RealMe is a software suite that uses an image-based public key infrastructure (PKI) that embeds cryptographic information in a digital image and then exchanges pieces of that image between a user and a Web application to accomplish a strong, bi-directional multi-factor authentication. This technology combines steganography with applied cryptography, and results in a secure yet low-cost solution for Web sites that exchange confidential information with their users.
nsLight PKI is a CGI script that uses OpenSSL to provide Public Key Infrastructure operations. Its features include key ceremony workflow for initialization, requesting of certificates in centralized mode (PKCS#12 generation), certificate view and revocation,CRL generation (at revocation time and once a day by cron job), certificate expiration notifications, and UTF-8 support. It has built-in support for RSA/SHA-1/3DES and GOST R 34.10-2001, GOST 28147-89, and GOST R 34.11-94, the cryptographic provider being OpenSSL 1.0. The script is used both as Web-based interface and cron task.
SignPDF is a simple command line application to sign a PDF document. It can sign a PDF document with a valid certificate, encrypt/protect a PDF document, and timestamp a PDF document (optional feature). A JKS keystore with a cert signed by your desired CA is mandatory for use. The tsa_url of a timestamp server can be used to timestamp your documents. The signed PDF file is signed and protected with allowed restrictions to printing, content copying, and content copying for accessibility. By default, SignPDF creates a configuration file at ~/.signpdf, which can be edited for further use.
ecca-proxy is a Web proxy server that transparently handles Eccentric Authentication key and certificate management. Eccentric Authentication is a protocol designed to make using client certificates easy, secure, and private. The proxy handles the difficult cryptographic details and provides an easy to use interface to the user.