Cryptography, Encryption and Stenography

Computer Security - Hacking And Hackers Information Security Resource Portal security hacking hackers hacker news downloads crackers virus virii viruses hacked webpages DOS denial of service hacking files hack files hack links hacking links encryption spoofing news texts password crackers port monitors key logger phreaking boxes wardialers patches exploits computer security network security privacy encryption computer crime firewallsinformation warfare intrusion detection hackers elec

Return to Main Menu

Our Research Facility

Audit - Detect Network Intrusions
Anonymity & Privacy
ATM - Asynchronous Transfer
Biometrics
Business Continuity Planning
Cellular Communications
Computer Crime & Investigations
Computer Hardware Tutorial
Corporate Violence in Workplace
Crypto & Encryption - Part I
Crypto & Encryption - Part II
Crypto & Encryption - Part III
Disaster Recovery Planning
Downloads - - Public Domain
Downloads - Packet Storm
Downloads - Hacker Domain
Employment and Job Opportunities
Ethics Law and Security Policy
Firewalls
Frame Relay Tutorials
FreeBSD - Berkeley Unix Clone
FreeBSD - OnlineBooks to Read
General Security Related Links
Hacking - How its done Guides
Hacked Web Sites
Information Warfare
Internet Telephony & Protocols
Intrusion Detection Library
Investigations and Courtrooms
Java Security Resources
Jobs & Employment Opportunities
Legal Resources - Legal Basics
Linux Resources - Basics
Linux Resources - Online Books
Mailing List - For Newsletters
Magazine Articles - SEARCHER
Magazine Store - CheapPrices
Military & Govt Security Docs
Networking - Internet Protocols
Novell Networking Security
Online Courses -Boost Your Skills
Pager Hardware Reprogramming
Penetration Testing -Intrusions
Physical and Facility Security
Privacy & Anonymity on the Net
Programming Tutorials
Protocols - Networking - Internet
Resume and Interview Resources
Security Magazines Online
Security Reference Library I
Security Reference Library II
Security Policy Library
Security Standards & Guidelines
Smart Cards
Telecommunication & Internet
Telecommunications Tutorials
Threat Risk Assessments
Unix Security Resources
Unix Security Online Books
VPN's - Virtual Private Networks
Virus Worms Trojans Hoaxs
Voice / IP Protocols and Standards
WIN NT Assorted Files
WIN NT Security Files
WIN 2000 Operating System
Workplace Violence
Y2K Year 2000 Information

Cryptography, Encryption and Stenography

Handbook of Applied Cryptography

Chapter 1 - Overview of Cryptography (48 pages)
Postscript file, 554k; Pdf file, 356k.
Chapter 2 - Mathematics Background (38 pages)
Postscript file, 472k; Pdf file, 345k.
Chapter 3 - Number-Theoretic Reference Problems (46 pages)
Postscript file, 543k; Pdf file, 416k.
Chapter 4 - Public-Key Parameters (36 pages)
Postscript file, 497k; Pdf file, 344k.
Chapter 5 - Pseudorandom Bits and Sequences (22 pages)
Postscript file, 330k; Pdf file, 226k.
Chapter 6 - Stream Ciphers (32 pages)
Postscript file, 484k; Pdf file, 282k.
Chapter 7 - Block Ciphers (60 pages)
Postscript file, 783k; Pdf file, 503k.
Chapter 8 - Public-Key Encryption (36 pages)
Postscript file, 434k; Pdf file, 303k.
Chapter 9 - Hash Functions and Data Integrity (61 pages)
Postscript file, 690k; Pdf file, 481k.
Chapter 10 - Identification and Entity Authentication (40 pages)
Postscript file, 444k;Pdf file, 344k.
Chapter 11 - Digital Signatures (64 pages)
Postscript file, 748k;Pdf file, 560k.
Chapter 12 - Key Establishment Protocols (53 pages)
Postscript file, 532k;Pdf file, 402k.
Chapter 13 - Key Management Techniques (48 pages)
Postscript file, 536k;Pdf file, 347k.
Chapter 14 - Efficient Implementation (44 pages)
Postscript file, 547k;Pdf file, 378k.
Chapter 15 - Patents and Standards (27 pages)
Postscript file, 296k;Pdf file, 228k.

If you do not have a PostScript previewer, you can download one from here.

Software (products, programs and source code)

Applied Cryptography by Bruce Schneier; Wiley, 2nd. ed., 1995; a major update of the primary reference on applied cryptography; errata and source code for several dozen algorithms are available; essential for programmers developing cryptographic applications

CryptoLib 1.1 by Jack Lacy (AT&T Bell Labs) - library of primitives for building cryptographic applications; runs under Unix, DOS, and Windows 3.1, NT, and 95; source code available in US & Canada by e-mail request, or by FTP from sites in .it and .au

Crypto++ 2.0 - a free C++ class library of many cryptographic primitives, by Wei Dai (who also runs an experimental PGP-based Time Stamp Service)

Peter Gutman's CryptLib - a free "universal interface" in ANSI C to the major conventional-key (symmetric) algorithms (incl. code for MDC/SHS, DES, 3DES, IDEA, RC4, and SAFER), plus well-planned infrastructure for adding more

