Open Source Security & Cryptography Tools in Java

Acegi Security is a powerful, flexible security solution for enterprise software, with a particular emphasis on applications that use Spring. Using Acegi Security provides your applications with comprehensive authentication, authorization, instance-based access control, channel security and human user detection capabilities.

Apache Shiro is a top level open source project under the Apache Software Foundation. As a project, Shiro is an application security framework that provides application developers very clean and simple ways of supporting four cornerstones of security in their applications: authentication, authorization, enterprise session management and cryptography.

The Bouncy Castle Crypto APIs is a lightweight cryptography API in Java with a provider for the JCE and JCA, a clean room implementation of the JCE 1.2.1, a library for reading and writing encoded ASN.1 objects and generator for: * Version 1 and Version 3 X.509 certificates and PKCS12 files. * Version 2 X.509 attribute certificates. * S/MIME and CMS (PKCS7). * OCSP (RFC 2560). * TSP (RFC 3161). * OpenPGP (RFC 2440). The lightweight API works with everything from the J2ME to the JDK 1.5

JSecurity is a powerful and flexible open-source Java security framework that cleanly handles authentication, authorization, enterprise session management and cryptography. Our mission: To provide the most robust and comprehensive Java security framework available while also being very easy to understand and extremely simple to use. N.B. Project is being renamed to \"Ki\"