awesome-repositories.com
Blog
awesome-repositories.com

Entdecke die besten Open-Source-Repositories mit KI-gestützter Suche.

EntdeckenKuratierte SuchenOpen-Source-AlternativenSelf-hosted SoftwareBlogSitemap
ProjektÜber unsRanking-MethodikPresseMCP-Server
RechtlichesDatenschutzAGB
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

28 Repos

Awesome GitHub RepositoriesAuthenticated Encryption

Cryptographic primitives for signing and encrypting data to ensure confidentiality and integrity.

Distinguishing note: Focuses on the specific combination of encryption and authentication for data at rest.

Explore 28 awesome GitHub repositories matching security & cryptography · Authenticated Encryption. Refine with filters or upvote what's useful.

Awesome Authenticated Encryption GitHub Repositories

Finde die besten Repos mit KI.Wir suchen mit KI nach den am besten passenden Repositories.
  • restic/resticAvatar von restic

    restic/restic

    34,445Auf GitHub ansehen↗

    This project is a command-line utility designed for secure, content-addressable data archiving. It functions as an encrypted backup tool that stores data as deduplicated chunks, ensuring that every piece of information is identified by a cryptographic hash to maintain integrity across all backups. By applying strong encryption and message authentication codes to both data and metadata, the software prevents unauthorized access and detects potential tampering. The tool distinguishes itself through a backend-agnostic storage abstraction that allows users to maintain repositories across diverse

    Protects all stored data and metadata using strong cryptographic primitives to prevent unauthorized access and detect tampering.

    Gobackupdedupededuplication
    Auf GitHub ansehen↗34,445
  • prefecthq/fastmcpAvatar von PrefectHQ

    PrefectHQ/fastmcp

    22,994Auf GitHub ansehen↗

    FastMCP is a Python framework designed for building servers that expose functions, resources, and prompts to AI models using the Model Context Protocol. It simplifies the development process by automatically deriving tool metadata, input schemas, and documentation directly from Python function signatures and type hints. The framework provides a unified container for managing these components, allowing developers to build modular applications that integrate seamlessly with AI assistants. The project distinguishes itself through its support for interactive, server-defined user interface compone

    Stores authentication tokens securely in an encrypted format to maintain user sessions.

    Pythonagentsfastmcpllms
    Auf GitHub ansehen↗22,994
  • screenpipe/screenpipeAvatar von screenpipe

    screenpipe/screenpipe

    16,932Auf GitHub ansehen↗

    Screenpipe is a local-first platform designed to record, index, and analyze desktop activity. By capturing screen, audio, and keyboard input, it creates a comprehensive and searchable history of computer usage. The system functions as an activity recorder and automation framework, providing a persistent, context-aware memory that allows artificial intelligence agents to observe and interact with local desktop environments. The platform distinguishes itself through a privacy-focused architecture that processes all data locally. It utilizes on-device computer vision and speech recognition to tr

    Protects recorded activity logs using authenticated encryption to ensure data security at rest.

    Rustagentsagiai
    Auf GitHub ansehen↗16,932
  • quarkusio/quarkusAvatar von quarkusio

    quarkusio/quarkus

    15,479Auf GitHub ansehen↗

    Quarkus is a Kubernetes-native Java framework designed for building high-performance, memory-efficient applications. It utilizes ahead-of-time native compilation to transform Java code into standalone, optimized binaries that eliminate the need for a virtual machine, enabling rapid startup and reduced memory consumption. By performing code augmentation during the build phase, it shifts heavy processing tasks away from runtime, ensuring that applications are optimized for cloud-native environments. The framework distinguishes itself through a unified approach to reactive and imperative program

    Provides cryptographic primitives for signing and encrypting data to ensure both authenticity and confidentiality.

