Free cryptography documentary software for linux

Cryptonit project is a client side cryptographic tool which allows you to encrypt/decrypt and sign/verify files with PKI (Public Key Infrastructure) certificates.
Main features:
- Encryption/decryption based on highly reliable algorithms
- Signature/verification procedures ensuring tamper-proof documents
- Use of passwords, certificates & smart (chip) cards for file encryption
- Address book for saving and organizing contacts
- Ability to import contacts and their certificates from the corporate directory (LDAP import)
- Multiple user account management
- Interfaces in both English and French
- CRL download
- RSA cryptography (public key cryptography standard)

CryptoServer is OpenSource Server-side cryptography tool and run as daemon.

It is already tested in very busy environment and can support over one million transaction an hour.

CryptoServer accept the GPL License and can use it for any purpose as is.

Crypt::ECDSA::Curve is a base class for ECC curves.

These are for use with Crypt::ECDSA, a Math::GMPz based cryptography module.

METHODS

new

Constructor. Takes the following named pair arguments:

standard => standard-curve-name

Used for named standard curves such as the NIST standard curves.
Preferentially, these are invoked by classes which inherit
from Crypt::ECDSA::Curve, such as Crypt::ECDSA::Curve::Prime,
Crypt::ECDSA::Curve::Binary, or Crypt::ECDSA::Curve::Koblitz.

See US govenment standard publications FIPS 186-2 or FIPS 186-3.

used as:

new(standard => standard curve name), where curve name is one of:

Crypt::ECDSA::Curve::Prime->new( standard =>
[ one of ECP-192, ECP-224, ECP-256, ECP-384, ECP-521 ] )

Crypt::ECDSA::Curve::Koblitz->new( standard =>
[ one of EC2N-163, EC2N-233, EC2N-283, EC2N-409, EC2N-571 ] )

Koblitz curves are a special case of binary curves, with a simpler equation.

Non-standard curve types are supported either via specifying parameters and algorithm,
or by specifying a generic "standard" via specifying in new the pair:
standard => generic_prime or standard => generic_binary.

The following are used mainly for non-standard curve types. They are
gotten from pre-defined values for named curves:

p => $p , sets curve modulus ( for prime curve over F(p) )

a => $a, sets curve param a

b => $b, sets curve param b

N => the exponent in 2**N, where 2**N is a binary curve modulus
( for binary or Koblitz curve over F(2**N) )

h => curve cofactor for the point order

r => base point G order for prime curves

n => base point G order for binary curves

G_x => $x, a base point x coordinate

G_y => $y, a base point y coordinate

irreducible => binary curve irreducible basis polynimial in binary integer
format, so that x**233 + x**74 + 1 becomes
polynomial => [ 233, 74, 0 ] and irreducible =>
0x20000000000000000000000000000000000000004000000000000000001
a
my $param = $curve->a;

Returns parameter a in the elliptic equation.
b
my $param = $curve->b;

Returns parameter b in the elliptic equation.
p
my $param = $curve->p;

returns parameter p in the equation-- this is the field modulus parameter for prime curves
order
my $param = $curve->order;

Returns the curve base point G order if known.
curve_order
my $param = $curve->curve_order;

Returns the curve order if known. This might calculate the order some day.
It does not in this version.
infinity
my $inf = $curve->infinity;

Returns a valid point at infinity for the curve.
standard
my $param = $curve->standard;

Returns the standard type of the curve, if defined for the instance.

The CryptoBox is a Debian/Linux based live-cd. CryptoBox CD boots up, starting a secure fileserver.
Even non-technical users are able to store their data on its encrypted harddisk. There is no special knowledge about cryptography or servers required at all.
The CryptoBox is fully controllable via your web browser.
Version 0.2 is fully usable and runs stable. From now on were just adding features and translations (atm english, german, slovenian).
Enhancements:
- Support for more than one hard disk was added.
- Manual partitioning is allowed.
- LUKS is used for hard disk encryption.
- Plaintext partitions are supported.
- The time and date can be changed.
- Flexible feature management was implemented to enable and disable specific plugins.
- Prepared RAID partitions are used.

FlexiCrypt is a universal cryptography toolkit for managing certificates and symmetric keys. FlexiCrypt can perform many kinds of encryption, decryption, signing, and several related tasks.
Main features:
- key managing (asymmetric and symmetric)
- generate certificates
- symmetric encryption
- asymmetric encryption
- hybrid encryption
- decryption
- XML-signatures
- message digest computation
- secure file deletion (wipe files)
- performance comparison

autocrypt its a set of scripts that use linux hotplug/udev/cryptoapi mechanism to allow you autocrypting a harddrive what do I means by autocrypting : I means using a "rootplug" ie an identification device to activate the possibility of mounting automatically a crypted device.

