ALL the code included in this project, if not otherwise stated, is released with the BSD 3-Clause License (see
LICENSE.txt), and all rights are reserved to Clipperz Srl.
For any use not allowed by the license, please contact us.
- AES-256, symmetric encryption;
- Fortuna, a strong pseudo-random number generator;
- SRP, a verifier-based authentication protocol;
- SHA-2, hash function.
Clipperz online password manager makes heavy use of the above cryptographic functions.
Browser cryptography is an critical component for building zero-knowledge web applications, but you can also use it to improve the security of specific portion of your code. As an example, you could consider replacing your present user authentication process with SRP.
Basically we need to make the library more flexible and more powerful. Most functions need parameters for selecting the key length, the encoding options, …
Public-key cryptography is an area that definitely needs to be covered. The code already includes a first attempt to use elliptic curve cryptography (ECC), but it is still very slow and incomplete. We would love to improve it and develop all the components of a robust public-key cryptographic system based on elliptic curves. It’s an ambitious and complex plan. Any volunteer to help?
This enables a single entity to represent the aggregated code base and gives the community flexibility to act as a whole to changing situations.
The CA establishes a joint copyright assignment in which the contributor retains copyright ownership while also granting those rights to Clipperz Srl. With the CA in place, the aggregated code base within any Clipperz open source project is protected by both the distribution license and copyright law.
Please download and review the Contributor Agreement for a complete understanding of its terms and conditions. You may send your signed and completed CA to Clipperz by scanning your completed form and emailing the image or by fax. Please retain a copy for your records. Thanks!