cryptlib

Developer(s)	Peter Gutmann
Initial release	1995 (1995)
Stable release	3.4.5 (2019; 6 years ago (2019)[1]) [±]
Written in	C
Type	Security library
License	Sleepycat (Berkeley Database) License[2][3]
Website	www.cs.auckland.ac.nz/~pgut001/cryptlib/

cryptlib is anopen-sourcecross-platform software security toolkit library. It is distributed under theSleepycat License,^[2] afree software licensecompatible with theGNU General Public License.^[3] Alternatively,cryptlib is available under a proprietary license for those preferring to use it under proprietary terms.^[4]

cryptlib is a security toolkit library that allows programmers to incorporateencryption and authentication services to software. It provides a high-level interface, so that strong security capabilities can be added to an application without needing to know many of the low-level details of encryption or authenticationalgorithms. Extensive documentation in the form of a 400+ page programming manual is available.^[5]

At the highest level, cryptlib provides implementations of complete security services such asS/MIME andPGP/OpenPGP secure enveloping,SSL/TLS andSSH secure sessions,CA services such asCMP,SCEP, RTCS,OCSP, and other security operations such as secure timestamping. Since cryptlib uses industry-standardX.509, S/MIME, PGP/OpenPGP, and SSH/SSL/TLS data formats, the resulting encrypted or signed data can be easily transported to other systems and processed there, and cryptlib itself runs on many operating systems—all Windows versions and mostUnix/Linux systems. This allows email, files, and EDI transactions to be authenticated with digital signatures and encrypted in an industry-standard format.^{[citation needed]}

cryptlib provides other capabilities including full X.509/PKIX certificate handling (all X.509 versions from X.509v1 to X.509v4) with support forSET, Microsoft AuthentiCode, Identrus, SigG, S/MIME, SSL, and Qualified certificates, PKCS #7 certificate chains, handling of certification requests and CRLs (certificate revocation lists) including automated checking of certificates against CRLs and online checking using RTCS and OCSP, and issuing and revoking certificates using CMP and SCEP. It also implements a full range of certification authority (CA) functions provides complete CMP, SCEP, RTCS, and OCSP server implementations to handle online certificate enrolment/issue/revocation and certificate status checking. Alongside the certificate handling, it provides a sophisticated key storage interface that allows the use of a wide range of key database types ranging from PKCS #11 devices, PKCS #15 key files, and PGP/OpenPGP key rings to commercial-gradeRDBMS andLDAP directories with optional SSL protection.^{[citation needed]}

cryptlib can make use of the cryptographic capabilities of a variety of external cryptographic devices such as hardware cryptographic accelerators, Fortezza cards, PKCS #11 devices, hardware security modules (HSMs), and cryptographic smart cards. It can be used with a variety of cryptography devices that have received FIPS 140 or ITSEC/Common Criteria certification. The cryptographic device interface also provides a general-purpose plug-in capability for adding new functionality that can be used by cryptlib.

cryptlib is written in C and supportsBeOS,DOS,IBMMVS,Mac OS X,OS/2, Tandem, a variety ofUnix versions (includingAIX,Digital Unix,DGUX,FreeBSD/NetBSD/OpenBSD,HP-UX,IRIX,Linux, MP-RAS,OSF/1,QNX,SCO UnixWare,Solaris,SunOS,Ultrix, and UTS4),VM/CMS,Windows 3.x,Windows 95/98/ME,Windows CE/PocketPC/SmartPhone and Windows NT/2000/XP/Vista. It is designed to be portable to otherembedded system environments. It is available as a standardDLL. Language bindings are available forC /C++,C# /.NET,Delphi,^[6]Java,Python, andVisual Basic (VB).

• cryptlib 3.4.5 was released on March 8, 2019; 6 years ago (2019-03-08).
• cryptlib 3.4.4.1 was released on August 21, 2018; 6 years ago (2018-08-21).^[10]
• cryptlib 3.4.4 was released on January 10, 2018; 7 years ago (2018-01-10).^[11]
• cryptlib 3.4.3 was released on March 25, 2016; 9 years ago (2016-03-25).^[12]
• cryptlib 3.4.2 was released on December 17, 2012; 12 years ago (2012-12-17).^[13]
• cryptlib 3.4.1 was released on July 27, 2011; 13 years ago (2011-07-27).^[14]
• cryptlib 3.4.0 was released on October 6, 2010; 14 years ago (2010-10-06).^[15]
• cryptlib 3.3.2 was released on July 3, 2008; 16 years ago (2008-07-03).^[16]
• cryptlib 3.3.1 was released on February 1, 2007; 18 years ago (2007-02-01).^[17]
• cryptlib 3.3 was released on September 13, 2006; 18 years ago (2006-09-13).^[18]
• cryptlib 3.2.3a was released on August 29, 2006; 18 years ago (2006-08-29).^[19]
• cryptlib 3.2.3 was released on July 10, 2006; 18 years ago (2006-07-10).^[20]
• cryptlib 3.2.2 was released on September 6, 2005; 19 years ago (2005-09-06).^[21]
• cryptlib 3.2.1 was released on August 9, 2005; 19 years ago (2005-08-09).^[22]
• cryptlib 3.2 was released on April 18, 2005; 19 years ago (2005-04-18).^[23]
• cryptlib 3.1 was released on December 13, 2003; 21 years ago (2003-12-13).^[24]

• OpenSSL
• GnuTLS
• Network Security Services
• Libgcrypt
• MatrixSSL
• mbed TLS (previously PolarSSL)
• wolfSSL (previously CyaSSL)
• Comparison of TLS implementations
• Comparison of cryptography libraries

• Current official website
• OldOfficial website
• Cryptlib - Encryption Security SDK by Digital Data Security Ltd.

• Cryptographic software
• C (programming language) libraries
• Free security software
• Cross-platform software
• OpenPGP
• Transport Layer Security implementation
• 1995 software

• Articles with short description
• Short description matches Wikidata
• All articles with unsourced statements
• Articles with unsourced statements from March 2025