noise_spec
Monokex
noise_spec | Monokex | |
---|---|---|
6 | 2 | |
450 | 20 | |
0.0% | - | |
10.0 | 3.6 | |
over 5 years ago | over 3 years ago | |
HTML | OCaml | |
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
noise_spec
-
I worked at LastPass as an engineer. My 2 cents on the situation
Because I always want to identify the solution when we point to the problem:
https://doc.libsodium.org/
http://noiseprotocol.org/
-
How should I encrypt files for sharing over the internet?
If you're not looking to share files but instead need a full communications protocol, the question gets more complex. TLS is the most commonly used encryption layer, and lots of other protocols use TLS to encrypt their traffic. In the rare cases where it's not suitable, the Noise Protocol Framework works to design a secure protocol for the necessary uses.
-
help with Monocypher on an embedded system
TLS Client Authentication formalizes this, as do several patterns in the Noise protocol framework.
-
When To Roll Your Own X
As you now know, I have implemented a whole cryptographic library with a similar API to Libsodium’s. In addition I’ve worked on authenticated key exchange (similar to Noise), as well as PAKE (symmetric and augmented). And I’ve realised that the whole NaCl family of libraries, including NaCl, Libsodium, TweetNaCl, and Monocypher, are all too low-level for regular people to use safely.
-
Tim Cook revealed the real reason Apple won’t add RCS to the iPhone
Many other messaging apps use a separate client/server encryption protocol for this purpose. Several use TLS. The WhatsApp Security Whitepaper notes they use the Noise protocol when the client is a mobile device.
-
Mega: Malleable Encryption Goes Awry
What are real world implementations of the Noise Protocol? https://github.com/noiseprotocol/noise_spec/blob/v34/noise.m...
Quick search shows WireGuard protocol, but I am not sure if how much of the WireGuard protocol is the same as the Noise Protocol.
https://www.wireguard.com/formal-verification/
Monokex
-
help with Monocypher on an embedded system
I'm not aware… Unfortunately Monocypher and Libsodium are mostly low-level libraries, we need high-level constructions on top. I'm working on that on and off, and right now what I have is not ready (not documented, and only probably secure, which is code word for "run away before the monsters eat you"). In the mean time, you probably want Noise XX or Noise XK… if you can find implementations you can adapt to your own needs.
-
Session Protocol: Technical implementation details
(Shameless Plug™) Do not despair just yet: https://github.com/LoupVaillant/Monokex/
What are some alternatives?
minisign - A dead simple tool to sign files and verify digital signatures.
Monocypher - An easy to use, easy to deploy crypto library
wycheproof - Project Wycheproof tests crypto libraries against known attacks.
magic-wormhole - get things from one computer to another, safely
wireguard-vyatta-ubnt - WireGuard for Ubiquiti Devices
age - A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
ring - Safe, fast, small crypto using Rust