Cybanim produces cryptographic software and free info:

DES (Data Encryption Standard):

NIST FIPS Federal Information Processing Standards, including full text of DES and DSS
DES source code FTP archive
Phil Karn's list of books with DES Source Code
DEScipher/VBX, a Visual Basic VBX wrapper to DES

IDEA (International Data Encryption Algorithm):

Ascom, Ltd., owners of IDEA, are now licensing it for commercial use in USA
IDEA source code FTP archive

Diceware for Passphrase Generation: Reinhold's papers and random word tables
Snefru hash function

MIRACL V3.3 (Multiprecision Integer & Rational Arithmetic C Library) - C code with C++ interfaces for manipulation of large fixed-length integers; uses in-line assembler for 80x86 processors; sample programs for modern factoring algorithms, public key systems, DSS, discrete logs; 82 pp. manual; free for non-commercial use.

Dynamic Substitution and Dynamic Transposition ciphers by Terry Ritter
IMD5 - an implementation of MD5 (message digest algorithm defined in RFC1321) via the "Component Object Model" (COM) within Microsoft's OLE system
MacIntosh cryptography software:

PowerMac Cryptography Software - FTP site in .ie has PGP 2.62, PGP 2.63i, CryptDisk 1.2, etc.

MacPGP 2.6.3 alpha release by Zbigniew Fiedorowicz; a Mac port of PGP 2.6.3; underlying crypto code is same as in PGP2.6.3i, except that it uses RSAREF1.0 instead of Zimmermann's MPILIB.

Greg Combs' page on cryptography on the Mac

Macintosh Cryptography Interface Project

PGP (Pretty Good Privacy) - Phil Zimmerman's public-key e-mail security system

PGP U.S. home page (MIT) - information & programs (export controlled)
PGP International Home Page
PGP FAQs & tutorials are posted by Fran Litterio, Michael Johnson, Nat Queen, and Mathew.
PGP Passphrase Selection FAQ by Randall Williams
PGP Attacks FAQ - assessment of whether PGP is vulnerable to attack or compromise
PGP Timeline FAQ - a concise history of PGP by Adam Back
PGP documentation online in HTML and PostScript formats; covers MIT version 2.6.2
PGP Source Code and Internals by Philip R. Zimmermann (MIT Press, 1995)
newsgroup: alt.security.pgp, FAQs by Jeff Licquia (May 1995)
ViaCrypt, Inc. distributes PGP software for commercial use
code to test quality of PGP's IDEA session keys
analysis of existing public-key infrastructure for PGP, by Neal McBurnett
PGP 2.6.2 for WinNT & Win95 - a character-based (console) port of PGP 2.6.2 (US/Canadian version) that understands long file names; no source code; released 10 Feb by Chris Uhl & Chris Moran
UK site with many pointers to PGP code and utilities
see also: PGP Internet Drafts in the Protocols section

PGP Shells & Utilities - interface PGP to e-mail, file systems, networks, etc.

a large page of links to PGP front-ends and shells for Windows, DOS, Unix, OS2, & MAC, maintained by Scott Hauert
PGP interfaces for e-mail programs:

PgpEudra 0.20 - a PGP-shell that runs as an extension to the 16-bit Eudora versions
WinPMAIL - interface to Pegasus Mail (Windows)

PGP interfaces for operating systems:

ProPGP - a free 32-bit PGP front end for Windows '95, v. 1 beta 1 released Feb 1996; supports most functions of PGP 2.6.2 including key operations, views files before/after encrypting/decrypting, encrypts data from clipboard.
WPGP home page and code (ZIP format)
PWRPGP10.ZIP (PGP shell for Windows)
Aegis 2.1 PGP shell for Windows
PGP QuickFront and PGP Winfront by Ross Barclay / Ugali Int'l Corp.
Pgpacket, Travel Web Page

PGP-based time-stamp services attach a dated non-forgeable PGP signature to messages you submit:

Stamper - free service, run by Matthew Richardson
Wei's Time Stamp Service - also free, run by Wei Dei

RIPEM - Mark Riordan's Internet Privacy Enhanced E-Mail system

Archives at Indiana Univ. and atMSU
Frequently Asked Questions andVulnerabilities
newsgroup: alt.security.ripem | archive

CRYPT.SCM is a small library of cryptographic functions written by Ulf M�ller in "Scheme". Scheme is an algorithmic language (written in C) defined by IEEE P1178, and runs under many OS's including DOS, OS/2 and Unix.
NOISE.SYS, a random-noise device driver for DOS; source incl., 386 req'd.
Ruby Block Cipher - a simple block cypher (although it cannot be used in Electronic Codebook mode) similar to a cryptographic hash function with a block size of 64 bits; more info
Python Cryptography Toolkit - free software (hash, en/decrypt, public-key, etc) for Python (an interpreted object-oriented language similar to Perl or Java) by Andrew Kuchling (Aug 1995); FTP site
CYPRIS (CrYPtographic RISc processor) - a coprocessor chip developed by Lockheed-Martin Advanced Technology Labs for DoD applications requiring "algorithm agile" reprogrammable cryptography; may also have business/commercial applications
Enigma a software version of the famous WW2 crypto machine, and other cryptographic software
"Minimal Key Lengths for Symmetric Ciphers to Provide Adequate Commercial Security" (a report commissioned by Business Software Alliance) by M. Blaze, W. Diffie, R. Rivest, B. Schneier, T. Shimomura, E. Thompson, and M. Wiener; Jan 1996; Matt Blaze comments that that "more efficient attacks than those we considered might also be possible and should be taken into account by the prudent cryptosystem designer;" ASCII text and PostScript format

