Skip to content

gherynos/secrete

main
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
2 branches 6 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
.github/workflows
 
 
src
 
 
.bumpversion.cfg
 
 
.gitignore
 
 
.markdownlint.json
 
 
.pre-commit-config.yaml
 
 
.yamllint.yaml
 
 
LICENSE.txt
 
 
README.md
 
 
license_header.txt
 
 
pom.xml
 
 
ruleset.xml
 
 
Secrete Binary version Usage Generate the key pair Change the private key password Export the public key Encrypt a text message Decrypt a text message Encrypt a file Decrypt a file Library usage Author License

README.md

Secrete

Secrete is a simple ECIES implementation that uses Curve25519.

The Elliptic Curve Integrated Encryption Scheme has been implemented with the following specifications:

Item Specification
Elliptic Curve Curve25519
Key Derivation Function KDF2
Message Authentication Code HMAC with SHA512
Symmetric Encryption Scheme AES-256 CBC mode with PKCS7 Padding

using source code from existing repositories, including:

Many thanks to Trevor Bernard and the guys of The Legion of the Bouncy Castle.

Binary version

The binary distribution can be downloaded from the releases page.

Usage

Generate the key pair

java -jar secrete.jar genKeys

This will generate the two files public.key and private.key under the .secrete folder in the user's home. A password will be required to protect the private key.

The private key is stored using PBKDF2 with SHA-512 and AES-256 CBC mode with PKCS7 Padding.

Change the private key password

To change the password of the private.key under the .secrete folder, use:

java -jar secrete.jar changePwd

Export the public key

java -jar secrete.jar -o <key_file> exportKey

Encrypt a text message

java -jar secrete.jar -k <recipient_key_file> encrypt

Insert the message ending with a "."; the encrypted message will be displayed encoded in Base64.

It is also possible to output the encrypted message to a binary file by specifying the "-o" option:

java -jar secrete.jar -k <recipient_key_file> -o <encrypted_file> encrypt

Decrypt a text message

java -jar secrete.jar decrypt

Insert the Base64 encrypted message, and the password to unlock the private key.

It is also possible to load the encrypted message from the binary file by specifying the "-i" option:

java -jar secrete.jar -i <encrypted_file> decrypt

Encrypt a file

java -jar secrete.jar -k <recipient_key_file> -i <file_to_encrypt> -o <encrypted_file> encrypt

Decrypt a file

java -jar secrete.jar -i <encrypted_file> -o <decrypted_file> decrypt

Insert the password to unlock the private key.

Library usage

Secrete can be used as a library, via the Maven Central Repository:

<dependency>
    <groupId>net.nharyes</groupId>
    <artifactId>secrete</artifactId>
</dependency>

The main classes to use are:

  • net.nharyes.secrete.curve.Curve25519KeyPairGenerator
  • net.nharyes.secrete.ecies.ECIESHelper

Check the ECIESHelper unit tests for some usage examples.

Author

GitHub @gherynos

License

Secrete is licensed under the Apache License 2.0 since version 1.0.2.

About

ECIES implementation with Curve25519.

Topics

java curve25519 ecies

Resources

Readme

License

Apache-2.0 license

Stars

15 stars

Watchers

7 watching

Forks

9 forks
Report repository

Releases 6

Release 1.1.0 Latest
Jan 31, 2023
+ 5 releases

Packages

No packages published

Contributors 2

  •  
  •  

Languages