{"id":17876306,"url":"https://github.com/tehmaze/confidentiality","last_synced_at":"2025-03-22T01:30:55.238Z","repository":{"id":140289468,"uuid":"166396744","full_name":"tehmaze/confidentiality","owner":"tehmaze","description":":lock: Portable, secure by default cryptography","archived":false,"fork":false,"pushed_at":"2019-01-29T12:27:25.000Z","size":136,"stargazers_count":19,"open_issues_count":0,"forks_count":1,"subscribers_count":3,"default_branch":"master","last_synced_at":"2024-05-01T20:37:58.027Z","etag":null,"topics":["crypto","cryptography","cryptography-library","go","golang","javascript","javascript-library","python","python-library","python3","ruby","ruby-library"],"latest_commit_sha":null,"homepage":"","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/tehmaze.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2019-01-18T11:46:25.000Z","updated_at":"2024-06-19T07:50:40.445Z","dependencies_parsed_at":null,"dependency_job_id":"dfd182c9-af6c-4ac4-9b62-0935f85e3d82","html_url":"https://github.com/tehmaze/confidentiality","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tehmaze%2Fconfidentiality","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tehmaze%2Fconfidentiality/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tehmaze%2Fconfidentiality/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/tehmaze%2Fconfidentiality/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/tehmaze","download_url":"https://codeload.github.com/tehmaze/confidentiality/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":244893364,"owners_count":20527581,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["crypto","cryptography","cryptography-library","go","golang","javascript","javascript-library","python","python-library","python3","ruby","ruby-library"],"created_at":"2024-10-28T11:29:44.777Z","updated_at":"2025-03-22T01:30:54.905Z","avatar_url":"https://github.com/tehmaze.png","language":"Java","readme":"# Confidentiality [![License: MIT][license_img]][license_url] [![Build Status][build_img]][build_url] [![Go Documentation][godoc_img]][godoc_url]\n\n[license_img]: https://img.shields.io/badge/License-MIT-yellow.svg\n[license_url]: https://opensource.org/licenses/MIT\n[build_img]: https://travis-ci.org/tehmaze/confidentiality.svg?branch=master\n[build_url]: https://travis-ci.org/tehmaze/confidentiality\n[godoc_img]: https://godoc.org/github.com/tehmaze/confidentiality/go?status.svg\n[godoc_url]: https://godoc.org/github.com/tehmaze/confidentiality/go\n\nPortable, secure by default cryptography.\n\n**Important**: This library is *not a substitution for well seasoned TLS \nimplementations* and only exists as a supplementary means of offering \ncryptographic primitives. Make sure you understand the limitations of each\nfunction before you use them.\n\n**Project state**: Unstable, we're still working on the API and used algorithms.\n\n## Supported languages\n\n| Language     | Version         | Remarks                           |\n| ------------ | --------------- | --------------------------------- |\n| [C]          | `c99`           | Requires [mbedTLS] `\u003e= 2.1.0` or [OpenSSL] `\u003e= 1.0.0` |\n| [Go]         | `\u003e= 1.10`       |                                   |\n| [Javascript] | `node.js \u003e= 11` | Browsers with [WebCrypto] support |\n| [Python]     | `\u003e= 3.4`        |                                   |\n| [Ruby]       | `\u003e= 2.5`        |                                   |\n\n[C]:          c/\n[mbedTLS]:    https://tls.mbed.org\n[OpenSSL]:    https://www.openssl.org\n[Go]:         go/\n[Javascript]: javascript/\n[Python]:     python/\n[Ruby]:       ruby/\n[WebCrypto]:  https://caniuse.com/#feat=cryptography\n\n## Used algorithms\n\n| Algorithm           | Usage                                     |\n| ------------------- | ----------------------------------------- |\n| [HMAC-SHA256]       | Message authentication                    |\n| [AES]               | Block encryption                          |\n| [AES-GCM]           | Message and iv encryption (authenticated) |\n| [AES-GCM]+[AES-CTR] | Stream encryption                         |\n| [X25519]+[PBKDF2]   | Key exchange (KEX)                        |\n\n[HMAC-SHA256]: https://en.wikipedia.org/wiki/HMAC\n[AES]:         https://en.wikipedia.org/wiki/Advanced_Encryption_Standard#Security\n[AES-GCM]:     https://en.wikipedia.org/wiki/Galois/Counter_Mode\n[AES-CTR]:     https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation#Counter_(CTR)\n[X25519]:      https://en.wikipedia.org/wiki/Curve25519\n[PBKDF2]:      https://en.wikipedia.org/wiki/PBKDF2\n\n## Backward compatibility\n\nConfidentiality will be released using [semantic versioning]. Releases on the\na new major release may introduce algorithm changes that are not compatible\nwith releases on previous major releases. New major versions *may* be compatible\nwith older releases, unless there are security concerns for supporting older\nalgorithms.\n\nThe `0` major release has no promise of backward compatibility and are used to\nfield test algorithm changes.\n\n[semantic versioning]: https://semver.org/\n\n## Message authentication\n\nUsing HMAC-SHA256.\n\n### Signing\n\n```\nsign(message, key) -\u003e signed message\n```\n\n### Verifying\n\n```\nverify(signed message, key) -\u003e [error]\n```\n\n## Key exchange\n\nUsing Elliptive Curve Diffie-Helman (ECDH) key exchange.\n\n### Shared key\n\n```\nexchange(readable \u0026 writable stream) -\u003e key\n```\n\n## Message encryption\n\nUsing AES-128-GCM.\n\n### Encrypting\n\n```\nencrypt(message, key) -\u003e encrypted message\n```\n\n### Decrypting\n\n```\ndecrypt(encypted message, key) -\u003e message\n```\n\n## Stream encryption\n\nUsing AES-128-GCM for IV hand over and AES-128-CTR for stream encryption.\n\n### Encrypting\n\n```\nencrypter(writable stream, key) -\u003e writable stream\n```\n\n### Decrypting\n\n```\ndecrypter(readable stream, key) -\u003e readable stream\n```\n\n### Secure a stream\n\nPerforms a key exchange and switches to encrypted/decrypted streams for\nwriting/reading to/from the stream.\n\n```\nsecure(readable \u0026 writable stream) -\u003e readable \u0026 writable stream\n```","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftehmaze%2Fconfidentiality","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftehmaze%2Fconfidentiality","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftehmaze%2Fconfidentiality/lists"}