Steganography - hiding information within noise; a way to supplement (not replace) encryption, to prevent the existence of encrypted data from being detected

Finney's essayon "security through obscurity" and "keyed steganography"
Workshop on Information Hiding, University of Cambridge, UK (30 May - 1 June 1996)
FTP archive of steganography programs
steganography
steganography article
Neil Johnson's links to steganography info
Ross Anderson's bibliography on steganography
Markus Kuhn's steganography web page andmailing list
S-Tools steganography toolkit
STEGO is a Mac program that hides encrypted data in a PICT file; written by Romana Machado, whose Peek of the Week site features "glamorous erotic art photography"
Adam Back's STEALTH program strips standard headers from a PGP encrypted message, making the result look like random noise
MandelSteg creates a Mandelbrot "fractal" image in which your encrypted data is stored in a specified bit-plane
file archive at Univ. of Vienna

Voice Encryption (telephone security, wiretapping threats) - 3 software programs listed below turn a computer (with modem and sound card) into a secure telephone, using speech compression and strong encryption protocols to provide a secure real-time voice channel over the public telephone system or Internet:

PGPfone - Windows'95/NT version 1.0b1 available from FTP sites in .nl, .fi, and .no; release 1.0b6 for Macintosh (not compatible with previous versions) available from FTP site in .nl; source code available "shortly"
Nautilus v1.0a - voice encryption for DOS and Unix; source code avail.; alternate FTP sites in .it, .uk, and .fi
Speak Freely - Windows application that encrypts and sends real-time voice data over a network; supports encryption with DES, IDEA, or key file; supports PGP for key-exchange
Louis Cypher (LC-1) - a prototype secure telephone unit that uses "fulltime RSA" encryption "for both the exchange of session keys and the data transfer itself"; developed by German students Huwig and Baller
Digital Telephony Initiative and CALEA (Communications Assistance for Law Enforcement Act of 1994) - FBI plan for automated surveillance of millions of phone lines
ATTILA is a traffic analyzer for public telephone and ATM/SONET networks developed for DoD; ATTILA has "powerful wire tapping capability" and can "define filters" to "trigger the capture of traffic on connections between... specified originating and/or terminating call addresses (with wild card fields). The captured traffic could be displayed (heard/seen) in real time or stored in memory for later playback."
Technical Surveillance Countermeasures - extensive information on wiretapping threats and (non-cryptographic) countermeasures

Vulnerabilities - risks & defects in cryptography-based security systems Timing Attack - precise CPU timing of cryptographic computations can reveal key information

Paul Kocher's paper (Dec 1995) brought widespread attention to the timing attack problem
RSA's Comments explain how the timing attack is easy to guard against
Matt Blaze's quantize code for Unix and Win32 defeats the timing attack by inserting a delay time in crypto computations

Bugs Bounty: Community Connexion offers prizes for discovery of security bugs in Netscape, Win95, and Java
security defects in MicroSoft's Windows NT and Win95:

Ted Cabeen's report on how passwords may be stored in the registry's Security section
David Ross wrote a simple C program that breaks the password encryption code in the Windows 95 registry
security bugs in Windows 95
security bugs in Windows 95
Netscape Cracked - Ian Goldberg and David Wagner (CS students at UC Berkeley), writing in Dr. Dobb's Journal (Jan 1996), describe weaknesses they found in the PRNG of Netscape's SSL implementation; see also their report on crypto-quality pseudo-random numbers
Flaw in Kerberos 4.0 reported by 2 Purdue students; caused by inadequate RNG operation, similar to Netscape SSL flaw (previous item)
"Minimal Key Lengths for Symmetric Ciphers to Provide Adequate Commercial Security" (report commissioned by Business Software Alliance) by M. Blaze, W. Diffie, R. Rivest, B. Schneier, T. Shimomura, E. Thompson, and M. Wiener; Jan 1996; Matt Blaze comments that that "more efficient attacks than those we considered might also be possible and should be taken into account by the prudent cryptosystem designer;" ASCII text and PostScript format
UNIX sendmail can be exploited to gain root access; this attack can be hidden in JavaScript (see next item) and works behind firewalls
JAVA and JavaScript pose serious security hazards, not because of any weakness in cryptography, but because security was not part of their original design. Current versions lack features for configurability, authentication, and control over whose applets or scripts are run. Fixes to these security holes will likely incorporate encryption technology.
Directions for Java - musings on policies, threats and liabilities of Java, Livescript and other downloadable applets; by Adam Shostack (Dec 1995)
JavaScript security hole page by John LoVerso of OSF Research Institute
more to come...
more on crack of Netscape
RSA factorization
BellCore report on RSA factorization
NPAC Northeast Parallel Architectures Center - RSA factorization
PGP Attack FAQ - review of how PGP might be attacked or compromised (Feb 1996)
password crackers

Crypto Link Farms

Alexander Geschonneck's security page
Security related papers, pages, X.509 information, publications, network security and firewall vendors, security FAQ's.

