Tin Hat is a Linux distribution derived from hardened Gentoo. It aims to provide a very secure, stable, and fast desktop environment that lives purely in RAM. Tin Hat boots from CD, or optionally USB pen drive, but it is not a LiveCD in that it does not mount any file system from the boot device. Rather, Tin Hat employs a massive squashfs image which expands into tmpfs upon booting. This makes for long boot times, but remarkable speeds during human-computer interaction.
Seahorse is a Gnome front end for GnuPG, the GNU Privacy Guard program. It is a tool for secure communications and data storage. Data encryption and digital signature creation can easily be performed through a GUI and Key Management operations can easily be carried out through an intuitive interface.
alph implements and analyzes historical and traditional ciphers and codes, such as polyalphabetic, substitutional, and mixed employing human-reconstructable algorithms. It provides a pipe filter interface in order to encrypt and decrypt block text to achieve transparency. The program is meant to be used in conjunction with external programs that transfer data, resulting in transparent encryption or decryption of information. The program can thus be used as a mail filter, IRC filter, IM filter, and so on.
Gringotts is a small utility that allows you to jot down sensitive data (passwords, PINs, small files, etc.) in an easy-to-read, easy-to-access, and most of all very secure form. It lets the user choose from among eight strong encryption algorithms (RIJNDAEL-128, RIJNDAEL-256, SERPENT, TWOFISH, CAST-256, SAFER+, LOKI97, 3DES), two hashing algorithms (SHA1, RIPEMD 160), and two compression techniques (ZLib and BZip2) with four compression ratios. It allows the user to use any file or an entire floppy disk as a password, as an alternative to the usual text string.
gSTM, the Gnome SSH Tunnel Manager, is a front-end for managing SSH-tunneled port redirects. It stores tunnel configurations in a simple XML format. The tunnels, with local and remote port redirections, can be created, deleted, modified, and individually started and stopped through one simple interface. It is useful for anyone wanting to securely access private services over an encrypted tunnel.
fpwdman manages a file of passwords that is accessed by one master passphrase. It can import and export password files and makes it possible for encrypted password files to easily be transferred across operating systems. It supports multiple password files, which could be used when a number set of system administrators share a site-wide file of passwords for common tasks, while each maintaining a file of personal passwords. It also exports and imports password files to and from plain text and optionally uses user-generated random entropy. The source includes two command lines tools to encrypt and decrypt: ensbc and desbc.
GPassguard is a GTK+ frontend to the *PassGuard suite, which manages passwords in an encrypted file so that you only have to remember one. It uses the PassGuard Framework and can be interfaced with any kind of encryption via a plugin system. It allows you to copy passwords to the clipboard.
Javeau is a small tool meant to provide an easy way to create and use encrypted directories, using strong cryptography and a simple interface. It works under Java 6. Data stored in these folders are encrypted and safe (using 256 bit encryption); they can be accessed only by the user (by providing the password used to create the folder), and their integrity is checked to prevent data tampering. The application sports a convenient file-manager-like interface, is very fast and small, and is completely cross-platform: you can access your encrypted storage everywhere you can run a Java 6 VM.