Crypton - A framework for creating zero-knowledge web applications

  •        633

Crypton is a framework for creating zero-knowledge web applications. Zero Knowledge applications offer meaningful privacy assurance to end users because the servers running the application cannot read the data created and stored by the application.

https://crypton.io/
https://github.com/SpiderOak/crypton

Tags
Implementation
License
Platform

   




Related Projects

GSAFedRAMP


Furthering GSA’s mission to better serve our partners and deliver better value and savings, yesterday the Federal Risk and Authorization Management Program (FedRAMP) granted the second Joint Authorization Board (JAB) provisional cloud security authorization to CGI Federal. The JAB provisional authorization covers CGI’s infrastructure as a service (IaaS) offerings including virtual machines and web-hosting capabilities, available for agencies to acquire from the GSA IaaS Blanket Purchase Agreem

conscrypt - Conscrypt is a Java Security Provider that implements parts of the Java Cryptography Extension and Java Secure Socket Extension


Conscrypt is a Java Security Provider (JSP) that implements parts of the Java Cryptography Extension (JCE) and Java Secure Socket Extension (JSSE). It uses BoringSSL to provide cryptographical primitives and Transport Layer Security (TLS) for Java applications on Android and OpenJDK.The core SSL engine has borrowed liberally from the Netty project and their work on netty-tcnative, giving Conscrypt similar performance.

solr-scale-tk - Fabric-based framework for deploying and managing SolrCloud clusters in the cloud.


Setup========Make sure you're running Python 2.7 and have installed Fabric and boto dependencies. On the Mac, you can do:```sudo easy_install fabricsudo easy_install boto```For more information about fabric, see: http://docs.fabfile.org/en/1.8/Clone the pysolr project from github and set it up as well:```git clone https://github.com/toastdriven/pysolr.gitcd pysolrsudo python setup.py install```Note, you do not need to know any Python in order to use this framework.Local Setup========The framewor

OpenNebula - Data Center Management Solution


OpenNebula provides solution for building and managing virtualized enterprise data centers and cloud infrastructures to enable on-premise IaaS clouds. OpenNebula interoperability makes cloud an evolution by leveraging existing IT assets, protecting your investments, and avoiding vendor lock-in. penNebula was designed to address the requirements of business use cases from leading companies and across multiple industries, such as Hosting, Telecom, eGovernment, Utility Computing and lot more.



CloudStack - Infrastructure-as-a-Service (IaaS) software platform


CloudStack CE is an open source Infrastructure-as-a-Service (IaaS) software platform, which enables users to build, manage and deploy compute cloud environments.

patterns & practices: Cloud Security Knowledge Base


Proven Practices, end-to-end application scenarios, guidelines, Q&A, and task-based how-tos for building secure cloud applications with Azure.

hydra - OAuth2 server with OpenID Connect - cloud native, security-first, open source API security for your infrastructure


ORY Hydra is a hardened OAuth2 and OpenID Connect server optimized for low-latency, high throughput, and low resource consumption. ORY Hydra is not an identity provider (user sign up, user log in, password reset flow), but connects to your existing identity provider through a consent app. Implementing the consent app in a different language is easy, and exemplary consent apps (Go, Node) and SDKs (Go, Node) are provided.Besides mitigating various attack vectors, such as database compromisation and OAuth 2.0 weaknesses, ORY Hydra is able to securely manage JSON Web Keys, and has a sophisticated policy-based access control you can use if you want to. Click here to read more about security.

Cryptlib - provides Encryption and Authentication Service


cryptlib is a powerful security toolkit that allows even inexperienced crypto programmers to easily add encryption and authentication services to their software. It provides support for S/MIME and PGP/OpenPGP secure enveloping, SSL/TLS and SSH secure sessions, CA services such as CMP, SCEP, RTCS, and OCSP, and other security operations such as secure timestamping.

Apache Shiro - Java Security Framework


Apache Shiro is a powerful and easy-to-use Java security framework that performs authentication, authorization, cryptography, and session management. With Shiro’s easy-to-understand API, you can quickly and easily secure any JVM-based application – from the smallest mobile applications to the largest web and enterprise applications.

sjcl - Stanford Javascript Crypto Library


The Stanford Javascript Crypto Library is a project by the Stanford Computer Security Lab to build a secure, powerful, fast, small, easy-to-use, cross-browser library for cryptography in Javascript. SJCL is secure. It uses the industry-standard AES algorithm at 128, 192 or 256 bits; the SHA256 hash function; the HMAC authentication code; the PBKDF2 password strengthener; and the CCM and OCB authenticated-encryption modes.

fosite - Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.


The security first OAuth2 & OpenID Connect framework for Go. Built simple, powerful and extensible. This library implements peer-reviewed IETF RFC6749, counterfeits weaknesses covered in peer-reviewed IETF RFC6819 and countermeasures various database attack scenarios, keeping your application safe when that hacker penetrates or leaks your database. OpenID Connect is implemented according to OpenID Connect Core 1.0 incorporating errata set 1 and includes all flows: code, implicit, hybrid.OAuth2 and OpenID Connect are difficult protocols. If you want quick wins, we strongly encourage you to look at Hydra. Hydra is a secure, high performance, cloud native OAuth2 and OpenID Connect service that integrates with every authentication method imaginable and is built on top of Fosite.

cloud-storage-vault - Master thesis about secure cloud storage


Master thesis about secure cloud storage

cryptograph - Cloud infrastructure for disseminating cryptography.


Cloud infrastructure for disseminating cryptography.

Themis - Crypto library for storage and messaging for ObjC, Android, C++, JS, Python, Ruby and PHP


Themis is open-source high-level cryptographic services library for mobile and server platforms, providing secure messaging and secure data storage. Themis provides three important cryptographic services Secure messaging, Secure session and Secure storage.

Acra - Database protection suite with selective encryption and intrusion detection


Acra helps you to easily secure your databases in distributed, microservice-rich environments. It allows you to selectively encrypt sensitive records with strong multi-layer cryptography, detect potential intrusions and SQL injections and cryptographically compartment data stored in large sharded schemes. It's security model guarantees that compromising the database or your application does not leak sensitive data, or keys to decrypt it.

patterns & practices: Windows Azure Security Guidance


Proven Practices, end-to-end application scenarios, guidelines, Q&A, and task-based how-tos for building secure cloud applications with Azure.

Isis2 Cloud Computing Library


Isis2 is a new option for cloud computing that can enable reliable, secure replication of data even in the highly elastic first-tier of the cloud.

forseti-security


A community-driven collection of open source tools to improve the security of your Google Cloud Platform environments.Get Started with Forseti Security.