Key Redesign Continues (145)
June 9, 2022•152 words
Total hours: 260.150
Top one:
1) Key derivation and security design
This is quite complicated because I’m having to address, attacks, rate limiting along with multiple concurrent attempts to upgrade, downgrade and migrate account security.
The idea is to make downgrading harder so that in the event that an account is compromised their is limited damage. However that’s quite hard to do given the fact that that once the root key and keyring are released all of those files and information is decrytable at will.
I’m still trying to figure out the security levels, tied into key generation and derivation in such a way that is multi platform and native at the same time. I’m thinking of having two applications (a utility and core application). The utility can handle the crypto stuff and use the Sodium.js library, whereas the main one is native and handles all device specific feature.