    Javacloud-nativehacktoberfestjava
    Auf GitHub ansehen↗15,479
  • cryptomator/cryptomatorAvatar von cryptomator

    cryptomator/cryptomator

    15,310Auf GitHub ansehen↗

    Cryptomator is a client-side cloud encryption tool and cross-platform vault manager. It provides a transparent encryption layer that encrypts files and folder structures locally before they are uploaded to a cloud storage provider. The software creates virtual encrypted drives that mount encrypted vaults, allowing users to interact with their data as if it were on a physical disk. It supports the management of multiple independent encrypted containers, each protected by a unique password. The project covers data privacy through directory structure obfuscation and filename encryption to hide

    Implements authenticated encryption to ensure both confidentiality and the integrity of encrypted files.

    Javacloud-storagecryptocryptography
    Auf GitHub ansehen↗15,310
  • systemd/systemdAvatar von systemd

    systemd/systemd

    15,324Auf GitHub ansehen↗

    systemd is a comprehensive system and service manager for Linux that orchestrates the entire operating system lifecycle. It functions as the primary init system, managing the transition from firmware to a fully initialized user space while providing a unified framework for service orchestration, hardware management, and resource control. The project distinguishes itself through its declarative, unit-based configuration model and dynamic dependency resolution, which allow for efficient, on-demand service activation and socket-based process management. It integrates deep system observability th

    Secures home directory contents using disk-level encryption containers that unlock upon user authentication.

    Ccinitlinux
    Auf GitHub ansehen↗15,324
  • jedisct1/libsodiumAvatar von jedisct1

    jedisct1/libsodium

    13,467Auf GitHub ansehen↗

    Libsodium is a portable, C-based cryptographic library that provides a collection of modern primitives for encryption, decryption, digital signatures, password hashing, and secure key exchange. It is designed to facilitate secure communication and data integrity across diverse hardware architectures and operating systems. The library distinguishes itself by utilizing constant-time primitive execution to prevent side-channel attacks and employing memory-hard algorithms to increase the difficulty of brute-force password attacks. It abstracts complex mathematical operations into simplified inter

    Provides authenticated encryption primitives to ensure both data confidentiality and integrity in a single operation.

    Cccryptocryptography
    Auf GitHub ansehen↗13,467
  • borgbackup/borgAvatar von borgbackup

    borgbackup/borg

    12,986Auf GitHub ansehen↗

    Borg ist ein Befehlszeilen-Backup-Dienstprogramm für die deduplizierte Datenarchivierung und sichere Speicherung. Es funktioniert durch die Identifizierung eindeutiger Datei-Chunks und die Anwendung von Komprimierung, um den gesamten Speicherbedarf über mehrere Backup-Versionen hinweg zu minimieren. Die Software zeichnet sich durch die Verwendung von authentifizierter Verschlüsselung aus, die sicherstellt, dass alle gespeicherten Daten vertraulich bleiben und vor unbefugter Manipulation geschützt sind. Sie bietet zudem eine virtuelle Dateisystemschnittstelle, die es Benutzern ermöglicht, Archive als lokale Verzeichnisse einzubinden, um einzelne Dateien zu durchsuchen und darauf zuzugreifen, ohne den gesamten Datensatz wiederherstellen zu müssen. Das System verwaltet diese Archive durch Metadaten-Indizierung auf Repository-Ebene und inhaltsdefiniertes Chunking, das Rolling-Hash-Algorithmen verwendet, um nur eindeutige Datensegmente zu erkennen und zu speichern. Diese Funktionen werden durch eine streambasierte Komprimierung unterstützt, um sowohl Speicheranforderungen als auch Netzwerkübertragungsgeschwindigkeiten zu optimieren.

    Implements authenticated encryption to ensure data confidentiality and integrity at rest.

    Pythonbackupborgbackupcompression
    Auf GitHub ansehen↗12,986
  • beemdevelopment/aegisAvatar von beemdevelopment

    beemdevelopment/Aegis

    12,613Auf GitHub ansehen↗

    Aegis is a mobile application designed to manage and store multi-factor authentication tokens. It functions as a local-first credential vault that generates time-based and counter-based one-time passwords to verify user identity across various online services. The application secures sensitive authentication data by employing authenticated symmetric encryption and hardware-backed key storage to protect credentials at rest. Access to the stored tokens is gated by system-level biometric authentication or password verification, ensuring that only authorized users can retrieve the generated secur

    Protects stored authentication databases using authenticated symmetric encryption to ensure data integrity and confidentiality at rest.