Anonymity, privacy, security.
Very nicely done collection of links to anonymity, privacy, and security resources.

Bellare - Crypto links
More link farms, conferences, organizations, electronic commerce, IETF, key forfeiture, crypto people.

Cambridge Computer Security Group Links
Huge collections of links to security-related sites - the format is a bit like this list.

Comprehensive list of Public Key Infrastructure (PKI) links
Links to PKI documents, specifications, CA's, and sites with PKI-related useful information.

Coast Security Archive - Category Index
A large archive of security software, publications, and technical information.

COAST Hotlist Contents
Gene Spaffords crypto and security link farm.

Crypto-Log: Internet Guide to Cryptography
Algorithms and mathematics, FTP archives, bibliographies, key escrow, disk, file, and mail encryption, crypto laws, internet security, newsgroups and mailing lists, protocols and standards, steganography, voice encryption, security problems.

Cryptography
PGP, encryption algorithms, legal issues.

Cryptography: The Study of Encryption
Crypto newsgroups, papers, cypherpunks, crypto policy, digital cash, and other information sources.

Cryptography Technical Report Server (CTRS)
Various crypto-related tech reports.

Cryptography URL
Encryption standards, FAQ's, and FTP sites.

Datacomms Technologies cryptography archive
Encryption software, text files and information, resources and links.

Email security, cryptography and related stuff
PEM, MIME, and MOSS RFCs, links to CA's, implementations, literature, PGP.

European Cryptography Resources
Recommendations, drafts, papers, new items, official bodies, research, and government meddling.

Firewall Security Jump Page
Links and summaries of a wide variety of firewall products.

Gateway to Information Security Home Page
Links to a large number of security-related sites, books, journals, and related information (imagine this page, but not all lumped together on one page).

Home-Page of Markus H�bner
Security, cryptography, hacking, business on the Internet, security software, satellite hacking.

International Cryptographic Software Pages for Encryption, Decryption, Cryptanalysis, Steganography, and Related Methods
Algorithms, software packages, protocols and standards, books, journals, conferences, newsgroups, mailing lists, crypto links.

Links Related to Terrorism, Intelligence, and Crime
A large number of intelligence, security, law enforcement, disaster planning, terrorism, crime, military, and defense agencies and organizations.

Luca Venuti's Home Page - TPC
Electronic privacy links, organisations, newsgroups.

No Big Brother Page
Links to remailers, anon proxies, crypto and stego software, file wiping tools, privacy and anti-privacy organisations.

NCSA Hot Links
Anti-virus software, firewalls, general security vendors, general infosec links, parental control, privacy, law, and ethics.

Neil's Security and Privacy Resources
Encryption, steganography, special events, research, documents, news, security archives, security organizations.

Network/Computer Security Technology
Current events, security web pages, commercial security tools, newsgroups, mailing lists, FAQ's, incident bulletins, conferences/seminars/workshops.

PGP Resources
Resources related to PGP such as mailer add-ons and front-ends, key servers, and related information.

PGP-Users Mailing List Home Page
PGP-related information, remailers, privacy information, security and crypto links.

Pointers to sites with encryption material
Links to FTP sites with email, voice, disk, file, comms encryption, and general crypto toolkits and libraries.

Richard Pinch: Cryptography page
Links to research groups, associations, publications, companies, government institutions, standards, e-commerce, elliptic curves and factoring, historical, newsgroups and publications.

SAIC Security - Security Documents
Firewalls, WWW security, intrusion detection, Unix security, the internet worm, general network security, and trusted systems.

Security and Privacy Issues
Research, PGP, cypherpunks, SHTTP, crypto software, online banking.

Spanish Crypto Resources
Spanish crypto and security-related companies, magazines, and events.

Steganography
Stego papers, references, research groups, related resources.

Technical Information - Cryptography
Links to other crypto sites, source code archives, companies and organisations, peope, and reference information.

The Rotherwick Firewall Resource - Point of Attack
Firewall basics, white papers, products, manufacturers, books, papers, training, mailing lists, links to other firewall-related resources.

Tom Dunigan's Security page
PGP, S/Key, Kerberos, crypto API's, secure applications, commercial providers, government agencies, intrusion detection, vulnerabilities.

TSA (Law Enforcement and Intelligence) Links
More links to law enforcement and intelligence agencies.

Uni-GH Siegen - Security-Server
Encryption algorithms, data protection, steganography, ecash, Internet security, viruses, conferences, security standards, newsgroups and mailing lists, RFC, journals.

Vince Cate's Cryptorebel/Cypherpunk Page
Cypherpunks resources, remailers, digital cash, PGP, and Clipper.

Vinnie's Crypto Links
Crypto overviews and FAQ's, link farms, encrypted comms, e-commerce, crypto libraries.

Crypto FTP Archives

FUNET crypto archive
PGP, symmetric and asymmetric encryption, crypto libraries, papers.

North American Cryptography Archives
Archive of crypto software, only available from the US and Canada.

Oxford Uni crypto archives
DES, SSL, cryptanalysis, documentation, PGP, miscellaneous.

