Keyczar: Safe and Simple Cryptography

Monday, August 11, 2008 11:06 AM



Cryptography is notoriously hard to get right and if improperly used, can create serious security holes. Common mistakes include using the wrong cipher modes or obsolete algorithms, composing primitives in an unsafe manner, hard-coding keys in source code, or failing to anticipate the need for future key rotation. With these risks in mind, we're pleased to announce the open-source release of Keyczar.

Keyczar is a cryptographic toolkit that supports encryption and authentication for both symmetric and public-key algorithms. It addresses some of the aforementioned issues by choosing safe defaults, tagging outputs with key version information, and providing a simple application programming interface. Keyczar's key versioning system makes it easy to rotate and revoke keys, without worrying about backward compatibility or making any changes to source code.

We look forward to working with the open source community and continuing to make cryptography safer and easier to use. To download Keyczar or for more information, please visit our Google Code project and discussion group.
The comments you read here belong only to the person who posted them. We do, however, reserve the right to remove off-topic comments.

5 comments:

Rock and Linux said...

I'm going to try, it should be useful and might works well.
Thanks! ;)

DVeditor said...

Looks like a great resource - thanks!

Francis said...

Good Job !
When will you release a .Net version ? :)

Kevin said...

please add support for encryption to gmail and mail for google apps

birasblog said...

é de uma grande utilidade!