Youll need such tool if typically you have some data you require to protect whith cryptography and that you want not creating the node "by hand" each time (this require root privileges) look at the following scenario :

you work into a company which data are sensitives
you dont want to encrypt your home using pam crypt because
you dont want to have to setup your workspace each time you come back.

So you dant want to logout, using a screensaver to prevent use of your computer. But while youre loged the data are accessible.... a malicious hacker can login to you box via network and have access to your data....

You can manually create the cryting device mounting and umounting them at demand but this means you have root privilege you can use a special identification device, a "key" that do it for you.... thats autocrypt this solution use the widely available usbkeys/drives to create the unencrypted devices when the key is pluged and to remove it safely when the device is removed.

LibTomCrypt is a comprehensive, modular, and portable cryptographic toolkit that provides developers with a vast array of well known published block ciphers, one-way hash functions, chaining modes, pseudo- random number generators, public key cryptography, and a plethora of other routines. It has been designed from the ground up to be very simple to use. It has a modular and standard API that allows new ciphers, hashes, and PRNGs to be added or removed without change to the overall end application. It features functions for easy handling and a complete user manual which has many source snippet examples.
LibTomCrypt is a fairly comprehensive, modular and portable cryptographic toolkit that provides developers with a vast array of well known published block ciphers, one-way hash functions, chaining modes, pseudo-random number generators, public key cryptography and a plethora of other routines.
LibTomCrypt has been designed from the ground up to be very simple to use. It has a modular and standard API that allows new ciphers, hashes and PRNGs to be added or removed without change to the overall end application. It features easy to use functions and a complete user manual which has many source snippet examples.
LibTomCrypt is free for all purposes under the public domain. This includes commercial use, redistribution and even branching.
Main features:
- Public domain and open source.
- Written entirely in portable ISO C source (except for things like RNGs for natural reasons)
- Builds out of the box on virtually every box. All that is required is GCC for the source to build.
- Includes a 90+ page user manual in PDF format (with working examples in it)
- Block Ciphers
- Ciphers come with an ECB encrypt/decrypt, setkey and self-test interfaces.
- All ciphers have the same prototype which facilitates using multiple ciphers at runtime.
- Some of the ciphers are flexible in terms of code size and memory usage.
- Ciphers Supported.
- Blowfish
- XTEA
- RC5
- RC6
- SAFER+
- Rijndael (aka AES)
- Twofish
- SAFER (K64, SK64, K128, SK128)
- RC2
- DES, 3DES
- CAST5
- Noekeon
- Skipjack
- Anubis (with optional tweak as proposed by the developers)
- Khazad
- Changing Modes
- Modes come with a start, encrypt/decrypt and set/get IV interfaces.
- Mode supported.
- ECB
- CBC
- OFB
- CFB
- CTR
- One-Way Hash Functions
- Hashes come with init, process, done and self-test interfaces.
- All hashes use the same prototypes for the interfaces.
- Hashes supported.
- MD2
- MD4
- MD5
- SHA-1
- SHA-224/256/384/512
- TIGER-192
- RIPE-MD 128/160
- WHIRLPOOL
- Message Authentication
- FIPS-198 HMAC (supports all hashes)
- FIPS pending OMAC1 (supports all ciphers)
- PMAC Authentication
- Message Encrypt+Authenticate Modes
- EAX Mode
- OCB Mode
- Pseudo-Random Number Generators
- Yarrow (based algorithm)
- RC4
- Support for /dev/random, /dev/urandom and the Win32 CSP RNG
- Fortuna
- SOBER-128
- Public Key Algorithms
- RSA (using PKCS #1 v2.1 and PKCS #1 v1.5)
- DH (using ElGamal signatures and simple DH encryption)
- ECC (over Z/pZ, ElGamal Signatures, simple DH style encryption)
- DSA (Users make their own groups)
- Other standards
- PKCS #1 (both v1.5 and v2.0 padding)
- PKCS #5
- ASN.1 DER for INTEGER types.
Enhancements:
- The ECC code was fixed, cleaned, and improved.
- GCM was fixed.
- UTF8 support was added to the ASN1 code.
- The documentation was improved.
- The published version of the manual is included.