Replay crypto/security archives
Apache, Applied Crypto files, encryption, Java, PGP, remailers, security, voice encryption files.

University of Hamburg crypto archive
Disk and file encryption, PGP, stego, voice encryption.

University of Oslo PGP archive
PGP and PGP-related software.

UREC archive
French archive of CERT bulletins, dictionaries, PC, Unix, VMS security software (mostly anti-virus and access control rather than crypto).

Crypto Social Issues

Gray Areas Magazine Essays and articles on the computer underground (and all sorts of other things). Information About PGP & Encryption Information on the creeping takeover of GAK. Interception Technical details on large-scale GSM and ISDN interception techniques. Internet Privacy Coalition Attempts to ensure privacy on the internet. Interview with David Herson - SOGIS Interview on European crypto policy. ITAR Civil Disobedience Click on this form to become an international arms trafficker. Key Recovery Study The risks of key recovery, key escrow, and trusted third party encryption. KRISIS Home Page GAK/EuroClipper home page. NSA's Influence on New Zealand Crypto Policy NSA influence on New Zealand export policy. No Chance for Key Recovery Paper on key recovery (GAK) vs human and political rights. Phone Tapping Information and resources on government phone tapping plans. Privacy, Inc. Various resources related to the (lack of) privacy, including access to databases and online information search facilities. Privacy International Home Page Privacy reports, interntional agreements on privacy and human rights, surveillance technologies, ID cards, privacy-related conferences. Privacy on the Net: Practical Issues Links and information on various privacy-related issues (cryptography, anonymity, secure communications). Remailer list List of anonymous remailers. Roger Clarke's Privacy Page Data surveillance and information privacy information publications, and legislation. Roger Clarke's Public Interests on the Electronic Frontier Paper discussing various freedoms and rights such as the right to privacy. Roxen's General Export Application for Strong 128-bit Encrypted Denied Swedish government refusal of export permit for 128-bit SSL. RSA as a MIDI file RSA encoded as a MIDI file. Technically this is a program and therefore unexportable from the US. Self Incrimination and Cryptographic Keys Richmond Journal of Law and Technology article on forced disclosure of crypto keys. Services Available from Offshore Information Services Ltd. Offshore internet services and accounts in Anguilla. SOFTWAR Information Security Declassified papers and resources on Clipper and key escrow, voice and mail encryption software. Telekommunikationsgesetz East German surveillance state-style laws being applied in the unified Germany. The Age - Computers DSD meddling in Australian crypto exports. Threat and Vulnerability Model for Key Recovery NSA report on why GAK is bad (yes, you read that right). Tools For Privacy: Version 1 An online book covering threats to privacy, cryptography, PGP, and related issues. TruePosition Wireless Location System Home Page Cellular phone tracking. Updated UK Proposals for Licensing Encryption Services Critique of UK crypto licensing/GAK proposal. U.S. Electronic Espionage: A Memoir First exposure of the NSA and Echelon Walsh Report Report on Australian crypto policy, originally suppressed by the government, then released after a judicial review. What your Browser is Sending See what information your web browser is sending to remote servers.

Crypto Software

Advanced Cryptography Tool
Crypto tool using PGP 2.6.3i with triple DES and SHA-1.

Ambient Empire
Vigenere cipher cracker, Windows port scanner.

Apache HTTP Server Project
Apache secure web server.

BSAFEeay, a public domain implementation of the BSAFE API
BSAFE API wrapper around SSLeay.

Canadian Cryptographic/cryptanalytic software
Canadian encryption software and companies.

CAP
Cryptographic analysis program (automatically analyse and break simple ciphers).

Cedomir Igaly's SSH Page
Free SSH for Windows.

CIPE
Crypto IP encapsulation - encrypting IP routers using Linux.

Cisco Systems ISAKMP Distribution
A reference implementation of the IETF's ISAKMP protocol.

CRASHME: Random input testing.
Tests resistance of programs to random input.

cryptiX
X.509 security package written in Java (page requires a Java-enabled browser to view).

Cryptix Mirror Index
Cryptix Java crypto library.

cryptlib Information
Encryption library supporting both low-level direct access to a large number of algorithms and high-level access to functions like cryptGetKey() and cryptCreateSignature().

Crypto Kong
PGP-like program using elliptic curve crypto.

Cryptographic Libraries: A comparison
Comparison of various free (and free-world) crypto libraries.

Cryptographic software
Elliptic curve and RSA public-key encryption software.

Cryptographic tools for Visual Basic
Elliptic curve OLE extension for VB.

CTC - PGP-compatible encryption software
PGP-compatible C library and Mac application.

Delphi crypto software
Various pieces of crypto software written in, and for, Delphi.

Disk/File Wiping Utilities
Programs to wipe files, free disk space, slack space, the Windows swap file.

Encrypted PDFs
Code to work with encrypted PDF's (intended mainly for use with Ghostscript).

Enabling Network Security with SSLeay
Security projects based on SSLeay.

Enigma
PGP-compatible plugin written in Java.

Error Correcting Codes (ECC) Home Page
C source code and information on ECC's (the techniques employed are closely related to encryption techniques).

ESP Reference
Encrypted socket protocol (an open protocol for TCP/IP secure transmissions).

