The latchset organization hosts projects related to applications or libraries for use in cryptography or security context and primarily targeted at Linux and Unix-like operating systems.
Clevis is a plugable framework for automated decryption. It can be used to provide automated decryption of data or even automated unlocking of LUKS volumes. Tang is a server for binding data to network presence.
Crypto-Auditing Provides a way to monitor cryptographic operations performed on a system
Custodia is a service to manage, retrieve and store secrets.
josé is a C-language implementation of the Javascript Object Signing and Encryption standards with plugable backends. pyjose provides bindings for Python.
jwcrypto is a pure Python implementation of JOSE on top of PyCA cryptography.
kdcproxy is a WSGI module for proxying Kerberos KDC requests over HTTPS by following the MS-KKDCP protocol specification.
libverto is an asynchronous event loop abstraction library. It provides a C interface which is backend-agnostic, as well as several backends, and can select a provider at either compile-time or run-time.
Misc and experimental projects.
mod_auth_mellon An Apache module with a simple SAML 2.0 service provider
Projects related to the PKCS#11 standard
pkcs11-provider is an OpenSSL provider module to allow applications linking to OpenSSL to transparently use PKCS#11 tokens for cryptographic operations.
pkcs11-headers an Open Source licensing friendly rewrite of pkcs11 headers for C applications.
kryoptic a Cryptoki software token written in Rust implementing the latest PKCS#11 API version.