UNPKG

@dwn-protocol/id-sdk

Version:

SDK for accessing the features and capabilities

github.com/d-protocol/id-sdk/tree/main

d-protocol/id-sdk

138 lines (122 loc) 4.56 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
import { crypto } from '@noble/hashes/crypto'; /** * The `AesGcm` class provides an interface for AES-GCM * (Advanced Encryption Standard - Galois/Counter Mode) encryption and * decryption operations. The class uses the Web Crypto API for * cryptographic operations. * * All methods of this class are asynchronous and return Promises. They all * use the Uint8Array type for keys and data, providing a consistent * interface for working with binary data. * * Example usage: * * ```ts * const key = await AesGcm.generateKey({ length: 128 }); * const iv = new Uint8Array(12); // generate a 12-byte initialization vector * const message = new TextEncoder().encode('Hello, world!'); * const ciphertext = await AesGcm.encrypt({ * data: message, * iv, * key, * tagLength: 128 * }); * const plaintext = await AesGcm.decrypt({ * data: ciphertext, * iv, * key, * tagLength: 128 * }); * console.log(new TextDecoder().decode(plaintext)); // 'Hello, world!' * ``` */ export class AesGcm { /** * Decrypts the provided data using AES-GCM. * * @param options - The options for the decryption operation. * @param options.additionalData - Data that will be authenticated along with the encrypted data. * @param options.data - The data to decrypt. * @param options.iv - A unique initialization vector. * @param options.key - The key to use for decryption. * @param options.tagLength - This size of the authentication tag generated in bits. * @returns A Promise that resolves to the decrypted data as a Uint8Array. */ public static async decrypt(options: { additionalData?: Uint8Array, data: Uint8Array, iv: Uint8Array, key: Uint8Array, tagLength?: number }): Promise<Uint8Array> { const { additionalData, data, iv, key, tagLength } = options; const webCryptoKey = await this.importKey(key); // Web browsers throw an error if additionalData is undefined. const algorithm = (additionalData === undefined) ? { name: 'AES-GCM', iv, tagLength } : { name: 'AES-GCM', additionalData, iv, tagLength }; const plaintextBuffer = await crypto.subtle.decrypt(algorithm, webCryptoKey, data); // Convert from ArrayBuffer to Uint8Array. const plaintext = new Uint8Array(plaintextBuffer); return plaintext; } /** * Encrypts the provided data using AES-GCM. * * @param options - The options for the encryption operation. * @param options.additionalData - Data that will be authenticated along with the encrypted data. * @param options.data - The data to decrypt. * @param options.iv - A unique initialization vector. * @param options.key - The key to use for decryption. * @param options.tagLength - This size of the authentication tag generated in bits. * @returns A Promise that resolves to the encrypted data as a Uint8Array. */ public static async encrypt(options: { additionalData?: Uint8Array, data: Uint8Array, iv: Uint8Array, key: Uint8Array, tagLength?: number }): Promise<Uint8Array> { const { additionalData, data, iv, key, tagLength } = options; const webCryptoKey = await this.importKey(key); // Web browsers throw an error if additionalData is undefined. const algorithm = (additionalData === undefined) ? { name: 'AES-GCM', iv, tagLength } : { name: 'AES-GCM', additionalData, iv, tagLength }; const ciphertextBuffer = await crypto.subtle.encrypt(algorithm, webCryptoKey, data); // Convert from ArrayBuffer to Uint8Array. const ciphertext = new Uint8Array(ciphertextBuffer); return ciphertext; } /** * Generates an AES key of a given length. * * @param length - The length of the key in bits. * @returns A Promise that resolves to the generated key as a Uint8Array. */ public static async generateKey(options: { length: number }): Promise<Uint8Array> { const { length } = options; // Generate the secret key. const lengthInBytes = length / 8; const secretKey = crypto.getRandomValues(new Uint8Array(lengthInBytes)); return secretKey; } /** * A private method to import a raw key for use with the Web Crypto API. * * @param key - The raw key material. * @returns A Promise that resolves to a CryptoKey. */ private static async importKey(key: Uint8Array): Promise<CryptoKey> { return crypto.subtle.importKey( 'raw', key.buffer, { name: 'AES-GCM', length: key.byteLength * 8 }, true, ['encrypt', 'decrypt'] ); } }