[TOC]
This tutorial shows you how to implement the MTE into an existing HTTP connection. This is only one example, the MTE does NOT require the usage of HTTP, you can use whatever communication protocol that is needed.
This tutorial demonstrates how to use MTE Core, MTE MKE and MTE Fixed Length. Depending on what your needs are, these three different implementations can be used in the same application OR you can use any one of them. They are not dependent on each other and can run simultaneously in the same application if needed.
The SDK that you received from Eclypses may not include the MKE or MTE FLEN add-ons. If your SDK contains either the MKE or the Fixed Length add-ons, the name of the SDK will contain "-MKE" or "-FLEN". If these add-ons are not there and you need them please work with your sales associate. If there is no need, please just ignore the MKE and FLEN options.
Here is a short explanation of when to use each, but it is encouraged to either speak to a sales associate or read the dev guide if you have additional concerns or questions.
MTE Core: This is the recommended version of the MTE to use. Unless payloads are large or sequencing is needed this is the recommended version of the MTE and the most secure.
MTE MKE: This version of the MTE is recommended when payloads are very large, the MTE Core would, depending on the token byte size, be multiple times larger than the original payload. Because this uses the MTE technology on encryption keys and encrypts the payload, the payload is only enlarged minimally.
MTE Fixed Length: This version of the MTE is very secure and is used when the resulting payload is desired to be the same size for every transmission. The Fixed Length add-on is mainly used when using the sequencing verifier with MTE. In order to skip dropped packets or handle asynchronous packets the sequencing verifier requires that all packets be a predictable size. If you do not wish to handle this with your application then the Fixed Length add-on is a great choice. This is ONLY an encoder change - the decoder that is used is the MTE Core decoder.
In this tutorial we are creating an MTE Encoder and a MTE Decoder on a client that exists in the browser. This is only needed when there are messages being sent from both sides. If only one side of your application is sending messages, then the side that sends the messages should have an MTE Encoder and the side receiving the messages needs only an MTE Decoder. You will need to pair this tutorial with a server in order for the HTTP requests to communicate.
IMPORTANT:
NOTE: The solution provided in this tutorial does NOT include the MTE library or any supporting MTE library files. If you have NOT been provided a MTE library and supporting files, please contact Eclypses Inc. The solution will only work AFTER the MTE library and any required MTE library files have been included.
NOTE: This tutorial is provided in TypeScript. If you are not using TypeScript and instead using JavaScript, simply ignore the additional TypeScript syntax in the instructions. You will receive the same result.
The structure of this tutorial is as follows:
.
├── start
└── finish| Directory | Description |
|---|---|
finish |
Example of project after completing the tutorial to reference |
start |
Project where you can follow along with the tutorial to implement the MTE |
There is only a client version of this tutorial. It is recommended to follow an additional Eclypses tutorial with a different language/framework that supports a server using the HTTP communication protocol in order to successfully pair them together.
-
Add MTE to your project
-
Locate the TypeScript or JavaScript MTE compressed directory that was provided to you
-
Add the
Mte.tsfile into your project solution
-
-
Import the following from
Mte.tsin yourApp.vuefileimport { MteDec, // Only if you are using MTE Core MteEnc, // Only if you are using MTE Core or MTE FLEN MteStatus, MteBase, MteWasm, MteMkeDec, // Only if you are using MKE MteMkeEnc, // Only if you are using MKE MteFlenEnc, // Only if you are using MTE FLEN } from './Mte';
-
Add default state for the following MTE properties that we will need to globally access inside of our component.
const wasm = ref<MteWasm>();
const base = ref<MteBase>();
const decoderStatus = ref(MteStatus.mte_status_success);
const encoderStatus = ref(MteStatus.mte_status_success);
//---------------------------------------------------
// Comment out to use MKE or MTE FLEN instead of MTE Core
//---------------------------------------------------
const encoder = ref<MteEnc>();
const decoder = ref<MteDec>();
//---------------------------------------------------
// Uncomment to use MKE instead of MTE Core
//---------------------------------------------------
// const decoder = ref<MteMkeDec>();
// const encoder = ref<MteMkeEnc>();
//---------------------------------------------------
// Uncomment to use MTE FLEN instead of MTE Core
//---------------------------------------------------
// const fixedLength = 8;
// const encoder = ref<MteFlenEnc>();
// const decoder = ref<MteDec>();We also need to change the type and default value for the outgoingEncodedMessage and decodedMessage since we will be using the MTE
const outgoingEncodedMessage = ref<MteStrStatus>({
str: '',
status: MteStatus.mte_status_success,
});
const decodedMessage = ref<MteStrStatus>({
str: '',
status: MteStatus.mte_status_success,
});-
Create an async function to instantiate the
MteWasmandMteBase.MteWasmshould only be instantiated once in your application.- This method returns a promise, so make sure you
awaitit in an async function. MteBasegives us access to MTE helper methods.- You must pass an instantiated
MteWasmintoMteBase.
