Asherah envelope encryption and key rotation library
This is a wrapper of the Asherah Go implementation using the Cobhan FFI library
Example code:
from asherah import Asherah, AsherahConfig
config = AsherahConfig(
kms='static',
metastore='memory',
service_name='TestService',
product_id='TestProduct',
verbose=True,
enable_session_caching=True
)
crypt = Asherah()
crypt.setup(config)
data = b"mysecretdata"
encrypted = crypt.encrypt("partition", data)
print(encrypted)
decrypted = crypt.decrypt("partition", encrypted)
print(decrypted)Included is a benchmark.py script that will give you an idea of the execution
speeds you can see from this library. Our goal is to make this as performant as
possible, as demonstrated by this example output:
> python benchmark.py
Benchmarking encrypt/decrypt round trips of "mysecretdata".
Executed 100 iterations in 0.026045440000000003 seconds.
Executed 1000 iterations in 0.237702095 seconds.
Executed 10000 iterations in 2.3570790550000003 seconds.
Executed 100000 iterations in 23.717442475 seconds.