46 Open Source Hsm Software Projects
Free and open source hsm code projects including engines, APIs, generators, and tools.
Nitrokey Encryption Tool28 ⭐
Command line interface application which uses on-device RSA keys (through OpenSC and PKCS#11) to encrypt/decrypt AES key used in turn to perform operation on user data
Grapheneos Auditor249 ⭐
Hardware-based attestation / intrusion detection app for Android devices. It provides both local verification with another Android device via QR codes and optional scheduled server-based verification with support for alert emails. It uses hardware-backed keys and attestation support as the foundation and chains trust to the app for software checks.
Bank Vaults1562 ⭐
A Vault swiss-army knife: a K8s operator, Go client with automatic token renewal, automatic configuration, multiple unseal options and more. A CLI tool to init, unseal and configure Vault (auth methods, secret engines). Direct secret injection into Pods.
Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.
HSMWiz is a frontend for OpenSC, pkcs11tool and pkcs15tool to ease handling of HSM smartcards
A small subset of the submitted sample data from https://github.com/GrapheneOS/Auditor. It has a sample attestation certificate chain per device model (ro.product.model) along with a subset of the system properties from the sample as supplementary information.
Blockchain Crypto Mpc245 ⭐
Protecting cryptographic signing keys and seed secrets with Multi-Party Computation.
Framework for state machines with run-to-completion concurrency using asyncio. Python 3.4 or later
Uml State Machine In C72 ⭐
A minimalist UML State machine framework for finite state machine and hierarchical state machine in C
Highly scalable and high-performance open source PKI (CA and OCSP responder). Minimal dependencies.
Ecadlabs Signatory34 ⭐
Signatory - A Tezos Remote Signer for signing block-chain operations with private keys using YubiHSM and Azure Key Vault
Globalsign Est14 ⭐
An implementation of the Enrollment over Secure Transport (EST) certificate enrollment protocol
Tool to generate workload on PayShield 10k or 9k for the sake of testing and demonstration.
KStateMachine is a Kotlin DSL library for creating finite state machines (FSM) and hierarchical state machines (HSM).
C++ based Hierarchical / Finite State Machine library oriented for embedded and RTOS systems.
Vaultplugin Hsmpki11 ⭐
The Vault HSM PKI plugin overlays the modifications to the builtin PKI plugin that enable support for certificate signing using a Hardware Security Module via PKCS#11.
Dogtagpki Pki147 ⭐
The Dogtag Certificate System is an enterprise-class Certificate Authority (CA) which supports all aspects of certificate lifecycle management, including key archival, OCSP and smartcard management.
PKCS#11 library and tools for Linux. Includes tokens supporting TPM and IBM crypto hardware as well as a software token.