    Java2faandroidauthenticator
    Auf GitHub ansehen↗12,613
  • jwtk/jjwtAvatar von jwtk

    jwtk/jjwt

    11,085Auf GitHub ansehen↗

    This is a Java library and framework for creating, parsing, and validating JSON Web Tokens within Java and Android applications. It provides a comprehensive toolkit for handling signed and encrypted tokens, including the generation and verification of JWS and JWE objects. The project differentiates itself through a flexible architecture that supports pluggable JSON serialization and custom signature algorithms. It includes a dedicated key manager for generating, encoding, and organizing JSON Web Keys and key sets, as well as support for hardware security module integration. The library cover

    Produces compact encrypted objects by applying authenticated encryption algorithms and keys to token payloads.

    Java
    Auf GitHub ansehen↗11,085
  • shadowsocks/shadowsocks-rustAvatar von shadowsocks

    shadowsocks/shadowsocks-rust

    10,729Auf GitHub ansehen↗

    A Rust port of shadowsocks

    Encrypts tunnel data using authenticated encryption that provides confidentiality, integrity, and authenticity in one operation.

    Rusthttp-proxyrustsecurity
    Auf GitHub ansehen↗10,729
  • krzyzanowskim/cryptoswiftAvatar von krzyzanowskim

    krzyzanowskim/CryptoSwift

    10,556Auf GitHub ansehen↗

    CryptoSwift is a cryptography library implemented entirely in the Swift programming language. It provides a collection of standard cryptographic algorithms for encryption, decryption, and hashing without relying on native C libraries or system frameworks. The library supports symmetric and asymmetric encryption, including RSA key generation and signature management. It features authenticated encryption schemes and the ability to generate cryptographic digests for data integrity verification. The toolset covers message authentication codes, secure key derivation from passwords, and data paddi

    Implements primitives that combine encryption and authentication to ensure both confidentiality and integrity.

    Swiftaesaes-gcmcipher
    Auf GitHub ansehen↗10,556
  • project-chip/connectedhomeipAvatar von project-chip

    project-chip/connectedhomeip

    8,586Auf GitHub ansehen↗

    This project is an open-source software development kit and framework for implementing the Matter smart home standard. It provides a universal IPv6-based application layer and a cluster-based data model to ensure interoperability between diverse smart home devices and controllers. The system is distinguished by its multi-transport network abstraction, which maps Bluetooth LE, Thread, and Wi-Fi implementations to a common layer. It includes specialized tooling for secure device commissioning via QR codes and NFC, as well as a comprehensive over-the-air firmware update system for distributing s

    Converts unencrypted binary files into encrypted formats to ensure only authenticated images are loaded.

    C++build-with-matterchipconnected-devices
    Auf GitHub ansehen↗8,586
  • lightningnetwork/lndAvatar von lightningnetwork

    lightningnetwork/lnd

    8,154Auf GitHub ansehen↗

    Lnd is a full implementation of the Lightning Network protocol, functioning as a Bitcoin Layer 2 daemon that manages payment channels and settles transactions on the Bitcoin blockchain. It serves as an off-chain payment processor and a cryptographic wallet manager, enabling the execution of instant, scalable transactions through a network node. The project distinguishes itself through a focus on secure node networking and programmatic control. It provides gRPC and REST API servers for automating payment workflows and utilizes macaroon-based authorization to delegate granular permissions via c

    Updates encryption parameters or ciphers for existing seeds without altering the underlying entropy.

