UNPKG

iocane

Version:

Textual encryption library

github.com/perry-mitchell/iocane

perry-mitchell/iocane

153 lines (103 loc) 5.33 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
![iocane](https://raw.githubusercontent.com/perry-mitchell/iocane/master/iocane_header.jpg) A powerful and easy-to-use **text** and **data** encryption library for **NodeJS** and the **web**. [![Buttercup](https://cdn.rawgit.com/buttercup-pw/buttercup-assets/6582a033/badge/buttercup-slim.svg)](https://buttercup.pw) [![Downloads per month on NPM](https://img.shields.io/npm/dm/iocane.svg?maxAge=2592000)](https://www.npmjs.com/package/iocane/) [![npm version](https://badge.fury.io/js/iocane.svg)](https://www.npmjs.com/package/iocane/) ## About iocane makes text and data encryption and decryption easy by bundling all the complicated processes into one succinct library. Encrypt and decrypt **strings** and **buffers** easily by using iocane's encryption format - string->string / buffer->buffer. Encrypt and decrypt **streams** in NodeJS. This library uses "sessions" for encryption and decryption. A session describes one encryption/decryption action, and can also have options be further overridden at the time of execution. Check the examples below for a better idea of how this process works. iocane works in the browser, too. Both a **node version** and a **web version** are available: ```javascript const iocane = require("iocane"); // node ``` ```javascript import * as iocane from "iocane/web" // web ``` ### Features **iocane** by default boasts the following features: * AES-CBC / AES-GCM encryption: * Text * Buffers * Streams _(only in NodeJS)_ * 256bit keys * PBKDF2 key derivation (with 250k/custom iterations) * 35KB minified web version (10KB gzipped) * Overridable encryption/derivation/packing functionality to allow for adaptation to yet-unsupported environments ## Installation Install `iocane` as a dependency using `npm`: ```shell npm install iocane --save ``` ## Usage **iocane** can be easily used to encrypt text: ```typescript import { createAdapter } from "iocane"; createAdapter() .encrypt("some secret text", "myPassword") .then(encryptedString => { // do something with the encrypted text }); ``` Decryption is even simpler, as instructions on _how_ to decrypt the payload is included in the payload itself: ```typescript import { createAdapter } from "iocane"; createAdapter() .decrypt(encryptedString, "myPassword") .then(decryptedString => { // ... }); ``` During encryption, you can override a variety of options: ```typescript import { EncryptionAlgorithm, createAdapter } from "iocane"; const encrypted = await createAdapter() .setAlgorithm(EncryptionAlgorithm.GCM) // use GCM encryption .setDerivationRounds(300000) .encrypt(target, password); ``` Each cryptographic function can be overridden by simply replacing it on the adapter ```typescript import { createAdapter } from "iocane"; const adapter = createAdapter(); adapter.deriveKey = async (password: string, salt: string) => { /* ... */ }; await adapter.encrypt(/* ... */); ``` _Note that the default encryption mode is `EncryptionAlgorithm.CBC` (AES-CBC encryption)._ ### Encrypting and decrypting data buffers Iocane can handle buffers the same way it handles strings - just pass them into the same encrypt/decrypt functions: ```typescript import { createAdapter } from "iocane"; import fs from "fs"; createAdapter() .setAlgorithm(EncryptionAlgorithm.CBC) .encrypt(fs.readFileSync("./test.bin"), "passw0rd") .then(data => fs.writeFileSync("./test.bin.enc", data)); ``` _The same can be performed on the web, with array buffers in place of standard buffers._ ### Encrypting and decrypting using streams _Available on the Node version only._ Iocane can create encryption and decryption streams, which is very useful for encrypting large amounts of data: ```typescript import { createAdapter } from "iocane"; import fs from "fs"; import zlib from "zlib"; // Encrypt fs .createReadStream("/my-file.dat") .pipe(zlib.createGzip()) .pipe(createAdapter().createEncryptStream("passw0rd")) .pipe(fs.createWriteStream("/destination.dat.enc")); // Decrypt fs .createReadStream("/destination.dat.enc") .pipe(createAdapter().createDecryptStream("passw0rd")) .pipe(zlib.createGunzip()) .pipe(fs.createWriteStream("/my-file-restored.dat")); ``` ### Web usage When building a project for the web, make sure to use the web-based version of iocane. Bundling the node version will create super-large bundles and result in slow encryption and decryption. iocane for the web uses UMD so it can be imported or simply loaded straight in the browser as a `<script>`. If you load iocane directly in the browser, it will create a global namespace at `window.iocane` (eg. `window.iocane.createAdapter`). ## Supported environments iocane supports NodeJS version 10 and above. Node 8 was supported in `3.x` and versions prior to 8 were supported in `1.x`. iocane is used in the browser as well - it works everywhere that `SubtleCrypto`, `ArrayBuffer` and `Promise` are available. _Note: iocane is written in TypeScript, though versions before v2 were written in JavaScript._ ## Buttercup iocane was originally part of the [Buttercup](https://github.com/buttercup) suite. Buttercup is a supported dependent of iocane and efforts are made to align iocane with Buttercup's target platforms and uses.