RealMe is a software suite that uses an image-based public key infrastructure (PKI) that embeds cryptographic information in a digital image and then exchanges pieces of that image between a user and a Web application to accomplish a strong, bi-directional multi-factor authentication. This technology combines steganography with applied cryptography, and results in a secure yet low-cost solution for Web sites that exchange confidential information with their users.
PyWikid is an implementation of the WiKID one-time-password protocol in Python. It is compatible with the standard Java-based WiKID server, and should run on any platform that supports Python and OpenSSL (tested on Mac OS X, Ubuntu 8.10, and Slackware). It is currently under active development, as it requires a token previously created with the Java token. It is also currently command line only, though the functions are written such that a graphical interface can be wrapped around them easily.
BRAP is a Java remoting protocol that uses native Java object serialization encapsulated in HTTP. It aims to be an alternative to Spring HttpInvoker and Spring Security, especially when you don't need or want the dependencies of Spring in your client, such as when building a rich client application where size might be an issue. The authentication mechanism lets you use your own domain objects as credentials. BRAP gives you "pass by reference" even though the object arguments are serialized and passed to the remote service: changes that happen on the remote side can be applied to the client side automatically. BRAP focuses on being easy to use, small in size, yet powerful and extensible.
SMRadius is a high performance pre-forked RADIUS AAA server. It features a highly configurable backend engine supporting flexible data specifications. Its primary goal is to provide an extremely flexible authentication platform which may serve a large number of industries, including ISPs and WiSPs.
auth2x is a Perl module for performing 2-factor authentication. auth2x has a user authenticate with a passphrase initially. If that authenticates, the module sends a 10 character hex code to a pre-configured (per authentication user-basis) email address. The user then authenticates a second time with their passphrase concatenated with the 10 character code.