Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/perry-mitchell/iocane
An odorless, tasteless NodeJS crypto library that dissolves instantly in liquid
https://github.com/perry-mitchell/iocane
crypto-js decryption encoding encryption hmac nodejs pbkdf2 security subtlecrypto web
Last synced: 14 days ago
JSON representation
An odorless, tasteless NodeJS crypto library that dissolves instantly in liquid
- Host: GitHub
- URL: https://github.com/perry-mitchell/iocane
- Owner: perry-mitchell
- License: mit
- Created: 2016-03-27T20:16:48.000Z (over 8 years ago)
- Default Branch: master
- Last Pushed: 2023-12-16T16:44:40.000Z (11 months ago)
- Last Synced: 2024-10-03T12:25:45.270Z (about 1 month ago)
- Topics: crypto-js, decryption, encoding, encryption, hmac, nodejs, pbkdf2, security, subtlecrypto, web
- Language: TypeScript
- Homepage:
- Size: 2.3 MB
- Stars: 41
- Watchers: 3
- Forks: 8
- Open Issues: 2
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Funding: .github/FUNDING.yml
- License: LICENSE
Awesome Lists containing this project
README
A powerful and easy-to-use **text** and **data** encryption library for **NodeJS** and the **web**.
[](https://buttercup.pw) [](https://www.npmjs.com/package/iocane/) [](https://www.npmjs.com/package/iocane/)
## About
iocane makes text and data encryption and decryption easy by bundling all the complicated processes into one succinct library. Encrypt and decrypt **strings** and **buffers** easily by using iocane's encryption format - string->string / buffer->buffer. Encrypt and decrypt **streams** in NodeJS.
This library uses "sessions" for encryption and decryption. A session describes one encryption/decryption action, and can also have options be further overridden at the time of execution. Check the examples below for a better idea of how this process works.
iocane works in the browser, too. Both a **node version** and a **web version** are available:
```javascript
const iocane = require("iocane"); // node
```
```javascript
import * as iocane from "iocane/web" // web
```
### Features
**iocane** by default boasts the following features:
* AES-CBC / AES-GCM encryption:
* Text
* Buffers
* Streams _(only in NodeJS)_
* 256bit keys
* PBKDF2 key derivation (with 250k/custom iterations)
* 35KB minified web version (10KB gzipped)
* Overridable encryption/derivation/packing functionality to allow for adaptation to yet-unsupported environments
## Installation
Install `iocane` as a dependency using `npm`:
```shell
npm install iocane --save
```
## Usage
**iocane** can be easily used to encrypt text:
```typescript
import { createAdapter } from "iocane";
createAdapter()
.encrypt("some secret text", "myPassword")
.then(encryptedString => {
// do something with the encrypted text
});
```
Decryption is even simpler, as instructions on _how_ to decrypt the payload is included in the payload itself:
```typescript
import { createAdapter } from "iocane";
createAdapter()
.decrypt(encryptedString, "myPassword")
.then(decryptedString => {
// ...
});
```
During encryption, you can override a variety of options:
```typescript
import { EncryptionAlgorithm, createAdapter } from "iocane";
const encrypted = await createAdapter()
.setAlgorithm(EncryptionAlgorithm.GCM) // use GCM encryption
.setDerivationRounds(300000)
.encrypt(target, password);
```
Each cryptographic function can be overridden by simply replacing it on the adapter
```typescript
import { createAdapter } from "iocane";
const adapter = createAdapter();
adapter.deriveKey = async (password: string, salt: string) => { /* ... */ };
await adapter.encrypt(/* ... */);
```
_Note that the default encryption mode is `EncryptionAlgorithm.CBC` (AES-CBC encryption)._
### Encrypting and decrypting data buffers
Iocane can handle buffers the same way it handles strings - just pass them into the same encrypt/decrypt functions:
```typescript
import { createAdapter } from "iocane";
import fs from "fs";
createAdapter()
.setAlgorithm(EncryptionAlgorithm.CBC)
.encrypt(fs.readFileSync("./test.bin"), "passw0rd")
.then(data => fs.writeFileSync("./test.bin.enc", data));
```
_The same can be performed on the web, with array buffers in place of standard buffers._
### Encrypting and decrypting using streams
_Available on the Node version only._
Iocane can create encryption and decryption streams, which is very useful for encrypting large amounts of data:
```typescript
import { createAdapter } from "iocane";
import fs from "fs";
import zlib from "zlib";
// Encrypt
fs
.createReadStream("/my-file.dat")
.pipe(zlib.createGzip())
.pipe(createAdapter().createEncryptStream("passw0rd"))
.pipe(fs.createWriteStream("/destination.dat.enc"));
// Decrypt
fs
.createReadStream("/destination.dat.enc")
.pipe(createAdapter().createDecryptStream("passw0rd"))
.pipe(zlib.createGunzip())
.pipe(fs.createWriteStream("/my-file-restored.dat"));
```
### Web usage
When building a project for the web, make sure to use the web-based version of iocane. Bundling the node version will create super-large bundles and result in slow encryption and decryption. iocane for the web uses UMD so it can be imported or simply loaded straight in the browser as a ``.
If you load iocane directly in the browser, it will create a global namespace at `window.iocane` (eg. `window.iocane.createAdapter`).
## Supported environments
iocane supports NodeJS version 10 and above. Node 8 was supported in `3.x` and versions prior to 8 were supported in `1.x`.
iocane is used in the browser as well - it works everywhere that `SubtleCrypto`, `ArrayBuffer` and `Promise` are available.
_Note: iocane is written in TypeScript, though versions before v2 were written in JavaScript._
## Buttercup
iocane was originally part of the [Buttercup](https://github.com/buttercup) suite. Buttercup is a supported dependent of iocane and efforts are made to align iocane with Buttercup's target platforms and uses.