Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
storing megolm keys serverside #1538
proposal document for #1219
It means that the user can store their megolm keys (typically a few megabytes of key data) encrypted on the server, but be able to decrypt & restore that backup using their recovery key (32 bytes). To avoid users having to securely track the 32-byte recovery key somewhere, we also let them optionally encrypt that in turn with a passphrase and store that on the server. (We could also generate the recovery key from a passphrase in the first place, but that would be a problem for rotating the passphrase separately from the key, and would force people to set a passphrase even if they don't want one).