SoftHSM 2 is a software implementation of a generic cryptographic device with a PKCS #11 Cryptographic Token Interface.

This package provides library to encode/decode base64, base64url, base32, base32hex and hex.

OpenSC is a set of software tools and libraries to work with smart cards, with the focus on smart cards with cryptographic capabilities. OpenSC facilitate the use of smart cards in security applications such as authentication, encryption and digital signatures. OpenSC implements the PKCS #15 standard and the PKCS #11 API.

This package contains a C library and command-line tools that make up the low-level development kit for the Yubico YubiKey authentication device.

The Belgian eID middleware is required to authenticate with online services and sign digital documents with Belgian identity cards.

It requires a running pcscd service and a compatible card reader.

This package includes the IFD driver for the cyberJack contactless (RFID) and contact USB chipcard readers.

Cardpeek is a graphical tool to read the contents of ISO7816 smart cards. It is extensible with the LUA scripting language.

It supports the following type of cards:

• Bank cards (VISA, MasterCard, CB and UK Post Office Account cards)

• Passports and the Belgian identity card

• Transport cards (Navigo, MOBIB, RavKav and VIVA cards)

• Older GSM SIM cards without USIM data

• Vitale 2 Health card

• Moneo Electronic purse card

• Driver Tachograph cards

• OpenPGP Cards (beta)

It also has limited support for Mifare Classic compatible cards (Thalys card)

This application provides support for using private and governmental e-services, signing and encrypting DigiDoc documents, and configuring Estonian ID cards. It requires a running pcscd service and a compatible card reader.

Python library and command line tool for configuring a YubiKey. Note that after installing this package, you might still need to add appropriate udev rules to your system configuration to be able to configure the YubiKey as an unprivileged user.

SETools is a collection of graphical tools, command-line tools, and libraries designed to facilitate SELinux policy analysis.

The policycoreutils package contains the core utilities that are required for the basic operation of an SELinux-enabled GNU system and its policies. These utilities include load_policy to load policies, setfiles to label file systems, newrole to switch roles, and run_init to run service scripts in their proper context.

The libsemanage library provides an API for the manipulation of SELinux binary policies.

This package contains a Python module that forms the core of audit2allow, a part of the package policycoreutils. The sepolgen library contains: Reference Policy Representation, which are Objects for representing policies and the reference policy interfaces. It has objects and algorithms for representing access and sets of access in an abstract way and searching that access. It also has a parser for reference policy "headers". It contains infrastructure for parsing SELinux related messages as produced by the audit system. It has facilities for generating policy based on required access.

The libsepol library provides an API for the manipulation of SELinux binary policies. It is used by checkpolicy (the policy compiler) and similar tools, and programs such as load_policy, which must perform specific transformations on binary policies (for example, customizing policy boolean settings).

The libselinux library provides an API for SELinux applications to get and set process and file security contexts, and to obtain security policy decisions. It is required for any applications that use the SELinux API, and used by all applications that are SELinux-aware. This package also includes the core SELinux management utilities.

The SELinux CIL compiler is a compiler that converts the common intermediate language (CIL) into a kernel binary policy file.

This package provides the tools "checkpolicy" and "checkmodule". Checkpolicy is a program that checks and compiles a SELinux security policy configuration into a binary representation that can be loaded into the kernel. Checkmodule is a program that checks and compiles a SELinux security policy module into a binary representation.

sqv verifies detached OpenPGP signatures. It is a replacement for gpgv. Unlike gpgv, it can take additional constraints on the signature into account.

This Guix package is built to use the nettle cryptographic library.

This package provides an implementation of OpenPGP's web of trust.

This Guix package is built to use the nettle cryptographic library.

Sequoia is a new OpenPGP implementation, written in Rust, consisting of several Rust crates/packages. This Guix meta-package combines these packages into a single one for convenience. Anyhow, you should not depend other packages on this one avoid excessive compile-times for users.

This package provides the command-line frontend for Sequoia OpenPGP.

This Guix package is built to use the nettle cryptographic library and the gpg-agent, openpgp-card and softkeys keystore backends.

This package provides Sequoia's reimplementation of the GnuPG interface.

gpg-sq is Sequoia's alternative implementation of a tool following the GnuPG command line interface. It provides a drop-in but not feature-complete replacement for the GnuPG project's gpg.

This Guix package is built to use the nettle cryptographic library.

Libfyaml is a YAML parser and emitter, supporting the latest YAML spec and passing the full YAML testsuite. It is designed to be very efficient, avoiding copies of data, and has no artificial limits like the 1024 character limit for implicit keys.

Libmpack is a small binary serialization and RPC library that implements both the msgpack and msgpack-rpc specifications.