    Gobitcoinblockchaincryptocurrency
    Auf GitHub ansehen↗8,154
  • peazip/peazipAvatar von peazip

    peazip/PeaZip

    7,499Auf GitHub ansehen↗

    PeaZip is a cross-platform archive manager and file compression utility. It functions as a tool for compressing, extracting, and managing files across various formats, including 7Z, ZIP, RAR, and TAR. The project includes a specialized archive format converter for adjusting compatibility and compression levels, and a file integrity verifier for calculating checksums and hashes. It provides security tools for protecting data via authenticated encryption and passwords, as well as secure file deletion to permanently erase data from disk space. The application covers a broad range of capabilitie

    Provides authenticated encryption to protect archive contents and filenames using passwords and keyfiles.

    Pascal
    Auf GitHub ansehen↗7,499
  • guanzhi/gmsslAvatar von guanzhi

    guanzhi/GmSSL

    6,075Auf GitHub ansehen↗

    GmSSL is an open-source cryptographic library that implements the Chinese national cryptographic standards SM2, SM3, SM4, SM9, and ZUC as a unified algorithm suite. It provides a comprehensive set of cryptographic primitives including symmetric and asymmetric encryption, digital signatures, hashing, and key exchange, all built around these national standards for government and enterprise security applications. The library distinguishes itself through several integration capabilities. It includes an OpenSSL compatibility layer that maps GmSSL functions to OpenSSL API calls, enabling drop-in re

    Provides both confidentiality and integrity by encrypting data and appending a MAC tag with optional associated data.

    Ccryptoencryptionpairing
    Auf GitHub ansehen↗6,075
  • weidai11/cryptoppAvatar von weidai11

    weidai11/cryptopp

    5,412Auf GitHub ansehen↗

    Crypto++ is a comprehensive C++ cryptographic library that implements a broad range of algorithms for symmetric and asymmetric encryption, hashing, and digital signatures. It is designed as a portable toolkit, usable across different operating systems without modification. The library distinguishes itself through its architecture: cryptographic parameters such as key size and mode are configured at compile time via C++ templates, eliminating runtime overhead. Algorithms are registered in a static factory for runtime lookup, while data processing follows a pipeline model of composable sources,

    Encrypting data while simultaneously verifying its integrity and authenticity using algorithms like GCM or CCM.

    C++c-plus-pluscryptocryptography
    Auf GitHub ansehen↗5,412
  • authlib/authlibAvatar von authlib

    authlib/authlib

    5,346Auf GitHub ansehen↗

    Authlib ist eine umfassende Python-Bibliothek zum Erstellen und Integrieren von OAuth 1.0-, OAuth 2.0- und OpenID Connect-Clients und -Servern. Sie bietet ein einheitliches Set an Tools zur Verwaltung von Authentifizierungs- und Autorisierungsabläufen, wodurch Anwendungen entweder als Client, der sich mit externen Identitätsanbietern verbindet, oder als Anbieter, der Tokens ausstellt und Benutzeridentitäten verwaltet, agieren können. Das Projekt zeichnet sich durch eine vollständige Implementierung der JOSE-Standards aus und bietet eine Suite kryptografischer Tools zum Generieren, Signieren, Verschlüsseln und Validieren von JSON Web Tokens, Signaturen, Verschlüsselung und Schlüsseln. Es unterstützt eine breite Palette an Algorithmen, einschließlich RSA, ECDSA, EdDSA und HMAC, sowie spezialisierte Funktionen für JSON Web Key-Management und Content-Entschlüsselung. Über die Kern-Identitätsprotokolle hinaus deckt die Bibliothek Autorisierungsserver-Logik ab, einschließlich Grant-Type-Dispatching, Token-Lebenszyklusmanagement und dynamischer Client-Registrierung. Sie enthält zudem Funktionen für den Schutz von Ressourcenservern durch Bearer-Token-Validierung, PKCE-Sicherheit und Token-Introspektion. Die Bibliothek ist mit einer asynchron-kompatiblen Transportschicht konzipiert, um verschiedene Python-Web-Frameworks zu unterstützen.

    Secures token payloads using symmetric or asymmetric encryption algorithms via the JWE standard.

