SQLCipher provides fully transparent encryption of SQLite databases. SQLCipher is a specialized build of the SQLite database that performs transparent and on-the-fly encryption. Using SQLCipher, an application uses the standard SQLite API to manipulate tables using SQL. Behind the scenes, the library silently manages security, making sure that data pages are encrypted and decrypted as they are written to and read from storage. SQLCipher relies on the peer-reviewed OpenSSL library for several encryption requirements, including the AES-256 algorithm, pseudo random number generation, and PBKDF2 key derivation.
AS2Secure is a PHP library that allows you to send and receive AS2 (Applicability Statement 2) messages from partners. The project is split into two parts: a client to send one or more documents to a partner and a server to receive one or more documents from a partner. Its main features are asyncronous and syncronous MDN, partner setup, digital signatures, message encryption, secure transport (using OpenSSL), support for SSL client authentication, and multiple attachments (AS2 1.2).
Privatix Live-System is a portable encrypted operating system designed to be run directly from a USB flash drive or an external hard drive. This allows the user to safely edit and carry along sensitive data for encrypted communication and anonymous Web surfing. It is based on Debian GNU/Linux.
SignPDF is a simple command line application to sign a PDF document. It can sign a PDF document with a valid certificate, encrypt/protect a PDF document, and timestamp a PDF document (optional feature). A JKS keystore with a cert signed by your desired CA is mandatory for use. The tsa_url of a timestamp server can be used to timestamp your documents. The signed PDF file is signed and protected with allowed restrictions to printing, content copying, and content copying for accessibility. By default, SignPDF creates a configuration file at ~/.signpdf, which can be edited for further use.
Libchop is a set of utilities and library for data backup and distributed storage. Its main application is chop-backup, an encrypted backup program that supports data integrity checks, versioning at little cost, distribution among several sites, selective sharing of stored data, adaptive compression, and more. The library itself, which chop-backup builds upon, implements storage techniques such as content-based addressing, content hash keys, Merkle trees, similarity detection, and lossless compression. It makes it easy to combine them in different ways. The ‘chop-archiver’ and ‘chop-block-server’ tools, illustrated in the manual, provide direct access to these facilities from the command line. It is written in C and has Guile (Scheme) bindings.
sec-wall is a feature-packed security proxy that supports SSL/TLS, WS-Security, HTTP Auth Basic/Digest, extensible authentication schemes based on custom HTTP headers and XPath expressions, powerful URL matching/rewriting, and an optional header enrichment. It's a security wall with which you can conveniently fence otherwise defenseless backend servers.