Free dss software for linux

yaSSL is an SSL Library for programmers building security functionality into their applications and devices.
yaSSL has a dual licensing model, like MySQL, so it is available under GPL and commercial licenses. Support and consulting are also available for yaSSL.
Main features:
- SSL version 3 and TLS version 1 (client and server)
- OpenSSL compatibility layer
- MySQL integration
- Initial stunnel integration
- MD2, MD5, SHA-1, RIPEMD, HMAC, DES, 3DES, AES, ARC4, TWOFISH, BLOWFISH, RSA, DSS, DH, and PKCS#5 PBKDF2
- Simple API
- Interchangeable crypto and certificate libraries
- PEM and DER certificate support
- Very fast
- Multiple OS support: Win32, Linux, Solaris, FreeBSD, NetBSD, OpenBSD, and Mac OS X
Enhancements:
- This release of contains bugfixes and adds SHA-256, SHA-512, SHA-224, and SHA-384.

libssh2 library implements the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS, SECSH-USERAUTH, SECSH-CONNECTION, SECSH-ARCH, SECSH-FILEXFER, SECSH-DHGEX, SECSH-NUMBERS, and SECSH-PUBLICKEY.
Main features:
- Key Exchange Methods: diffie-hellman-group1-sha1, diffie-hellman-group14-sha1, diffie-hellman-group-exchange-sha1**
- Hostkey Types: ssh-rsa, ssh-dss
- Ciphers: aes256-cbc (rijndael-cbc@lysator.liu.se), aes192-cbc, aes128-cbc, 3des-cbc, blowfish-cbc, cast128-cbc, arcfour, none**
- Compression Schemes: zlib, none
- MAC hashes: hmac-sha1, hmac-sha1-96, hmac-md5, hmac-md5-96, hmac-ripemd160 (hmac-ripemd160@openssh.com), none**
- ** - Affected by build time ./configure options. See INSTALL file for more information.
- Authentication: none, password, public-key, hostbased, keyboard-interactive
- Channels: shell, exec (incl. SCP wrapper), direct-tcpip, subsystem
- Global Requests: tcpip-forward
- Channel Requests: x11, pty
- Subsystems: sftp(version 3), publickey(version 2)
Enhancements:
- A bunch of bugs were fixed, new public defines for version/major/minor/patch numbers were introduced, and the old APINO define was removed.

Ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. Runs only on x86 linux, bsd and MacOS X.
libssh is a C library to access SSH 2 services from a program. It can remotely execute programs, transfer files, and serve as a secure and transparent tunnel for remote programs. Its Secure FTP implementation can play with remote files easily, without third-party programs others than libcrypto (from OpenSSL).
Main features:
- Full C library functions for manipulating a client-side SSH connection
- Lesser GPL licensing -SSH2 protocol compliant
- Fully configurable sessions
- Support for AES-128,AES-192,AES-256,blowfish, in cbc mode
- Use multiple SSH connections in a same process, at same time
- Use multiple channels in the same connection
- Thread safety when using different sessions at same time
- Basic but correct SFTP implementation (secure file transfer)
- RSA and DSS server public key supported
- Compression support (with zlib)
- Public key (RSA and DSS), password and keyboard-interactive authentication
- A complete documentation about its API
- Runs and tested under amd64, x86, arm, sparc32, ppc under Linux, Bsd, MacosX and Solaris
- A developer listening to you
Enhancements:
- Connection timeout support
- Keyboard-interactive authentication (used by Pam with SSH)
- Server public keys management
- 64 bits cpu support
- Enhanced documentation
- and of course a huge number of bugfixe

