M-Pin Strong Authentication System enables true two-factor authentication for Web sites and applications, based on the open source M-Pin Authentication Server and M-Pin Managed Service. The M-Pin Managed Service is a highly available, fault tolerant software as a service that issues cryptographic secrets to M-Pin Authentication Servers and Clients. The M-Pin Authentication Server uses just one leak-proof cryptographic key, and can't reveal any information about your users such as identity or login details, even if the key is compromised. The M-Pin Client is an HTML5 browser, so developers can easily integrate M-Pin into their Web sites and applications, enabling frictionless two-factor authentication and removing all username / password vulnerabilities.
libbadger is an alternative to existing decentralized authentication systems which require regular direct communication between client and authority. Badger allows clients to authenticate with servers easily and securely in a browserless environment because there is no necessity to tunnel the client to an authority for the purposes of its own authentication. Using Badger, clients only need to communicate with an authority once in their lifetimes.
dynalogin is a distributed two-factor authentication suite that combines a secure UNIX server and API with an Android soft token. Open standards (HOTP, TOTP, and soon OCRA) are used for one-time passwords. A C library is provided for inclusion in existing software and Web sites. OpenID (using SimpleID) is supported for Web applications and single sign on. PAM is supported for easy UNIX and LDAP integration (SASL, RADIUS, and JAAS in development). It works with Google Authenticator or the dynalogin Android application.
LDAP Authentication Plugin for MySQL (auth_ldap) is an authentication plugin for MySQL Server. It allows you to create SQL users which are going to be authenticated using an LDAP server. This minimizes administrative duties, since your users will be able to reuse their existing accounts to access the database. The plugin requires MySQL 5.5.7 and up. It is compiled as an add-on, and does not require you to alter MySQL source code or recompile the entire server. The plugin adds support for LDAP using the openLDAP library.
Collax Business Server is an all-in-one Linux server for small- and medium-sized businesses. It delivers all the important network services within a heterogeneous business environment for communication, infrastructure, compliance, groupware, and storage, all in a reliable and secure way which is easy to manage. It also provides essential security functions such as firewalling and virus and spam filtering, to protect against hacker attacks, viruses, and unsolicited email messages.
RCDevs TiQR is an innovative way to authenticate yourself to Web applications. Its unique user friendly features include one-click enrollment using QR codes and secure authentication without having to re-type complicated codes by leveraging dynamic QR codes embedded in Web pages. TiQR supports the OCRA suite of authentication protocols. Its security is based on AES 256-bit encryption and the SHA family functions.
pysrp is a Python module that provides an implementation of the Secure Remote Password protocol (SRP), a cryptographically strong authentication protocol for password-based, mutual authentication over an insecure network connection. Unlike other common challenge-response autentication protocols, such as Kerberos and SSL, SRP does not rely on an external infrastructure of trusted key servers or certificate management. Instead, SRP server applications use verification keys derived from each user's password to determine the authenticity of a network connection.
The OATH Toolkit makes it easy to build one-time password authentication systems. It contains shared libraries, commandline tools, and a PAM module. Supported technologies include the event-based HOTP algorithm (RFC4226) and the time-based TOTP algorithm (RFC6238). OATH stands for Open AuTHentication, which is the organization which specifies the algorithms. For managing secret key files, the Portable Symmetric Key Container (PSKC) format described in RFC6030 is supported.
freeDiameter is a framework in C for supporting the Diameter Base Protocol (RFC3588). Diameter is a protocol for authentication, authorization, and accounting; it is the successor of RADIUS. Applications can be loaded as modules. Example applications include a Diameter EAP server, a Diameter SIP server, and Diameter Accounting.