UNPKG

encryptor-e2e

Version:

`encryptor-e2e` is a lightweight Node.js library that provides **end-to-end encrypted messaging** using a hybrid cryptographic approach — combining **RSA for key exchange** and **AES for message encryption**. It simplifies the process of securely sending

github.com/rRahul0/encryptor-e2e

rRahul0/encryptor-e2e

141 lines (103 loc) 5.27 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
# 🔐 encryptor-e2e `encryptor-e2e` is a lightweight Node.js library that provides **end-to-end encrypted messaging** using a hybrid cryptographic approach — combining **RSA for key exchange** and **AES for message encryption**. It simplifies the process of securely sending and receiving messages with just a few high-level functions. --- ## ✨ Features - 🔑 **Hybrid Encryption**: Combines RSA (asymmetric) and AES (symmetric) encryption for optimal performance and security. - 🔐 **End-to-End Secure Messaging**: Encrypt and decrypt messages using securely exchanged keys. - 🧠 **High-Level API**: Abstracted functions make implementation effortless. - 🔧 **Built with TypeScript**: Includes full type definitions out of the box. - 🛡️ **Safe Key Management**: Generates and uses secure, random AES keys and RSA key pairs. --- ## 📦 Installation ```bash npm install encryptor-e2e ``` ## 🚀 Usage Example The following example demonstrates how to use e2e-secure-messaging for secure messaging between two parties, Alice and Bob. ### 1. Import the Library ```bash import * as secureMessaging from 'encryptor-e2e'; // or for CommonJS // const secureMessaging = require('encryptor-e2e'); ``` ### 2. Generate Key Pairs Each user (e.g., Alice and Bob) needs an RSA key pair to securely exchange symmetric keys. This can be generated using generateKeyPair(). ```bash // Generate key pairs for Alice and Bob const aliceKeys = secureMessaging.generateKeyPair(); const bobKeys = secureMessaging.generateKeyPair(); ``` ### 3. Send a Secure Message (Alice → Bob) Alice can send a secure message to Bob by calling sendSecureMessage(). This function: - Generates a random symmetric key (AES). - Encrypts the message using AES and the symmetric key. - Encrypts the symmetric key with Bob’s RSA public key. The result includes both the encryptedMessage and the encryptedSymmetricKey, which Alice can send to Bob. ```bash const message = "Hello Bob, this is a secure message!"; const { encryptedMessage, encryptedSymmetricKey } = secureMessaging.sendSecureMessage( message, aliceKeys.privateKey, bobKeys.publicKey ); console.log("Encrypted Message:", encryptedMessage); console.log("Encrypted Symmetric Key:", encryptedSymmetricKey); ``` ### 4. Receiving a Secure Message Bob receives the encrypted message and encrypted symmetric key from Alice. He can decrypt the message using receiveSecureMessage(), which: - Decrypts the symmetric key using Bob’s private RSA key. - Decrypts the message using the decrypted symmetric key. ```bash const decryptedMessage = secureMessaging.receiveSecureMessage( encryptedMessage, encryptedSymmetricKey, bobKeys.privateKey ); console.log("Decrypted Message from Alice:", decryptedMessage); // Outputs: "Hello Bob, this is a secure message!" ``` ## 📘 API Reference ```generateKeyPair()``` Generates an RSA key pair for secure key exchange. - Returns: ```{ publicKey, privateKey }``` — The public and private RSA keys. ```sendSecureMessage(message, senderPrivateKey, receiverPublicKey)``` Encrypts a message for end-to-end secure communication. - Parameters: - ```message``` (string): The plaintext message to encrypt. - ```senderPrivateKey``` (string): The sender’s private RSA key (for secure identity verification). - ```receiverPublicKey``` (string): The receiver’s public RSA key. - Returns: ```{ encryptedMessage, encryptedSymmetricKey }``` — The encrypted message and encrypted symmetric key. ```bash receiveSecureMessage(encryptedMessage: string, encryptedSymmetricKey: string, receiverPrivateKey: string): string ``` Decrypts a message that was securely encrypted using sendSecureMessage. - Parameters: ```encryptedMessage``` (string): The encrypted message. ```encryptedSymmetricKey``` (string): The encrypted symmetric key. ```receiverPrivateKey``` (string): The receiver’s private RSA key for decrypting the symmetric key. - Returns: ```string``` — The decrypted message. ## Security Best Practices - Keep Private Keys Secure: The private keys are essential to message decryption and should never be exposed or shared. - Use HTTPS in Production: If sending encrypted data over the network, always use HTTPS to prevent interception. ## 🧪 Example (Quick Test) ```bash const alice = secureMessaging.generateKeyPair(); const bob = secureMessaging.generateKeyPair(); const { encryptedMessage, encryptedSymmetricKey } = secureMessaging.sendSecureMessage( "Confidential Message", alice.privateKey, bob.publicKey ); const result = secureMessaging.receiveSecureMessage( encryptedMessage, encryptedSymmetricKey, bob.privateKey ); console.log("Bob received:", result); ``` ### License [![MIT License](https://img.shields.io/badge/License-MIT-000?style=for-the-badge&logo=opensourceinitiative&logoColor=white)](https://opensource.org/licenses/MIT) ## Authors - [@Rahul Karmakar](https://www.npmjs.com/~rahul28112002) ### Acknowledgments [![crypto-js](https://img.shields.io/badge/crypto--js-000?style=for-the-badge&logo=npm&logoColor=white)](https://www.npmjs.com/package/crypto-js) [![node-rsa](https://img.shields.io/badge/node--rsa-000?style=for-the-badge&logo=npm&logoColor=white)](https://www.npmjs.com/package/node-rsa)