FastCAST's Homepage
P5-optimised code for CAST-128/CAST5.

Fortify for Netscape - Home Page
Free 128-bit SSL browser proxy,

Frank O'Dwyer's Homepage - Security Code
DES in Java, C++ firewall class library.

Fresh Free FiSSH!
Free SSH client for Win'95 and NT.

Fuzzy Logic: Cryptography
The GNU encryption project.

G10 - A Free PGP Replacement
GPL'd PGP clone.

GMD Security Technology - SecuDE
Security toolkit for RSA, DSA, DES, DH, X.509, PKCS, PEM, X.500, and BYOG.

Hamradio page of Thomas M. Sailer, HB9JNX
All sorts of neat stuff for software decoding of various radio signals.

Hassop Cottage PGP Page
PGP sites, key servers, remailers.

Heimdal
Non-US Kerberos 5 implementation.

IAIK - Javasecurity Homepage
Java cryptography extensions from the free world.

International PGP Home Page
How to get PGP, documentation, foreign-language support, PGP-related products and services, and other PGP resources.

Internet Locations for Materials on the Disks for Applied Cryptography
Site #1.

Internet Locations for Materials on the Disks for Applied Cryptography
Site #2.

IRDU PGP Page
PGP information, software, key management, key server interface, PGP links.

JGSS Package Distribution Page
Kerberos in Java.

Keytrap Home Page
Dcyphers keyboard sniffer.

libch's Homepage
P5-optimised code for various hash algorithms.

LInteger
C++ bignum library.

Linux FreeS/WAN Project
IPSEC, ISAKMP/Oakley and DNSSEC software for Linux.

Linux Packet Sniffer
IP packet sniffer for Linux.

Microsoft CryptoAPI
Microsoft's attempt at a cryptograhpy API. This page moves a lot, you may need to try a search from MS's developer pages.

Ming-Ching Tiew Home Page
PGP key manager, PGP netscape plugin, Motif and Win32 file encrypter using cryptlib, cryptlib Java wrappers.

Mozilla Crypto Group
Putting the crypto back into Netscape/Mozilla.

Nautilus Homepage
Speech encryption (with a neat anti-Clipper graphic).

Package Acme.Crypto
Various Java crypto classes.

PC Security Software & Sources
Brief descriptions of various security programs.

PGP Tools
PGP function library.

PGPLIB
DLL which implements various PGP functions.

PGPNet Server
A dummy home page for the www.pgp.net domain (incomplete).

Private Idaho User's Manual
Documentation for Private Idaho.

RC4 Stream Cipher Library
RC4 ActiveX control.

RIPEM
RIPEM source code and information.

RSA Free Utilities
RSA key generation and encryption for Linux.

RSAEURO - Cryptography For The World
European RSAREF providing full source-code compatibility with the original.

Secure FileSystem Information
The world's best transparent disk encryption software for DOS and Windows (this has nothing to do with the fact the I'm the author :-).

Security: File wiping
Links to various file wiping utilities.

Sir Winston Rayburn - Crypto/Politico
Various encryption reoutines.

S/MIME Freeware Library
S/MIME freeware library (export-controlled, US only).

SNOW Home Page
Whitespace steganography software.

spDES Encryption Control
ActiveX DES control.

Ssh (Secure Shell) Home Page
Very good encrypted, digital-signature-authentication remote access software (replaces the r* utilities, allows X11 and TCP port redirection over the encrypted connection).

SSLeay and SSLapps FAQ
Very nice, free SSL implementation (like Netscape's SSL, but without the bugs and crippled encryption).

Speak Freely for Windows
Encrypted voice communications over the internet.

SRP: Secure Password Authentication for the Net
Secure password-based authentication over insecure networks.

Systemics Software Archive
Crypto extensions for perl and Java.

The Cryptography and PGP Page
Classic ciphers, links to crypto sites, explanations of the maths behind PGP and RSA, privacy issues.

Tiny Encryption Algorithm
Description and C source code.

Transparent Cryptographic File System

TSS PGPWord... Real Security, Real Easy
PGP encryption integrated into Word for Windows.

Uni-GH Siegen - Security-Server - Kryptographie
Pointers to information on and implementations of a number of conventional, public-key, and hash algorithms.

Vitas DownLoad area
Windows'95 password (.PWL) viewer.

Wei Dai's Crypto++
C++ class library of cryptographic primitives.

WinPGP(tm) Home Page
Windows front-end for PGP.

Wipe 0.02
Heavy-duty file wiper for Linux.

XPDF additions
Add-on to allow XPDF to decrypt encrypted PDF files.

