MatrixSSL is an embedded SSL and TLS implementation designed for small footprint devices and applications requiring low overhead per connection. The library is less than 50Kb on disk with cipher suites. It includes client and server support through TLS 1.2, mutual authentication, session resumption, and implementations of RSA, ECC, AES, 3DES, ARC4, SHA2, SHA1, and MD5. The source is well documented and contains portability layers for additional operating systems, cipher suites, and cryptography providers.
GNUnet is a peer-to-peer framework with focus on providing security. All peer-to-peer messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the network traffic in UDP, TCP, HTTP, HTTPS, or direct 802.11 (WLAN). GNUnet supports accounting to provide contributing nodes with better service. The services built on top of the framework include anonymous file sharing and a virtual network providing IPv4-IPv6 transition via protocol translation over the P2P network.
DJIGZO Email Encryption Gateway is a centrally managed email server that encrypts and decrypts incoming and outgoing email at the gateway level. Djigzo currently supports two encryption standards: S/MIME and PDF encryption. The built-in Data Leak Prevention (DLP) module can be used to prevent certain information from leaving the organization via email. DLP can be configured to filter on credit card numbers, bank account numbers, excessive amounts of email addresses or other personal information in one email message, and more. DJIGZO can be installed on most Linux and Unix based systems. Installation packages are available for Ubuntu, Debian, Red Hat and CentOS. A ready to run virtual appliance for VMware and Hyper-V is available. An add-on for BlackBerry is available.
Z1 CertServer (formerly Z1 Backbone Of Trust CertServer) is a server-based software solution for the storage and administration of X.509 certificates and OpenPGP keys. It targets customers who use a public key infrastructure (based on X.509 or OpenPGP) and who want to take advantage of the central access to certificates. It also automatically validates certificates by querying certificate revocation lists (CRLs) from the issuing trust centers, or by using OCSP (Online Certificate Status Protocol). Java and C/C++ SDKs are provided. It is available as pre-installed hardware or a virtual appliance, with evaluation packages for Debian and Solaris.
eurephia is an authentication plug-in for OpenVPN. It enhances the OpenVPN authentication process by using user name and password authentication in addition to SSL certificates. If too many failed attempts are registered, the user account and/or IP address will be blocked. For Linux servers, iptables support is also included, which can be used to restrict each user's network access through the VPN channel. OpenVPN 2.2 or later is required.
GNU SASL is an implementation of the Simple Authentication and Security Layer framework and a few common SASL mechanisms. SASL is used by network servers such as IMAP and SMTP to request authentication from clients, and in clients to authenticate against servers. The library includes support for the SASL framework (with authentication functions and application data privacy and integrity functions) and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, NTLM, and KERBEROS_V5 mechanisms.
Z1 SecureMail Messenger is a server-based software solution for confidential email exchange. It enables secure communication to everyone at every place. It acts as an SMTP proxy and is completely transparent for the sender. It either delivers the message as an encrypted PDF document or stores the message on the server and provides comfortable access via Web frontend. The recpient can read the secured message with familiar software (Web browser, PDF reader). No PKI technology or certificates are required. Evaluation packages for Debian and Solaris are available for download.