Secure-by-default PHP 7 content management system powered by libsodium.
The power of libsodium, the simplicty of Paragon Initiative Enterprise engineering.
Full-Featured Library to prevent Cross-Site Request Forgery vulnerabilities.
Automated CACert.pem management for PHP projects, to promote a more secure Internet.
Self-hostable microservice, built with Slim Framework, that provides a sapient API which enables authorized users to commit arbitrary data to an immutable, append-only public ledger.
Searchable field-level encryption library.
Easily integrate Content-Security-Policy headers into your web application, either from a JSON configuration file, or programatically.
Microservice for "Contact Us" forms that GnuPG-encrypt all outgoing emails.
Easily integrate HTTP Public-Key-Pinning in your PHP applications.
Structured Input Filter with Strict Typing
Vendor-Agnostic Two-Factor Authentication Library
Hash then encrypt your customers' passwords.
This library was motivated by this blog post from security expert Anthony Ferrara.
Platform-Agnostic SEcurity TOkens.
PHP 5.x polyfill for
random_int(), which are simple interfaces for cryptographically secure random number generators added in PHP 7.0.0.
random_bytes(int)generates an arbitrary number of random bytes
random_int(int, int)returns a random integer between two given values (inclusive)
Secure API toolkit. Sapient secures your PHP applications' server-to-server HTTP(S) traffic even in the wake of a TLS security breakdown (compromised certificate authority, etc.).
Seeded, Deterministic PRNG (based on AES-CTR instead of LCG)
Pure-PHP implementation of the cryptography features offered by libsodium
Will tomorrow bring costly and embarrassing data breaches? Or will it bring growth, success, and peace of mind?
Our team of technology consultants have extensive knowledge and experience with application security and web/application development.
Want the latest from Paragon Initiative Enterprises delivered straight to your inbox? We have two newsletters to choose from.
The first mails quarterly and often showcases our behind-the-scenes projects.
The other is unscheduled and gives you a direct feed into the findings of our open source security research initiatives.