Data Encryption

Aegis Research Corporation
Windows PGP shell.
Atalla
Network and internet security processors and solutions.
Avalanche Java Cryptography Toolkit
Encryption, hash functions, and secure random number generation in Java.
Baltimore | Products
Crypto systems toolkit - DES, IDEA, RSA, DSA, RIPEMD, SHA1, MD2, MD5, X.509/CA toolkit, email security software.
BBN Security
SafeKeyper tamperproof hardware key storage.
BestCrypt family of Data Protection systems
GOST and DES software/hardware encryption for DOS/Windows.
Blowfish Advanced Download Site
Blowfish file encryption for DOS and Win95.
Bokler Software's Home Page
DES and hashing DLL's and OCX's.
Briggs Softworks: Software
Directory snoopper/file eraser, file encryption for Windows.
Brokat X*PRESSO Home Page
Secure non-US encryption by adding another layer of 128-bit encryption over the top of the US crippled 40-bit version.
Business Security home page
Fax, video, voice, and modem encryption.
CellCase Key Agile ATM Encryptor
RSA/triple DES ATM link encryptor.
Certicom
Elliptic curve cryptosystem products.
CES Home Page
Phone and fax encryption add-on (questionable algorithm).
Chrysalis ITS - Product Information
PCMCIA encryption cards.
Cisco Network Encryption Services
DSA-signed DH for link and session encryption.
Citadel Products
Firewall/VPN, Windows file encryption.
Clipper and Fortezza: Pictures and Info
CodedDrag
Drag-and-drop DES encryption for Win95/NT.
Cold Fusion Power Packs
Encryption/decryption, credit card processing, for Cold Fusion.
Communication Security Corporation Home Page
Diffie-Hellman and triple DES speech encryption. No GAK.
Computer Development Systems Crypto Page
Link encryption hardware, file and fax encryption software (unknown algorithm).
ComScire QNG From Quantum World
Johnson-noise-based RNG for PC parallel ports.
Condor - Secure Ubiquitous Portable Interoperable Communications Buzzword Buzzword
Secure Fortezza-protected voice and data over celluylar links.
Confidentiel : Pr�sentation
Mac file encryption, approved by the French secret service.
CoreDesign
Royalty-free Verilog PKC core.
CRYTEK Communications - Secure Telephone Adaptor
Key-based subband voice scrambler. Uses Diffie-Hellman key exchange, but a questionable encryption function "based on matrix multiplication".
Cryptext
Win95/NT 4 encryption shell extension.
Crypto AG Switzerland
Encryption software and hardware of all kinds (but see also the link in the "Crypto Social Issues" section).
CryptoEx 1.0
PGP add-on for MS Exchange.
Cryptomathic homepage
Encryption and security software and consulting.
CSM Proxy Server - The Ultimate Gateway to the Internet
Proxy which includes SSL tunnelling.
Cybanim
PEM software, bignum maths package.
Cylink Corporation
Cypris
Lockheed Martin's crypto processor.
DATACRYPT Home Page
File and file transfer encryption (unknown algorithm).
DataGuard� - The Software Safe
IDEA and SEAL file encryption for Win32.
Deming Software
S/MIME software for MS Exchange and Eudora.
D.I.C.A. ISDN Encryptor
ISDN link encryption using FEAL 16, IDEA, or DES.
Digital Delivery
Secure (encrypted) software and information distribution systems.
Diskcrypt 95
Floppy drive encryption for Windows 95.
DubnerCruncher
Very fast bignum maths card for PC's.
EES Family Data Sheet
Clipper chips.
EMD Enterprises
Win95/NT anti-virus and encryption software.
Encrypt-It Plus
DLL/VBX/OLE control providing DES and 3 other (unknown) encryption algorithms.
Encryption Plus
Encryption for Visual Basic.
Encrytor
DES file encryption for Windows.
Entrust - Home Page
Nortel's Entrust cryptography product family.
ERACOM - Encryption Adaptors
Encryption toolkits, DES encryption hardware for PC's.
F-Secure Cryptography Products
Windows/Unix <-> Windows/Unix link encryption with secure telnet, X11, port forwarding, etc. The link is encrypted with algorithms like triple DES or Blowfish, with 1024-bit RSA for key exchange an authentication.
Formal Systems
X.509 certificate viewer, PKI, encryption services and consulting.
FORTEZZA Developers Home Page
Fortezza ISA Bus Crypto Card
Fortezza on an ISA card.
Frontier Technologies e-Lock Home Page
PKCS/X.509 and S/MIME key management, signing, secure email and browser.
Fulltime RSA
RSA speech encryption for PSTN lines.
Global Technologies Group, Inc.
Products based on the German SuperCrypt DES/triple DES chip.
Hide Me for Windows
Windows file encryption, unknown algorithm.
HRB Systems
Data encryption products (an division of E-Systems)
IBM SecureWay
Data encryption, security, consulting.
INFOSEC Products
Triple DES file encryption for Windows.
International Cryptography Framework
HP's international big brother design.
Internet Solution Security (Pty) Ltd
Access control, electronic commerce, 128-bit SSL proxy.
Internet Security Group
CryptoSwift public-key encryption hardware accelerator.
Internet Smartsec
Internet security technology (knowledge of Swedish useful).
Invincible Data Systems, Inc.
PGP - compatible encryption software for e-mail, hard disk encryption, access control hardware tokens.
iPower Home Page
National's PCMCIA crypto card.
IRE Product Catalog
Network and link encryption hardware.
ISC Products
Email encryption, crypto toolkits, encrypted Zmodem.
ISDN Encryptor
Kremlin
