Replies: 2 comments 3 replies
-
|
Yes, after using the key exchange API, you can use any AEAD with the shared keys.
But using the key exchange API is more versatile and easier to use correctly (since you get two keys, for each direction). |
Beta Was this translation helpful? Give feedback.
-
|
Yes, it is more flexible to use the key exchange API, However, I have some questions if you don't mind : Since both keys computed in the key exchange API are the same (opposite way Rx/Tx), means that the sender can always decrypt the message, which means that a compromise on one end (Alice) can decrypt the message that was sent (to Bob). Something interesting i got recommended from someone, the Noise One-Way K pattern , looks a great fit for such idea. |
Beta Was this translation helpful? Give feedback.
-
|
https://doc.libsodium.org/public-key_cryptography/sealed_boxes |
Beta Was this translation helpful? Give feedback.
-
I know how sealed boxes work, but i was asking what is the best approach to implement an encryption scheme where you can verify the identity of the sender, while maintaining One-Way encryption. Thanks. |
Beta Was this translation helpful? Give feedback.
-
|
Verifying the identify of the sender means having a long-term key. Messages that the sender cannot recover imply single-use keys. You can sign the message using a long-term key, and encrypt that signed messages using ephemeral keys. |
Beta Was this translation helpful? Give feedback.
-
I am trying to achieve public key cryptography (authenticated) with XChaCha20-Poly1305.
is there a way to use XChaCha20-Poly1305 in the
crypto_box_easyfunction?Or should i just use the Key Exchange API to compute a shared key between two parties (Alice and Bob), and then pass the key to the
crypto_secretstream_xchacha20poly1305function?thanks.
Beta Was this translation helpful? Give feedback.
All reactions