UNPKG

triplesec

Version:

A CommonJS-compliant system for secure encryption of smallish secrets

github.com/keybase/triplesec

keybase/triplesec

64 lines (48 loc) 1.73 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
# node-triplesec A CommonJS module for symmetric key encryption of smallish secrets ## How to install ```sh npm install triplesec ``` ## How to Use ### One-shot Mode ```coffeescript {encrypt, decrypt} = require 'triplesec' key = new Buffer 'top-secret-pw' pt0 = new Buffer 'the secret!' pt1 = new Buffer pt0 encrypt { key, data : pt1 }, (err, ciphertext) -> decrypt { key, data : ciphertext }, (err, pt2) -> console.log "Right back the start! #{pt0} is #{pt2}" ``` ### Reusable Derived Keys The most expensive part of TripleSec is to derive keys from your given passphrase. This is intentionally so to make it more expensive to crack your password in the case that your ciphertext is stolen. However, you can spread this expense over multiple encryptions if you plan to be encrypting more than once: ```coffeescript {Encryptor, Decryptor} = require 'triplesec' key = new Buffer 'top-secret-pw' enc = new Encryptor { key } dec = new Decryptor { key } pt0 = new Buffer 'the secret!' pt1 = new Buffer pt0 pt2 = new Buffer pt0 enc.run { data : pt1 }, (err, ct1) -> enc.run { data : pt2 }, (err, ct2) -> dec.run { data : ct1 }, (err, pt3) -> dec.run { data : ct2 }, (err, pt4) -> console.log "Right back the start! #{pt0} is #{pt3} is #{pt4}" ``` If you want to resalt derived keys with every encryption, you should explicitly ask for that. Otherwise, salt will be reused to speed up encryption (and decryption). ```coffeescript enc.run { data : pt1 }, (err, ct1) -> enc.resalt {}, () -> enc.run { data : pt2 }, (err, ct2) -> ``` ### Full API Documentation Documentation generated by [codo](https://github.com/netzpirat/codo) is available [here](http://keybase.github.io/triplesec/codo/index.html).