    Pythondjangoflaskjose
    Auf GitHub ansehen↗5,346
  • zlt2000/microservices-platformAvatar von zlt2000

    zlt2000/microservices-platform

    4,735Auf GitHub ansehen↗

    Dieses Projekt ist eine umfassende Enterprise-Architektur für den Aufbau von mandantenfähigen (multi-tenant) verteilten Systemen, implementiert als Spring-Cloud-Microservices-Plattform. Es bietet ein vollständiges Framework für die Verwaltung von Microservices mit Fokus auf mandantenfähige Datenarchitektur und zentralisierte Identitätsbereitstellung. Die Plattform zeichnet sich durch ihren integrierten Ansatz für Identität und Sicherheit aus und nutzt einen OAuth2-Identitätsanbieter, um Single-Sign-On, rollenbasierte Zugriffskontrolle und JWT-Token-Ausstellung über verteilte Dienste hinweg zu verwalten. Sie trennt zudem organisatorische Grenzen durch mandantenfähige Datenisolierung und stellt sicher, dass Ressourcen und Daten logisch oder physisch zwischen verschiedenen Mandanten partitioniert sind. Das System deckt ein breites Spektrum an verteilten Funktionen ab, einschließlich Service-Governance durch API-Gateway-Routing und Circuit-Breaking sowie Datenkoordination mittels verteilter Transaktionen und Sperrmechanismen. Es enthält zudem einen verteilten Observability-Stack für Request-Tracing und zentralisiertes Logging, neben der Synchronisierung von Suchmaschinen in Echtzeit und asynchronem, eventgesteuertem Messaging. Der Entwicklungsworkflow wird durch Automatisierungstools für die Generierung von Anwendungscode und plattformspezifisches Binär-Packaging unterstützt.

    Protects sensitive authentication parameters using standard cryptographic encryption algorithms.

    Javaelkgpejava
    Auf GitHub ansehen↗4,735
  • shadowsocksr-backup/shadowsocks-rssAvatar von shadowsocksr-backup

    shadowsocksr-backup/shadowsocks-rss

    4,439Auf GitHub ansehen↗

    Shadowsocks-rss ist ein RSS-Feed-Generator und Versions-Tracker, der darauf ausgelegt ist, die Verteilung von Update-Benachrichtigungen und Download-Links für ShadowsocksR-Clients zu automatisieren. Es fungiert als Verteilungssystem, das spezifische Software-Branches überwacht, um sicherzustellen, dass verschlüsselte Proxy-Clients die neuesten stabilen Releases verfolgen können. Das Projekt konzentriert sich auf automatisiertes Release-Tracking für Netzwerk-Obfuskationssoftware und veröffentlicht strukturierte XML-Feeds, die Versionsbenachrichtigungen und direkte Download-Links für verschiedene Client-Versionen bereitstellen. Das System unterstützt Software-Release-Monitoring und die Verteilung von Updates für VPN-Clients durch die Verwendung strukturierter Feeds.

    Implements cryptographic handshake protocols to establish shared keys and verify identity during the initial connection.

    Auf GitHub ansehen↗4,439
Vorherige12Nächste
  1. Home
  2. Security & Cryptography
  3. Authenticated Encryption

Unter-Tags erkunden

  • Encrypted JWT GenerationThe process of creating compact encrypted JSON Web Tokens (JWE) to ensure data confidentiality. **Distinct from Authenticated Encryption:** Specifically targets the generation of JWE tokens rather than general authenticated encryption of data at rest.
  • Encryption Parameter UpgradingUpdating the ciphers or parameters used to encrypt sensitive seeds without changing the seed entropy. **Distinct from Authenticated Encryption:** Focuses on the transition between encryption schemes rather than the act of encrypting/signing data.
  • Firmware Image EncryptionEncrypting binary firmware images to ensure only authenticated and authorized images are loaded by the device. **Distinct from Authenticated Encryption:** Specializes authenticated encryption for the purpose of protecting firmware binary images.
  • Handshake ProtocolsSecurity mechanisms for establishing shared keys and verifying identity at the start of a network connection. **Distinct from Authenticated Encryption:** Distinct from Authenticated Encryption: focuses on the negotiation process to establish keys, whereas the parent covers the encryption of data using those keys.