Skip to content
This repository has been archived by the owner on Apr 12, 2018. It is now read-only.

Reset the Content Encryption Key #68

Open
Super-Baleine opened this issue Nov 27, 2016 · 0 comments
Open

Reset the Content Encryption Key #68

Super-Baleine opened this issue Nov 27, 2016 · 0 comments
Assignees
@dclement8
Labels
add feature cryptography

Comments

@Super-Baleine
Copy link
Member

Super-Baleine commented Nov 27, 2016
edited
Loading

*KEK : Key Encryption Key
*CEK : Content Encryption Key

  1. Delete the CEK from the database
  2. Delete all the user's files/folders
  3. The user re-defines his KEK (alias "passphrase")
  4. The new KEK is sessionStorage("kek", kek)
  5. A new CEK is generated
  6. The new CEK is sessionStorage("cek", cek)
  7. The new CEK is encrypted and base64encoded
  8. The new encrypted CEK is stored in the DB
  9. logout the user ?

DON'T STORE THE KEK (=passphrase) IN THE DATABASE
@Super-Baleine Super-Baleine self-assigned this Nov 27, 2016
@Super-Baleine Super-Baleine changed the title Reset the random key Reset the Content Encryption Key Nov 28, 2016
@Super-Baleine Super-Baleine assigned eibay and dclement8 and unassigned eibay Nov 28, 2016
@Super-Baleine Super-Baleine mentioned this issue Jan 5, 2017
Open
@Super-Baleine Super-Baleine assigned Xloka and unassigned dclement8 Sep 20, 2017
@Super-Baleine Super-Baleine assigned dclement8 and unassigned Xloka Nov 5, 2017
@Super-Baleine Super-Baleine assigned ghost Dec 14, 2017
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@dclement8 dclement8

Labels
add feature cryptography
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@eibay @Xloka @ayagebreel @Super-Baleine @dclement8