OpenPGP Implementations and Related
locally hosted software
- Tom Zerucha's reference OpenPGP
implementation (C code, uses openSSL library, BSD license --
home site?)
- Adam Back's pgpdsa minimalistic openPGP
compatible dsa signature code (C code, uses openSSL library,
public domain code -- home site)
- Adam Back / Henry Hastur's PGP stealth
(version 1.x by Henry Hastur (a nym), version 2.x mods by
Adam Back) PGP 2.x steganography tool for PGP to normalize PGP
messages (C code, open source -- home site)
pointers to remotely hosted software
- PGP Corporation
all
pgp source and binaries (as of pgp 5: C++ code,
commercial only versions plus non-commercial use versions
zedz.net crypto collection)
- Glueck and Kanja Technologies (formerly Biodata) OpenPGP compatible
product suite CryptoEx.
Includes OpenPGP and S/MIME compatibility, outlook and lotus notes
plugins, comprehensive smart card support, key servers and enterprise
administration tools. Also have OpenPGP toolkits. (Commercial
license plus freeware outlook plugin).
- Gnu Privacy Guard GPG full
openPGP implementation (C code, uses own crypto library, GNU GPL
license -- link)
- Hushmail version 2 is based on OpenPGP
hush
.
- Anonymizer Inc's
mixmaster
remailer software (version 2 written by Lance Cottrell (of
Anonymizer), then re-written for version 3 by Ulf Moeller
outside US due to US export regulations at that time; currently
maintained by Len Sassaman) includes quite complete native
OpenPGP support for type I remailer support (C code, uses
OpenSSL crypto library, open source license -- link)
- SSH2 has partial OpenPGP support
ssh2
- Peter Gutmann's
cryptlib
and cryptlib site robust
general crypto library with open source and full PGP
support -- support PGP keyrings, just as read-only key stores
(actually it could do write as well, but it encourages
use of the protocol-agnostic PKCS #15 rather than PGP,
PKCS #12, etc) (C code, sleepycat license -- users choice
of GPL or commercial -- link).
- Veridis FileCrypt SDK
openPGP implementation in library form (C/C++ code, commercial
license)
- Benjamin Trott's
Crypt::OpenPGP perl module openPGP implementation (perl code,
opensource: Artistic License -- link)
- Cryptix Foundation's
cryptix
openpgp implementation of openPGP (java code, BSD license
-- link)
- Kazuhiko Yamamoto's
pgpdump
openPGP file analyser (C code, open source license -- link)
- John Callas'
PGPDump
and
PGPMiniCertLib(C, non-commercial use license -- link)
- Mark Shoulsen's PGPacket
openPGP file analyser (perl code, open source -- link)
- Salvo Salasio's
OpenPGP packet parser
Internet Drafts
-
forward secrecy Forward Secrecy Extensions for OpenPGP,
Brown, Back, Laurie (how to add forward-secrecy to
OpenPGP -- forward-secrecy makes it harder for someone to obtain
your private key -- because the private keys are deleted as soon
as practical after use).
-
replacement key Key Replacement for Revoked Keys in OpenPGP,
Shaw (something about replacing revoked keys)
References
Standards IETF and de-facto
- RFC-1991 PGP Message
Exchange Formats, Atkins, Stallings, Zimmermann
(PGP-2.x message formats)
-
RFC-2440 (bis 03 -- latest revision) OpenPGP Message Format,
Callas, Donnerhacke, Finney, Thayer (openPGP message
formats)
- [RFC-2440 (original) OpenPGP
Message Format, Callas, Donnerhacke, Finney, Thayer
(openPGP message formats)]
- RFC-2015 MIME security
with Pretty Good Privacy (PGP), Elkins (PGP-2.x MIME)
- RFC-3156 MIME security
with OpenPGP, Elkins, Del Torto, Levien, Roessler
(openPGP MIME)
References