- You must pass an instantiated
const instantiateMte = async () => { wasm.value = new MteWasm(); await wasm.value.instantiate(); base.value = new MteBase(wasm.value); };
-
To ensure the MTE library is licensed correctly run the license check
- The
licenseCompanyName, andlicenseKeybelow should be replaced with your company’s MTE license information provided by Eclypses. If a trial version of the MTE is being used, any value can be passed into those fields for it to work.
const runMteTests = () => { if (base.value) { const licenseCompany = 'Eclypses Inc.'; const licenseKey = 'Eclypses123'; // Check MTE license // Initialize MTE license. If a license code is not required (e.g., trial mode), this can be skipped. if (!base.value.initLicense(licenseCompany, licenseKey)) { const licenseStatus = MteStatus.mte_status_license_error; console.error( `License error (${base.value.getStatusName( licenseStatus, )}): ${base.value.getStatusDescription(licenseStatus)}`, ); } } }
- The
-
Create MTE Decoder Instance and MTE Encoder Instances.
-
Each Encoder and Decoder require three values. These values should be treated like encryption keys and never exposed. For demonstration purposes in this tutorial we are simply allowing default values of 0 to be set. In a production environment these values should be protected and not available to outside sources. For the entropy, we have to determine the size of the allowed entropy value based on the drbg we have selected.
- Entropy
- To set the entropy in the tutorial we are getting the minimum bytes required and creating a string of that length that contains all zeros.
- You will need an instance of the encoder or decoder to get the correct entropy based on the DRBG that they are using with the helper method
getDrbg()
- Nonce
- We are adding 1 to the encoder nonce so that the return value changes. This is optional, the same nonce can be used for the encoder and decoder. Server side values will be switched so they match up to the encoder/decoder and vice versa.
- Identifier
- Entropy
Here is a sample that creates the MTE Decoder.
-
const createDecoder = () => { if (wasm.value && base.value) { //--------------------------------------------------- // Comment out to use MKE instead of MTE Core //--------------------------------------------------- const mteDecoder = MteDec.fromdefault(wasm.value);
//---------------------------------------------------
// Uncomment to use MKE instead of MTE Core
//---------------------------------------------------
// const mteDecoder = MteMkeDec.fromdefault(wasm.value);
const entropyMinBytes = base.value.getDrbgsEntropyMinBytes(
mteDecoder.getDrbg(),
);
const decoderEntropy =
entropyMinBytes > 0 ? '0'.repeat(entropyMinBytes) : '';
const decoderNonce = '0';
const decoderIdentifier = 'demo';
// Set entropy and nonce for the encoder
mteDecoder.setEntropyStr(decoderEntropy);
mteDecoder.setNonce(decoderNonce);
// Initialize MTE encoder with identifier
decoderStatus.value = mteDecoder.instantiate(
decoderIdentifier,
);
if (decoderStatus.value !== MteStatus.mte_status_success) {
console.error(
`Failed to initialize the MTE encoder engine. Status: ${base.value.getStatusName(
decoderStatus.value,
)} / ${base.value.getStatusDescription(decoderStatus.value)}`,
);
} else {
decoder.value = mteDecoder;
}
} };
- (For further info on Decoder constructor – Check out the Developers Guide)*
Here is a sample function that creates the MTE Encoder.
