Ockam - End-to-end encryption and mutual authentication for distributed applications

  •        370

Ockam provides end-to-end encryption and mutual authentication for distributed applications. Transport layer security protocols are unable to protect application messages because their protection is constrained by the length and duration of the underlying transport connection. Ockam is a suite of programming libraries and infrastructure that makes it simple for our applications to guarantee end-to-end integrity, authenticity, and confidentiality of data.

It helps to create and manage cryptographic keys, unique device identifiers, and verifiable credentials in your connected environments.

https://www.ockam.io
https://github.com/ockam-network/ockam

Tags
Implementation
License
Platform

   




Related Projects

capillary - Capillary is a library to simplify the sending of end-to-end encrypted push messages from Java-based application servers to Android clients

  •    Java

This is a library to simplify the sending of end-to-end (E2E) encrypted push messages from Java-based application servers to Android clients. Please check the instructions below and the demo for more details. To use push messaging services to send messages to connected devices, developers must send them through a third party messaging service, such as Firebase Cloud Messaging (FCM). It’s simple to encrypt message contents between the developer and the messaging service using https. Major messaging services, including FCM, also encrypt messages between their servers and client devices.

Themis - Crypto library for storage and messaging for ObjC, Android, C++, JS, Python, Ruby and PHP

  •    C

Themis is open-source high-level cryptographic services library for mobile and server platforms, providing secure messaging and secure data storage. Themis provides three important cryptographic services Secure messaging, Secure session and Secure storage.

Tcpcrypt - Encrypting the Internet

  •    C

Tcpcrypt is a protocol that attempts to encrypt (almost) all of your network traffic. Unlike other security mechanisms, Tcpcrypt works out of the box: it requires no configuration, no changes to applications, and your network connections will continue to work even if the remote end does not support Tcpcrypt, in which case connections will gracefully fall back to standard clear-text TCP.

Libcurve - An encryption and authentication library for ZeroMQ applications

  •    C

Curve implements the CurveZMQ elliptic curve security mechanism, for use in ZeroMQ applications. This library is primarily a reference implementation for the CurveZMQ specification but may also be used for end-to-end security. CurveZMQ creates encrypted sessions ("connections") between two peers using short term keys that it securely exchanges using long term keys. When the session is over, both sides discard their short term keys, rendering the encrypted data unreadable, even if the long term keys are captured. It is not designed for long term encryption of data.

Darkwire.io - End-to-end encrypted instant web chat

  •    Javascript

Simple encrypted web chat. Powered by socket.io, the web cryptography API. This project is an example of how client side encryption works and how you can integrate it as a chat service. Darkwire server is a Node.js application that requires redis. The Darkwire.io web client is written in JavaScript with React JS and Redux. It uses a combination of asymmetric encryption (RSA-OAEP), symmetric session keys (AES-CBC) and signing keys (HMAC) for security.


cli - A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.

  •    Go

step is a zero trust swiss army knife. It’s an easy-to-use and hard-to-misuse utility for building, operating, and automating systems that use zero trust technologies like authenticated encryption (X.509, TLS), single sign-on (OAuth OIDC, SAML), multi-factor authentication (OATH OTP, FIDO U2F), encryption mechanisms (JSON Web Encryption, NaCl), and verifiable claims (JWT, SAML assertions). For more information and docs see the step website and the blog post announcing step.

SimpleX Chat - Decentralized chat with a focus on users’ privacy

  •    Haskell

The world's most private and secure chat - open-source, decentralized, and without global identities of any kind. You can use it from the terminal UI, with all contacts and groups in one window. It is a federated chat system with end to end encryption support and low risk of man in the middle attack.

Wiretrustee - Connect your devices into a single secure private WireGuard®-based mesh network

  •    Go

Wiretrustee is an open-source VPN platform built on top of WireGuard making it easy to create secure private networks for your organization or home. It requires zero configuration effort leaving behind the hassle of opening ports, complex firewall rules, VPN gateways, and so forth.

Eclipse Hono - Remote service interfaces for connecting large numbers of IoT devices

  •    Java

Eclipse Hono provides uniform (remote) service interfaces for connecting large numbers of IoT devices to a (cloud) back end. It specifically supports scalable and secure data ingestion (telemetry data) as well as command & control type message exchange patterns and provides interfaces for provisioning & managing device identity and access control rules.

