Projects

pyOpenSSL

Python wrapper around a small subset of the OpenSSL library. Includes: X509 Certificates, SSL Context objects, SSL Connection objects using Python sockets as transport layer.

M2Crypto

M2Crypto is the most complete Python wrapper for OpenSSL featuring RSA, DSA, DH, HMACs, message digests, symmetric ciphers (including AES); SSL functionality to implement clients and servers; HTTPS extensions to Python's httplib, urllib, and xmlrpclib; unforgeable HMAC'ing AuthCookies for ... [More] web session management; FTP/TLS client and server; S/MIME; ZServerSSL: A HTTPS server for Zope and ZSmime: An S/MIME messenger for Zope. [Less]

ejbca

EJBCA is a fully functional Certificate Authority. Based on J2EE technology it constitutes a robust, high performance and component based CA. Both flexible and platform independent, EJBCA can be used standalone or integrated in any J2EE application. EJBCA is an enterprise class PKI, meaning that ... [More] you can use EJBCA to build a complete PKI infrastructure for your organisation. If you only want to issue a few single certificates for testing, there are probably options that will get you started quicker, but if you want a serious PKI we recommend EJBCA. [Less]

Botan

A crypto library written in C++.

CyaSSL

CyaSSL is an embedded SSL implementation (up to TLS 1.2 and DTLS) for software developers building security functionality into their applications and devices. It is optimized for resource-constrained environments and can be up to 20x smaller than OpenSSL. CyaSSL is ported to a long list of ... [More] environments, including Win/Linux/Mac, Solaris, ThreadX, VxWorks, FreeBSD, NetBSD, OpenBSD, embedded Linux, WinCE, Haiku, OpenWRT, iOS, Android, Nintendo Wii and Gamecube through DevKitPro, QNX, MontaVista, OpenCL, NonStop, TRON/ITRON/µITRON, µC/OS, FreeRTOS, MQX, and Nucleus. Supported chipsets include ARM, Intel, Motorola and others. CyaSSL cryptography includes assembly optimizations for several environments, including ARM, AVR 32, and Intel (with support for Intel AES-NI). [Less]

XySSL

[UPDATE 2008-12-31] As of now, XySSL is no longer maintained by Christophe Devine. The current project manager is Paul Bakker, and the new site can be accessed at: http://polarssl.org/ XySSL is an open-source cryptographic library for embedded systems. It provides standard crypto block: AES ... [More] , SHA-1, X.509, etc. as well as higher lever protocols: SSL v3 and TLS v1. XySSL has been ported on a number of architectures, including ARM, PowerPC, MIPS, and Motorola 68000. Its already small memory footprint can be easily reduced to 50k for a basic SSL client or server, by modifying a single .h configuration file. XySSL is currently used in several open-source (GPL) and closed-source projects, such as Adobe's flash player. [Less]

python-foafcert

Python functions for generate a X509 client certificate for XMPP or HTTP FOAF+SSL authentication (including WebId and XMPP id at SubjectAltName)

as3crypto

As3 Crypto is a cryptography library written in Actionscript 3 that provides several common algorithms. This version also introduces a TLS engine (TLS is commonly known as SSL.) Protocols: TLS 1.0 support (partial) Certificates: X.509 Certificate parsing and validation, built-in Root CAs. Public ... [More] Key Encryption: RSA (encrypt/decrypt, sign/verify) Secret Key Encryption: AES, DES, 3DES, BlowFish, XTEA, RC4 Confidentiality Modes: ECB, CBC, CFB, CFB8, OFB, CTR Hashing Algorithms: MD2, MD5, SHA-1, SHA-224, SHA-256 Paddings available: PKCS#5, PKCS#1 type 1 and 2 Other Useful Stuff: HMAC, Random, TLS-PRF, some ASN-1/DER parsing The library is offered under the BSD license, and include several derivative works from Java, C and javascript sources. Check the LICENSE.txt file for a list of contributors. You can look at a demo of the functionality of the library. It's built with Flex 2. It includes a unit test tab, and a benchmark tab. This is what the benchmark tab outputs on my computer (Athlon64 2Ghz): The 'numbers' are in 1000s of bytes per second processed. type 16 bytes 64 bytes 256 bytes 1024 bytes 8192 bytes md2 1.01k 3.64k 15.08k 53.89k 171.76k md5 221.85k 447.32k 739.54k 893.72k 905.82k sha1 82.28k 184.78k 286.76k 336.03k 345.41k sha224 60.84k 125.67k 200.27k 234.28k 247.58k sha256 60.52k 126.30k 199.19k 234.04k 246.01k hmac-md5 48.37k 159.37k 282.87k 295.15k 341.21k hmac-sha1 18.29k 64.82k 165.72k 277.60k 342.52k hmac-sha224 5.75k 24.84k 125.71k 204.35k 256.36k hmac-sha256 15.10k 49.33k 123.71k 206.17k 249.08k rc4 117.24k 381.34k 878.93k 1315.01k 1539.44k xtea-cbc 2.49k 6.48k 12.80k 33.00k 44.48k aes128-cbc 1.61k 4.01k 22.97k 78.55k 205.01k aes192-cbc 1.34k 5.13k 20.91k 69.45k 172.43k aes256-cbc 1.48k 5.63k 18.87k 63.45k 150.39k blowfish-cbc 2.77k 10.81k 42.28k 140.27k 343.05k des-cbc 2.53k 9.73k 35.20k 124.84k 624.88k 3des-cbc 2.50k 9.72k 35.61k 115.21k 253.42kThe library has not been optimized for speed, and those numbers could probably be improved. You can browse the source, download the source or download the SWC binary Check out the release notes for a bit more details. Things that should make it in the next release: better ASN-1 parsing SSL 3.0 support various bugfixes (Socket, BigInteger) [Less]

Bogatyr

Bogatyr 0.9.6 This Java library contains plenty of helper classes to help you create powerful and high quality applications. For more informations and documentations about the project, please visit our project page.

PolarSSL

PolarSSL is a light-weight open-source cryptographic library for embedded systems. Its designed to be: - Low profile - Self contained - Easy to inspect and audit - Easy to implement - Very modular - Easily expandable It provides standard crypto block: AES, Camellia ... [More] , SHA-1, SHA-2, X.509, etc. as well as higher lever protocols: SSL v3 and TLS v1.0 and v1.1. PolarSSL has been ported on a number of architectures, including ARM, PowerPC, MIPS, and Motorola 68000. Its already small memory footprint can be easily reduced to 50k for a basic SSL client or server, by modifying a single .h configuration file. PolarSSL is currently used in several open-source (GPL) and closed-source projects, such as Adobe's flash player. PolarSSL is the official fork of the former XySSL project [Less]