OpenDNS has a long history of innovation, which includes building tools and open source projects that are designed to make the Internet safer and smarter. We built PhishTank, the world’s largest community-powered phishing clearinghouse, and it’s used today to protect 50 million Internet users. And we built DNSCrypt, an open source tool that turns regular DNS traffic into encrypted DNS traffic that is secure from eavesdropping and man-in-the-middle attacks. Most recently, the Umbrella Security Labs research team unveiled the Umbrella Security Graph, a resource that select members of the security community can use to find new information about known threats and even discover unknown threats.

Today we’re excited to announce our latest innovation, a new cryptographic library called Sodium. Built by OpenDNS engineer and Umbrella Security Labs researcher Frank Denis, Sodium iterates upon NaCl, an existing cryptographic library that lacks user-friendly features.

Sodium is a portable, cross-compilable, installable, packageable, API-compatible version of NaCl. It includes:

  • Authenticated public-key and authenticated shared-key encryption
  • Public-key and shared-key signatures
  • Hashing
  • Keyed hashes for short messages 
  • Secure pseudo-random numbers generation

Sodium uses the same implementations of crypto primitives as NaCl, but is known to work on all the platforms supported by DNSCrypt, including Bitrig, OpenBSD, Dragonfly BSD, NetBSD, FreeBSD, SmartOS, OSX, Linux, Windows, iOS and Android. Its release will undoubtably make it easier for security aficionados and developers alike to improve the security of communications related to their projects.

You can read all the details on Sodium’s usability and features on the Umbrella Security Labs blog.