Chat.onion - Anonymous and fully encrypted peer-to-peer instant messenger for Android using onion routing (via Tor)

  •    Java

Chat.onion is an anonymous and fully encrypted peer-to-peer instant messenger for Android using onion routing (via Tor). Many instant messengers already use encryption to secure message contents, but they can't hide important metadata such as your IP address and who you are communicating with. To hide all your information, including your metadata, identity, and IP address, Chat.onion uses onion routing (Tor) to send each message over several randomly selected proxy servers. Multiple layers of encryption are used to ensure that each proxy only knows it's immediate successor and predecessor, but not the entire message route.

Enigmail - A simple interface for OpenPGP email security

  •    Javascript

Enigmail is a security extension to Mozilla Thunderbird and Seamonkey. It enables you to write and receive email messages signed and/or encrypted with the OpenPGP standard. Sending and receiving encrypted and digitally signed email is simple using Enigmail. It supports powerful GUI for easy configuration and OpenPGP key management, Integrated OpenPGP PhotoID viewer and lot more.

aries-cloudagent-python - Hyperledger Aries Cloud Agent Python (ACA-Py) is a foundation for building decentralized identity applications and services running in non-mobile environments

  •    Python

An easy to use Aries agent for building SSI services using any language that supports sending/receiving HTTP requests. Hyperledger Aries Cloud Agent Python (ACA-Py) is a foundation for building Verifiable Credential (VC) ecosystems. It operates in the second and third layers of the Trust Over IP framework (PDF) using DIDComm messaging and Hyperledger Aries protocols. The "cloud" in the name means that ACA-Py runs on servers (cloud, enterprise, IoT devices, and so forth), but is not designed to run on mobile devices.

Kontalk - Instant Messaging Network

  •    Java

Kontalk is run by a community of volunteers offering servers. Both client-to-server and server-to-server channels are fully encrypted. Users can be safe with end-to-end encryption. This is the official Android client for the Kontalk messaging system.

Silence - SMS/MMS encryption made easy

  •    Java

Silence (formerly SMSSecure) is an SMS/MMS application that allows you to protect your privacy while communicating with friends.Using Silence, you can send SMS messages and share media or attachments with complete privacy. It communicates using encrypted SMS messages. No servers or internet connection required. It uses the Signal encryption protocol to provide privacy for every message, every time.

Element - Secure and independent communication, connected via Matrix

  •    Java

Element is a messaging app that lets you chat securely with your family and friends. The communication is default end-to-end encrypted, cross-signed device verification and decentralisation to choose who you trust with your data. Element is unique. You own your data and decide where it lives. Element lets you talk securely to anyone, regardless of their app. It supports unlimited voice, video and messaging. It is built on Matrix.

Kong - The Microservice API Gateway

  •    Lua

Kong is a cloud-native, fast, scalable, and distributed Microservice Abstraction Layer (also known as an API Gateway, API Middleware or in some cases Service Mesh). Backed by the battle-tested NGINX with a focus on high performance, Kong was made available as an open-source platform in 2015. Under active development, Kong is used in production at thousands of organizations from startups, Global 5000 and Government organizations.

ElectronMail - Unofficial desktop app for ProtonMail and Tutanota E2EE email providers

  •    TypeScript

is an Electron-based unofficial desktop client for ProtonMail and Tutanota end-to-end encrypted email providers. The app aims to provide enhanced desktop user experience enabling features that are not supported by the official in-browser web clients. It is written in TypeScript and uses Angular. The download page with Linux/OSX/Windows installation packages is here.

sdk-js - Tanker client-side encryption SDK for JavaScript

  •    Javascript

Tanker is an open-source solution to protect sensitive data in any application, with a simple end-user experience and good performance. No cryptographic skills are required to implement it. Tanker FileKit is an end-to-end encrypted file storage service for apps.

Tutanota - Encrypted MailBox

  •    Javascript

Tutanota automatically encrypts all your data on your device. Your emails as well as your contacts stay private. You can easily communicate with any of your friends end-to-end encrypted. Even subject and attachments as well as all your contacts are encrypted. It provides an open webmail service that is very easy to use.

EnvKey - Protect API keys and credentials, Keep configuration in sync everywhere.

  •    Javascript

This is EnvKey's cross-platform native application. It supports Mac, Windows, and Linux. EnvKey is an end-to-end encrypted secrets and configuration management tool. It keeps your configuration securely and automatically in sync for all your developers and servers.






We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.