, DES, 3DES, BlowFish, XTEA, RC4 Confidentiality Modes: ECB, CBC, CFB, CFB8, OFB, CTR Hashing Algorithms: MD2, MD5, SHA-1, SHA-224, SHA-256 Paddings available: PKCS#5, PKCS#1 type 1 and 2 Other Useful Stuff: HMAC, Random, TLS-PRF, some ASN-1/DER parsing The library is offered under the BSD license, and include several derivative works from Java, C and javascript sources. Check the LICENSE.txt file for a list of contributors. You can look at a demo of the functionality of the library. It's built with Flex 2. It includes a unit test tab, and a benchmark tab. This is what the benchmark tab outputs on my computer (Athlon64 2Ghz): The 'numbers' are in 1000s of bytes per second processed. type 16 bytes 64 bytes 256 bytes 1024 bytes 8192 bytes md2 1.01k 3.64k 15.08k 53.89k 171.76k md5 221.85k 447.32k 739.54k 893.72k 905.82k sha1 82.28k 184.78k 286.76k 336.03k 345.41k sha224 60.84k 125.67k 200.27k 234.28k 247.58k sha256 60.52k 126.30k 199.19k 234.04k 246.01k hmac-md5 48.37k 159.37k 282.87k 295.15k 341.21k hmac-sha1 18.29k 64.82k 165.72k 277.60k 342.52k hmac-sha224 5.75k 24.84k 125.71k 204.35k 256.36k hmac-sha256 15.10k 49.33k 123.71k 206.17k 249.08k rc4 117.24k 381.34k 878.93k 1315.01k 1539.44k xtea-cbc 2.49k 6.48k 12.80k 33.00k 44.48k aes128-cbc 1.61k 4.01k 22.97k 78.55k 205.01k aes192-cbc 1.34k 5.13k 20.91k 69.45k 172.43k aes256-cbc 1.48k 5.63k 18.87k 63.45k 150.39k blowfish-cbc 2.77k 10.81k 42.28k 140.27k 343.05k des-cbc 2.53k 9.73k 35.20k 124.84k 624.88k 3des-cbc 2.50k 9.72k 35.61k 115.21k 253.42kThe library has not been optimized for speed, and those numbers could probably be improved. You can browse the source, download the source or download the SWC binary Check out the release notes for a bit more details. Things that should make it in the next release: better ASN-1 parsing SSL 3.0 support various bugfixes (Socket, BigInteger) [Less]

PolarSSL

PolarSSL is a light-weight open-source cryptographic library for embedded systems. Its designed to be: - Low profile - Self contained - Easy to inspect and audit - Easy to implement - Very modular - Easily expandable It provides standard crypto block: AES, Camellia ... [More] , SHA-1, SHA-2, X.509, etc. as well as higher lever protocols: SSL v3 and TLS v1.0 and v1.1. PolarSSL has been ported on a number of architectures, including ARM, PowerPC, MIPS, and Motorola 68000. Its already small memory footprint can be easily reduced to 50k for a basic SSL client or server, by modifying a single .h configuration file. PolarSSL is currently used in several open-source (GPL) and closed-source projects, such as Adobe's flash player. PolarSSL is the official fork of the former XySSL project [Less]

libnettle

Nettle is a cryptographic library that is designed to fit easily in more or less any context: In crypto toolkits for object-oriented languages (C++, Python, Pike, ...), in applications like LSH or GNUPG, or even in kernel space.