This is a C library that implements the server-side of the Universal 2nd Factor (U2F) protocol. More precisely, it provides an API for generating the JSON blobs required by U2F devices to perform the U2F Registration and U2F Authentication operations, and functionality for verifying the cryptographic operations.

Yubikey-oath-demenu lets you pick an OATH credential from your YubiKey using dmenu, and copies the corresponding OTP to the clipboard. Alternatively, it can "type" the OTP using xdotool on X11.

Notable features:

• Pick between all credentials on all connected YubiKeys

• No mouse interaction required

This package provides a PC/SC IFD handler implementation for devices compliant with the CCID and ICCD protocols. It supports a wide range of readers and is needed to communicate with such devices through the pcscd resource manager.

This package includes the IFD driver for the cyberJack contactless (RFID) and contact USB chipcard readers.

This package contains a C library and command-line tools that make up the low-level development kit for the Yubico YubiKey authentication device.

Pkcs11-helper is a library that simplifies the interaction with PKCS#11 providers for end-user applications. PKCS#11 is published standard. PKCS#11 is the de-facto standard to access cryptographic devices

The libsemanage library provides an API for the manipulation of SELinux binary policies.

SETools is a collection of graphical tools, command-line tools, and libraries designed to facilitate SELinux policy analysis.

The libselinux library provides an API for SELinux applications to get and set process and file security contexts, and to obtain security policy decisions. It is required for any applications that use the SELinux API, and used by all applications that are SELinux-aware. This package also includes the core SELinux management utilities.

The SELinux CIL compiler is a compiler that converts the common intermediate language (CIL) into a kernel binary policy file.

The libsepol library provides an API for the manipulation of SELinux binary policies. It is used by checkpolicy (the policy compiler) and similar tools, and programs such as load_policy, which must perform specific transformations on binary policies (for example, customizing policy boolean settings).

This package contains a Python module that forms the core of audit2allow, a part of the package policycoreutils. The sepolgen library contains: Reference Policy Representation, which are Objects for representing policies and the reference policy interfaces. It has objects and algorithms for representing access and sets of access in an abstract way and searching that access. It also has a parser for reference policy "headers". It contains infrastructure for parsing SELinux related messages as produced by the audit system. It has facilities for generating policy based on required access.

This package provides the tools "checkpolicy" and "checkmodule". Checkpolicy is a program that checks and compiles a SELinux security policy configuration into a binary representation that can be loaded into the kernel. Checkmodule is a program that checks and compiles a SELinux security policy module into a binary representation.

The policycoreutils package contains the core utilities that are required for the basic operation of an SELinux-enabled GNU system and its policies. These utilities include load_policy to load policies, setfiles to label file systems, newrole to switch roles, and run_init to run service scripts in their proper context.

This package provides Sequoia's reimplementation of the GnuPG interface.

gpg-sq is Sequoia's alternative implementation of a tool following the GnuPG command line interface. It provides a drop-in but not feature-complete replacement for the GnuPG project's gpg.

This Guix package is built to use the nettle cryptographic library.

This package provides an implementation of OpenPGP's web of trust.

This Guix package is built to use the nettle cryptographic library.

Sequoia is a new OpenPGP implementation, written in Rust, consisting of several Rust crates/packages. This Guix meta-package combines these packages into a single one for convenience. Anyhow, you should not depend other packages on this one avoid excessive compile-times for users.

sqv verifies detached OpenPGP signatures. It is a replacement for gpgv. Unlike gpgv, it can take additional constraints on the signature into account.

This Guix package is built to use the nettle cryptographic library.

This package provides the command-line frontend for Sequoia OpenPGP.

This Guix package is built to use the nettle cryptographic library and the gpg-agent, openpgp-card and softkeys keystore backends.

LibYAML is a YAML 1.1 parser and emitter written in C.

LibCYAML is a C library written in ISO C11 for reading and writing structured YAML documents. The fundamental idea behind CYAML is to allow applications to construct schemas which describe both the permissible structure of the YAML documents to read/write, and the C data structure(s) in which the loaded data is arranged in memory.

Cap'n Proto is a very fast data interchange format and capability-based RPC system. Think JSON, except binary. Or think Protocol Buffers, except faster.

This package provides a C library for parsing scfg, a simple configuration file format with one directive per line.

Msgpack is a library for C++ that implements binary serialization.