Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[DRAFT] Backup Encryption #1493

Closed
wants to merge 2 commits into from
Closed

[DRAFT] Backup Encryption #1493

wants to merge 2 commits into from

Conversation

VolkerSchiewe
Copy link

Draft PR to show Encryption of Backups

Encryption scheme is similar to PGP:

  • Data is encrypted with a symmetric key
  • this key is encrypted asymmetric with the public key of the user

To decrypt:

  • decrypt symmetric key with private key
  • use decrypted key to decrypt data

Advantages:

  • symmetric encryption is faster
  • Can easily support multiple encryption keys for one backup (only the symmetric key needs to by encrypted multiple times)

@VolkerSchiewe VolkerSchiewe changed the title Backup Encryption [DRAFT] Backup Encryption Oct 17, 2019
mnzaki
mnzaki reviewed Oct 23, 2019
View reviewed changes
src/utils/backup.ts
vault: SoftwareKeyProvider,
derivationArgs: IKeyDerivationArgs,
): Promise<string> {
const data = {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

About this, can we make things more generic? basically take data directly as any input so that this can be reused in other contexts

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This would mean it becomes a "encryptHybrid" function or similar, right? it could also be moved to the key provider than

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes that makes sense, then rename this to something like createWalletBackup which is specific with what to backup, and that simply calls in the key provider to "pack" some data for it

@VolkerSchiewe
Copy link
Author

The encryption scheme is moved to the jolocom-lib. Needs to be integrated once the lib is released.

@clauxx clauxx deleted the experimental/backup branch September 23, 2021 10:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mnzaki mnzaki mnzaki left review comments

@Exulansis Exulansis Awaiting requested review from Exulansis

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@VolkerSchiewe @mnzaki