The tcb suite implements the alternative password shadowing scheme on Openwall GNU/*/Linux (Owl) which allows many core system utilities (passwd(1) being the primary example) to operate with little privilege. It is being made available separately from Owl primarily for use by other distributions. This package contains three core components of the tcb suite: pam_tcb (a PAM module which supersedes pam_unix), libnss_tcb (the accompanying NSS module), and libtcb (a library for accessing tcb shadow files, used by the PAM and NSS modules as well as by user management tools on Owl).
OpenCT implements driver and middlerware for smart card readers. OpenCT drivers can be used via the ct-api interface, the ifdhandler interface, or its own interface/middleware. It implements drivers for several USB crypto tokens, USB smart card readers, serial smart card readers, and PCMCIA smart card readers.
Obol is a specialized high-level programming language for security protocols. The idea is to program closer to the abstractions used to describe and analyze security protocols, and leave all the nasty details to the language's runtime. The runtime will then handle "mundane" issues such as message representation, communication, cryptographic transformations and so on. The language is interpreted, and the runtime written in Java.
finic helps users manage their finances. It can be used on a local network (as a client-server system for many users) or on local computer (client only for one user), with separation of accounts, clauses, and customers. It can encrypt information and manage different users with different access rights. Reports can be generated as HTML, PDF, or XLS files or through an internal print preview system. An API is available for creating extensions.
CODEX (the Cornell Data Exchange) is a key distribution system. It is designed for applications with a moderate number of clients (tens or hundreds) requesting keys that change often but not continuously (on the scale of minutes to hours). It employs the RSA and ElGamal encryption schemes, as well as techniques such as threshold cryptography and proactive secret sharing.
OAMP stands for (O)penBSD + (A)pache + (M)ySQL + (P)ostgreSQL + PHP. It is the OpenBSD cousin of LAMP, except that it also provides the SQlite database engine, Perl, Ruby, and Python. In addition, OAMP provides phpMyAdmin and phpPgAdmin for easy administration of MySQL and PostgreSQL over the Web.