@adorsys-gis/web-auth-prf/dist/src/lib/keyDerivationService.js

A WebAuthn library implementing password-based key derivation functions (PRF) for secure authentication and encryption

"use strict";
Object.defineProperty(exports, "__esModule", { value: true });
exports.KeyDerivationService = void 0;
class KeyDerivationService {
    async deriveKey(prfOutput, salt) {
        try {
            // Import the raw PRF output as a base key for HKDF.
            const baseKey = await crypto.subtle.importKey("raw", prfOutput, { name: "HKDF" }, false, ["deriveKey"]);
            // Derive a 256-bit AES-GCM key using HKDF.
            const derivedKey = await crypto.subtle.deriveKey({
                name: "HKDF",
                hash: "SHA-256",
                salt: salt,
                info: new Uint8Array([1, 2, 3, 4]),
            }, baseKey, { name: "AES-GCM", length: 256 }, false, ["encrypt", "decrypt"]);
            return derivedKey;
        }
        catch (error) {
            throw new Error(`Key derivation error: ${error.message}`);
        }
    }
}
exports.KeyDerivationService = KeyDerivationService;