JSch is a pure Java implementation of SSH2.
JSch project allows the user to connect to an sshd server and use port forwarding, X11 forwarding, file transfer, etc., and you can integrate its functionality into your own Java programs. JSch is licensed under BSD style license.
Our intension in developing this stuff is to enable users of our pure java X servers, WiredX and WeirdX, to enjoy secure X sessions. Our efforts have mostly targeted the SSH2 protocol in relation to X window system and X11 forwarding. Of course, we are also interested in adding other functionality - port forward, file transfer, terminal emulation, etc.
Needless to say, SSH provides support for secure remote login, secure file transfer, and secure TCP/IP and X11 forwarding. It can automatically encrypt, authenticate, and compress transmitted data.
The SSH protocol is available in two incompatible varieties: SSH1 and SSH2. SSH2 was invented to avoid the patent issues regarding RSA (RSA patent has expired), and to fix some data integrity problem that SSH1 has, and for a number of other technical reasons.
SSH2 protocol has been standardized on IETF Secure Shell working group and drafts related to SSH2 protocol are available on the web. In developing JSch, we are now referring to following documents:
SSH Protocol Architecture
SSH Transport Layer Protocol
Diffie-Hellman Group Exchange for the SSH Transport Layer Protocol
SSH Connection Protocol
SSH Authentication Protocol
Main features:
- JSch is in pure Java, but it depends on JavaTM Cryptography Extension (JCE). JSch is know to work with:
- J2SE 1.4.0 or later (no additional libraries required).
- J2SE 1.3 and Suns JCE reference implementation that can be obtained at http://java.sun.com/products/jce/.
- J2SE 1.2.2 and later and Bouncycastles JCE implementation that can be obtained at http://www.bouncycastle.org/.
- SSH2 protocol support.
- Key exchange: diffie-hellman-group-exchange-sha1, diffie-hellman-group1-sha1
- Cipher: blowfish-cbc, 3des-cbc, aes128-cbc,aes192-cbc,aes256-cbcnew!
- MAC: hmac-md5, hmac-sha1, hmac-md5-96, hmac-sha1-96
- Host key type: ssh-dss,ssh-rsa
- Userauth: password
- Userauth: publickey(DSA,RSA)
- Userauth: keyboard-interactive
- X11 forwarding
- xauth spoofing
- connection through HTTP proxy.
- connection through SOCKS5 proxy.
- port forwarding.
- stream forwarding.
- signal sending. The unofficial patch for sshd of openssh will be found in this thread.
- remote exec.
- generating DSA and RSA key pairs.
- changing the passphrase for a private key.
- partial authentication
- SSH File Transfer Protocol(version 0, 1, 2, 3)
- packet compression. JZlib has been used.
- JSch is licensed under BSD style license.
Enhancements:
- bugfix: freeze in diffie-hellman-group-exchange-sha1. FIXED. By the default, diffie-hellman-group1-sha1 will be used and if you have not chosen diffie-hellman-group-exchange-sha1 explicitly, you dont have to worry about it.
- bugfix: there should be timeout mechanism in opening a socket for remote port forwarding. FIXED. At the failure or timeout, SSH_MSG_CHANNEL_OPEN_FAILURE will be sent to sshd.
- bugfix: there should be timeout mechanism in opening a socket for X11 forwarding. FIXED. At the failure or timeout, SSH_MSG_CHANNEL_OPEN_FAILURE will be sent to sshd.

DContract project is a Java5 toolbox library for the management of digital contracts.
You can use this toolbox to put signatures on digital documents, and to verify signed documents. It also offers XML Advanced Electronic Signatures (XAdES) 1.3.2 support, up to XAdES-X-L.
Main features:
- Signing, co-signing and counter-signing of digital documents.
- Robust verification of digital signatures with the possibility to extend the verification framework with both document resolvers and key resolvers.
- The signature framework can be extended with self-defined signature aspects.
- XML Advanced Electronic Signatures (XAdES v1.3.2 2006-03) support: XAdES-BES, XAdES-EPES, XAdES-T, XAdES-C, XAdES-X, XAdES-X-L.
- Provides an easy-to-use abstraction level for creating legal signatures.
- Document repository to load/store XML DOM documents from/to various sources.
- Document schema validation with easy-to-use extendible schema catalog.
- Generation of RSA key pairs up to 2048 bit.
- Generation of self-signed X509 certificates, supporting the most common extensions.
- PKCS12 key repository management.
- Generic Smart Card support (e.g. eID cards).
- PEM exporting/importing of public keys, private keys, X509 certificates, and CSRs.
- X509 certificate OCSP support.
- TSP time-stamping support.
- OASIS Digital Signature Service (DSS) XML Timestamp support.
- Loading and storing of X509 certificates.
- MD5/SHA1 fingerprints.
Enhancements:
- This release includes a major refactoring of the XAdES signature aspects, resulting in performance improvements.
- Because of the refactoring it is now also possible to upgrade, for example, a XAdES-BES signature to XAdES-T, and it is also easier to query a verified signature for some XAdES attributes.
- The Web site also has a new section on the architecture of DContract and a code sample.
- Some interop tests were performed with IAIK XAdES, and the FAQ now offers a comparison between DContract and the IAIK XAdES library.