When To Roll Your Own X

This page summarizes the projects mentioned and recommended in the original post on /r/programming
Crypto Cryptography

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • Monocypher

    An easy to use, easy to deploy crypto library

    • Most of the time, the only side channel you care about is timings. Lately Hertzbleed did enough noise that Monocypher has a dedicated issue, but I think even that is best left for CPU designers to stress over for now… And on modern CPUs the causes of this side channels are limited to:

  • noise_spec

    Noise Specification

    • As you now know, I have implemented a whole cryptographic library with a similar API to Libsodium’s. In addition I’ve worked on authenticated key exchange (similar to Noise), as well as PAKE (symmetric and augmented). And I’ve realised that the whole NaCl family of libraries, including NaCl, Libsodium, TweetNaCl, and Monocypher, are all too low-level for regular people to use safely.

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo

  • wycheproof

    Discontinued Project Wycheproof tests crypto libraries against known attacks.

    • I failed to notice the relevant Wycheproof test vectors because they weren’t listed on the front page (they still aren’t).

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts