Median salaries, most in-demand technologies, state of the remote work... all you need to know your worth on the market by tech recruitment platform talent.io Learn more →
Tink Alternatives
Similar projects and alternatives to Tink
-
Kalium
Java binding to the Networking and Cryptography (NaCl) library with the awesomeness of libsodium
-
SonarQube
Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.
-
password4j
A fluent cryptographic library that supports Argon2, bcrypt, scrypt and PBKDF2 aimed to protect passwords in databases. Easy to use by design, highly customizable, secure and portable. All the implementations follow the standards and have been reviewed to perform better with Java.
-
SSLContext-Kickstart
🔐 A lightweight high level library for configuring a http client or server based on SSLContext or other properties such as TrustManager, KeyManager or Trusted Certificates to communicate over SSL TLS for one way authentication or two way authentication provided by the SSLFactory. Support for Java, Scala and Kotlin based clients with examples. Available client examples are: Apache HttpClient, OkHttp, Spring RestTemplate, Spring WebFlux WebClient Jetty and Netty, the old and the new JDK HttpClient
-
JObfuscator
JObfuscator is a source code obfuscator for the Java language. Protect Java source code & algorithms from hacking, cracking, reverse engineering, decompilation & technology theft.
-
-
-
talent.io
Download talent.io’s Tech Salary Report. Median salaries, most in-demand technologies, state of the remote work... all you need to know your worth on the market by tech recruitment platform talent.io
-
-
age
A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
-
-
-
-
-
awesome-appsec
A curated list of resources for learning about application security
-
-
cryptography
cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.
-
Awesome Cryptography
A curated list of cryptography resources and links.
-
ntfy
Send push notifications to your phone or desktop using PUT/POST (by binwiederhier)
-
wolfssl
The wolfSSL library is a small, fast, portable implementation of TLS/SSL for embedded devices to the cloud. wolfSSL supports up to TLS 1.3!
-
cito
Ć programming language. Translated automatically to C, C++, C#, Java, JavaScript, Python, Swift, TypeScript and OpenCL C.
-
InfluxDB
Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Data Platform where developers build real-time applications for analytics, IoT and cloud-native services in less time with less code.
NOTE:
The number of mentions on this list indicates mentions on common posts plus user suggested alternatives.
Hence, a higher number means a better Tink alternative or higher similarity.
Tink reviews and mentions
Posts with mentions or reviews of Tink.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-03-24.
-
Ask HN: Is there a portable encryption file format?
> Do C (or something where the mapping to C is known), and lots of languages have FFI libs where wrapping that is fairly trivial
That is an interesting idea, yet still a lot of work, sadly. I was hoping somebody had done the legwork already. I looked at Tink [1] and age [2] based on my co-worker's recommendation, but they all seem to have limited implementations in other languages.
- Information and learning resources for cryptography newcomers
-
Selenite: A Post-Quantum Cryptography Library For Digital Certificates Written In Rust
Google has also started to add post-quantum algorithms to their Tink library. https://github.com/google/tink
-
Ć Programming Language which can be translated automatically to C, C++, C#, Java, JavaScript, Python, Swift, TypeScript and OpenCL C. Instead of writing code in all these languages, you can write it once in C
See things like https://github.com/google/tink which are designed with this thinking in mind.
-
This package will simplify the process of encrypting and decrypting data for your application based on the aes-256-gcm algorithm.
I find curious that you mentioned tweetnacl because this library don't have one of the issues tweetnacl have: it handles nonces automatically, making it harder to misuse. One of Tink design goals is being harder to misuse and handling nonces for the user is a way to improve that.
-
Harmony Crypto: Multi-process Encrypted SharedPreferences
Also, given that Google used Tink for Encrypted SharedPreferences, I had to make some modifications there to allow proper usage of Harmony Crypto. The problem I ran into was that Tink used Android SharedPreference to store keys, but didn't allow for any SharedPreference object to be passed in, which meant that Tink was not process safe. That led to making this PR (https://github.com/google/tink/pull/493), but working around the problem for the meantime by creating custom classes within the Tink package space to be used in the Harmony Crypto project.
-
Independent Audit: Insights into the Source Code of Boxcryptor
4. Output AES-CBC-DECRYPT(KE, IV, C) with PKCS#5 padding.
The core of the problem is that, while they use the HMAC to check that the ciphertext is authentic (which is a bit odd, given that they seem to claim that authenticity shouldn't matter), they never check that the IV is authentic (it's never computed in the HMAC).
The way that AES-CBC decryption works, for first 16-bytes of the decryption is AES-BLOCK-DECRYPT(KE, first 16 bytes of C) XOR IV. As a result, if the IV isn't authenticated (which it's not), then any bit that the attacker flips in the IV will flip the corresponding bit in the ciphertext. Because PKCS#5 padding is used, given a padding oracle, an adversary could decrypt messages under 16 bytes in length.
The moral of the story is DO NOT ROLL YOUR OWN CRYPTO! Rolling your own crypto can be fun and educational and informative, but DON'T DEPLOY IT!
This bug should not have arisen, because the GitHub link in this blog post should've been to https://github.com/google/tink or https://github.com/jedisct1/libsodium or some library like them.
-
A note from our sponsor - talent.io
www.talent.io | 6 Oct 2022
Stats
Basic Tink repo stats
11
12,709
9.8
13 days ago
google/tink is an open source project licensed under Apache License 2.0 which is an OSI approved license.
Popular Comparisons
Truly a developer’s best friend
Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀.
scoutapm.com
Are you hiring? Post a new remote job listing for free.