Win95/NT drag-and-drop file encryption.
Kryptology Home Page
Snake oil for the masses.
Langley System Web Site
Floppy disk encryption software.
Lintel Security
DES and RSA encryption chips and hardware.
LUC ENcryption Technology (LUCENT) Limited
Lucas-function based PKC.
Motorola SSTG Secure Telecom Products
Morotola secure phones and fax and data communications products.
nCipher products
Hardware crypto accelerators.
NetFortress
Network link encryption.
NetLOCK(tm) Network Security
Encryption and authentication for LANs and WANs.
NEXUS Solutions NTrust
Blowfish encryption for Windows.
NTrust
Blowfish file encryption.
PGP -- Pretty Good Privacy, Inc. Home Page
PGP Tools from Net Services
Windows front-end for PGP.
Phaos Technology
SSL in Java.
PIJNENBURG Beheer N.V.
Cool RSA/bignum and DES/triple DES encryption hardware.
PowerCrypt Website
PEM and S/MIME encryption for the Power Mac.
Private Data - Protecting your privacy with innovative products
Disk encryption for Win95 (unknown algorithm).
Psypher/EDI+
DES EDI encryption.
Racal/Airtech Security
Various access control and security products.
Rainbow Technologies Internet Security Group
CryptoSwift crypto hardware accelerator.
RAMPART for DOS/Windows
DES encryption software and other utilities.
Reflex Magnetics - homepage
Secure FTP, mail, modem encryption using DES, 3DES, Blowfish, or IDEA.
RPK Public Key Cryptography
Crypto SDK and email software utilising a new, fast discrete-log-over-GF(2^k) based PKC.
RSA Data Security, Inc.
SAFE Folder
Transparent Win95 file encryption.
SafeHouse Drive Encryption
DES disk encryption for Win3.x/Win95.
SafePassage Web Proxy
Full-strength encrypting web proxy which bypasses US export restrictions.
SandTiger
File encryption using Blowfish, CAST-128, and Diamond2.
SCI Web Page
PCMCIA-based disk and file encryption.
Secure Link Services Ltd (SLS), DataGuard Family
Disk and file encryption using IDEA, SEAL, and PKC's). Note that this company is located in the free world (Switzerland), despite the .net address.
SecureFile
File encryption and signing for Win95/NT
SECURE...Encryption and Security for all
DES and IDEA encryption software for Windows.
SecureOffice
Triple DES encryption add-on for MS Office.
SecureStore Homepage
File encryption using DES, triple DES< Blowfish, CAST-128, Diamond2, RC4.
SecureWin
Win95/NT file encryption using RSA and the BSAFE conventional algorithms, other security tools (eg secure delete, secure shutdown).
Security Domain: electronic message security
Public-key file encryption, CA software.
Sioux: Sophisticated & Secure
Apache-based secure web server.
SKIP Information
Simple Key management for Internet Protocols - papers, information, implementations (US only).
SKIP in Russia
As above, without the export restrictions.
Soft Concepts
Ncrypt file archiving, compression, and encryption utilities.
SoftWings Enterprises Inc
DES/triple DES protected OS/2 data transfer.
SoftWinter - Shade page
Disk encryption for Windows NT.
SoundCode, Inc.
Crypto libraries and software.
SSL HTTP Security Solution
128-bit SSL proxy - turns crippled SSL browsers into full-strength encryption ones.
SSL Plus (Product)
SSL Plus SSL integration suite.
SSLava
SSL 3.0 implemented in Java.
SSLP Reference Implementation Project
An SSL reference implementation (still under development).
SSRSSL
Secure sockets relay - full-strength SSL proxying.
Stronghold Homepage
Apache-based secure web server.
SynCrypt
File and email encryption using Elgamal, Blowfish, IDEA, and triple DES.
tbCrypt
Win95/NT, OS/2, DOS file encryption using DES, IDEA, Blowfish, NewDES, and Lucifer.
TeamWARE Crypto
ICL's Windows file encryption software.
TecApro Internacional - Home page
Win95 file encryption.
Templar Software and Services
Secure EDI over the Internet.
TimeStep - The Network Security Standard
VPN encryption systems using DES encryption and X.509 certificates and digital signatures for authentication.
TorDisk HomePage
NT disk encryption for hard drives, CDROM's, networks, using DES, triple DES, Safer, Blowfish, CAST-128.
Transcrypt Product Overview
Phone encryption devices and add-ons.
TrustedWeb
Intranet ACL-based security and encryption using RSA and triple DES.
TSS OfficeLock - Data Security for Microsoft Office
Strong encryption for MS Office documents.
UCrypt
DES, triple DES, GOST, Blowfish, 3-Way, RC5, TEA, Safer, Shark, Diamond-2, and others.
Utimaco Safeware AG
DOS, OS/2, Windows encryption software, encryption hardware.
Virtually Online
SEMS email encryption using the RPK algorithm.
VPNet: Products
WAN VPN encryption products using DES and triple DES with SKIP key management.
Wormhole technologies
PKC-based email encryption software.
Xcert Software
Access control, X.509-related software.

And don't forget to check out all the crypto links and materials on our first crypto related resource page !!

Click here to load the second web page of crypto links...

	Our News Resources have been upgraded to bring you the latest news from around the World. Check out the latest news by clicking HERE
The Security Portal for Information System Security Professionals The most comprehensive computer and network security resource on the Internet for Information System Security Professionals - Says Yahoo Editors