XPost: alt.privacy.anon-server, sci.crypt   
   From: noreply@mixmin.net   
      
   Richard Heathfield wrote:> On 06/02/2025 09:36, Gabx wrote:   
   >   
   > And the key provider. Let's just hope he or she is trustworthy, eh?   
      
   This is a testing experience.   
   In future releases i will add cryptography.fernet and/or mmap.   
   Fernet crypts all tipes of data in ram  while mmap avoids disk writes.   
      
   >>   
   >> The keys are generated on our server and kept in ram.   
   >> At the end of the session they will be deleted forever.   
   >   
   > Honest, guv...   
      
   ?   
   I'm lost on this.   
      
   >   
   > Except for people who keep copies.   
      
   we don't force anyone to do it   
   I had an idea.   
   Should I invite them to write on our cryptpad.virebent.art ?   
      
   > Diffie-Hellman for keys and AES for encryption.   
   >   
      
   When you call /start_session, it creates a new Ed25519 private key and   
   corresponding public key, these Ed25519 keys are primarily used for signing.   
      
   Internally, the script converts the Ed25519 private key to an X25519 private   
   key.   
      
   This X25519 key is used for ECDH (Elliptic-Curve Diffie–Hellman) key   
   agreement with the peer’s X25519 public key.   
      
   Once the ephemeral X25519 ECDH handshake is done, the script uses HKDF (a   
   key-derivation function) to derive a 32-byte key.   
   That key is then used for AES-256-GCM encryption.   
      
   After encryption with AES-256-GCM, the ciphertext is signed with the ephemeral   
   Ed25519 private key.   
   The receiving side verifies that signature using the sender’s Ed25519 public   
   key.   
      
   https://github.com/gabrix73/Nofuture-Buddy.git   
      
   Gabx   
      
   https://safecomms.virebent.art   
      
   --- SoupGate-DOS v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)