Services/Sync/SimplifiedCrypto: Difference between revisions

Jump to navigation Jump to search

Services/Sync/SimplifiedCrypto (view source)

Revision as of 22:50, 29 October 2010

32 bytes added ,  29 October 2010
→‎Passphrase
Line 26: Line 26:




=== Passphrase ===
=== Passphrase / Sync Key ===


Rather than have a user enter a passphrase (which will likely be weak), we have already transitioned to having them generate a "sync key" (which they can replace if they so choose). This is 20 alphanumeric characters.
Rather than have a user enter a passphrase (which will likely be weak), we have already transitioned to having them generate a "sync key" (which they can replace if they so choose). This is 20 alphanumeric characters.
Line 49: Line 49:
The generated base36 alphanumeric key doesn't actually need to be decoded: it is used as input into a pair of hash operations which yield an encryption key and an HMAC key.
The generated base36 alphanumeric key doesn't actually need to be decoded: it is used as input into a pair of hash operations which yield an encryption key and an HMAC key.


::encr = SHA256("encrypt:" + key)
::key_encr = SHA256("encrypt:" + sync_key)
::hmac = SHA256("hmac:" + key)
::key_hmac = SHA256("hmac:" + sync_key)
 
The outputs are then used during the encryption process.


The outputs are then used during the key encryption process.


=== Bulk keys ===
=== Bulk keys ===
Philikon
canmove, Confirmed users
725

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/264357"

Navigation menu