Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Encrypt channel data #7

Closed
jq-rs opened this issue Feb 8, 2020 · 2 comments
Closed

Encrypt channel data #7

jq-rs opened this issue Feb 8, 2020 · 2 comments
Labels
enhancement

Comments

@jq-rs
Copy link
Owner

jq-rs commented Feb 8, 2020
edited

Add additional layer of encryption based on user + channel. This allows to use remote Mles servers safely.
@jq-rs
Copy link
Owner Author

jq-rs commented Feb 9, 2020
edited

Aes-ctr is probably fine using https://docs.rs/aes-ctr/0.3.0/aes_ctr . Take blake2s https://docs.rs/blake2/0.8.1/blake2 hash from user + channel and use that for msg. Reuse existing IV as ctr nonce.
Handle also uid and channel fields with 2xblake2s user + channel with aes-ecb https://docs.rs/aes/0.3.2/aes/. This allows to hide all data including uid + channel, but keep session state between reconnects.

@jq-rs jq-rs changed the title Encrypt channel history data Encrypt channel data Feb 10, 2020
@jq-rs
Copy link
Owner Author

jq-rs commented Feb 13, 2020

Fixed via 5f9d2fa

@jq-rs jq-rs closed this as completed Feb 13, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jq-rs