77 - ChatOS - Trying encryption libraries

Livestream

Libraries

• Themis https://www.cossacklabs.com/themis Github
  • Bear app case study
• TweetNaCl.js https://www.npmjs.com/package/tweetnacl
  • https://tweetnacl.js.org/#/box

Resources

• Keybase Book - Crypto Chat https://book.keybase.io/docs/chat/crypto
• [Google Cloud - Security Key Management](https://cloud.google.com/security-key-management
• Kerckhoffs’ Principle -

Key features to use on ChatOS:

• Works on browser
• User can choose any passphrase, long or short
• End-to-end encryption (Firebase admin cannot decrypt the content)
• Preferrably 1-key
• Not too slow

Themis has wasm port - need to append ?url when imported. https://vitejs.dev/guide/features.html#webassembly

You can try at https://try-encryption-libs.vercel.app (Github: https://github.com/narze/try-encryption-libs)

Themis is very slow I dunno why…

Passphrase method use PBKDF2 with more than 100k iterations so it takes 2.5 seconds to encrypt, maybe I’ll find other libraries to convert passphrase to symmetric key separately.

Found out later that it’s 314110 rounds. 🫠