```typescript
const createEncoder = () => {
if (wasm.value && base.value) {
//---------------------------------------------------
// Comment out to use MKE or MTE FLEN instead of MTE Core
//---------------------------------------------------
const mteEncoder = MteEnc.fromdefault(wasm.value);
//---------------------------------------------------
// Uncomment to use MKE instead of MTE Core
//---------------------------------------------------
// const mteEncoder = MteMkeEnc.fromdefault(wasm.value);
//---------------------------------------------------
// Uncomment to use MTE FLEN instead of MTE Core
//---------------------------------------------------
// const mteEncoder = MteFlenEnc.fromdefault(wasm.value, fixedLength.value);
const entropyMinBytes = base.value.getDrbgsEntropyMinBytes(
mteEncoder.getDrbg(),
);
const encoderEntropy =
entropyMinBytes > 0 ? '0'.repeat(entropyMinBytes) : '';
const encoderNonce = '1';
const encoderIdentifier = 'demo';
// Set entropy and nonce for the encoder
mteEncoder.setEntropyStr(encoderEntropy);
mteEncoder.setNonce(encoderNonce);
// Initialize MTE encoder with identifier
encoderStatus.value = mteEncoder.instantiate(
encoderIdentifier,
);
if (encoderStatus.value !== MteStatus.mte_status_success) {
console.error(
`Failed to initialize the MTE encoder engine. Status: ${base.value.getStatusName(
encoderStatus.value,
)} / ${base.value.getStatusDescription(encoderStatus.value)}`,
);
} else {
encoder.value = mteEncoder;
}
}
};
- (For further info on Encode constructor – Check out the Developers Guide)*
- Next, we need to add the MTE calls to encode and decode the messages that we are sending and receiving inside of the
onSubmit()method.
- Ensure the Encoder is called to encode the outgoing text, then the Decoder is called to decode the incoming response.
- Please check out the Developers Guide for further information on the various encoding and decoding methods. In this tutorial, we are using a method that takes a string and encodes to a string. The Decoder is taking a byte array and decoding to a string.
Here is a sample of how to do this for the encoder
if (encoder.value && base.value) {
outgoingEncodedMessage.value = encoder?.value?.encodeStrB64(
message.value,
);
if (
outgoingEncodedMessage.value.status !== MteStatus.mte_status_success
) {
console.error(
`Error encoding: Status: ${base.value.getStatusName(
outgoingEncodedMessage.value.status,
)} / ${base.value.getStatusDescription(
outgoingEncodedMessage.value.status,
)}`,
);
}
}Here is a sample of how to do this for the decoder
if (decoder.value && base.value) {
decodedMessage.value = decoder.value.decodeStr(byteArray);
if (decodedMessage.value.status !== MteStatus.mte_status_success) {
console.log(
`Error decoding: Status: ${base.value.getStatusName(
decodedMessage.value.status,
)} / ${base.value.getStatusDescription(
decodedMessage.value.status,
)}`,
);
}
}-
Lastly, we need to use the
asyncverions Vue'sonBeforeMount()lifecycle hook to trigger our methods in the correct order and at the start of the application.-
First, we
awaitand instantiate the MTE on initial render -
Second, we run the MTE tests
-
Third, we create the encoder and the decoder
onBeforeMount(async () => { await instantiateMte(); runMteTests(); createEncoder(); createDecoder(); });
-
-
We need to modify the HTML template to designate our
v-modelattributes to the correct values-
Since we changed
outgoingEncodedMessageanddecodedMessagefromstringtoMteStrStatus, those input elements need their[(ngModel)]attributes to be assigned to the object'sstrproperty<input type="text" class="form-control" v-model="outgoingEncodedMessage.str" disabled />
<input type="text" class="form-control" v-model="decodedMessage.str" disabled />
-
The Client side of the MTE HTTP Vue Tutorial should now be ready for use on your device.
For more information, please contact:
+1.719.323.6680
All trademarks of Eclypses Inc. may not be used without Eclypses Inc.'s prior written consent. No license for any use thereof has been granted without express written consent. Any unauthorized use thereof may violate copyright laws, trademark laws, privacy and publicity laws and communications regulations and statutes. The names, images and likeness of the Eclypses logo, along with all representations thereof, are valuable intellectual property assets of Eclypses, Inc. Accordingly, no party or parties, without the prior written consent of Eclypses, Inc., (which may be withheld in Eclypses' sole discretion), use or permit the use of any of the Eclypses trademarked names or logos of Eclypses, Inc. for any purpose other than as part of the address for the Premises, or use or permit the use of, for any purpose whatsoever, any image or rendering of, or any design based on, the exterior appearance or profile of the Eclypses trademarks and or logo(s).