Hi Mikkel, thank you very much. Seems like they have a much more advanced app than mine.
- Here is the repo: https://bitbucket.org/fgabrieli/cryptochat - https://bitbucket.org/fgabrieli/cryptochat/ also has instructions for installing to audit that i wrote for you :-) What i want to achieve is a free open source backdoor-free app which provides encryption for peer to peer communication. - The most important files are CryptoSocketProxy.js and DHMessage.s CrypoSocketProxy is a Proxy() instance for net.Socket such that it will automatically exchange a key with the other peer using Diffie-Hellman to encrypt later with AES-256-CBC. - For key generation and encryption im using crypto from nodejs provided openssl installed. - For Diffie-Hellman i have four states (this is something i did, maybe there is a paper written already with the states to use): const DH_STATE = { NOT_CONNECTED: 'NOT_CONNECTED', WAITING_FOR_SECRET: 'WAITING_FOR_SECRET', CONNECTED: 'CONNECTED' } - A good place to start looking at the code, maybe as entry point would be Client.js, line 27, this.connect() When socket('connect') it will send the common share and secret to the other peer and wait for it's secret to computer the symmetric key later thanks a lot for taking the time to help me!!! Fernando On Wednesday, 11 October 2017 21:50:38 UTC-3, Mikkel Wilson wrote: > > Fernando, > > I have some experience with these protocols and tools and could help with > an audit. > > I would suggest you also look at the fine work that's been done recently > by the Keybase team in building their secure chat application: > https://keybase.io/blog/keybase-chat. They're using symmetric keys > instead of stream ciphers, but the results may be similar. > > Mikkel > > > On Wednesday, October 11, 2017 at 10:44:56 AM UTC-7, Fernando Gabrieli > wrote: >> >> Hello all, i'm working on implementing a chat with encryption which uses >> Diffie-Hellman for exchanging a key first and then AES-256-CBC for >> symmetric encryption. Is anyone interested in contributing/auditing? :-) If >> so, i can pass the repo >> >> thanks, >> Fernando >> > -- Job board: http://jobs.nodejs.org/ New group rules: https://gist.github.com/othiym23/9886289#file-moderation-policy-md Old group rules: https://github.com/joyent/node/wiki/Mailing-List-Posting-Guidelines --- You received this message because you are subscribed to the Google Groups "nodejs" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/nodejs/502e5b21-5dbe-447e-90f9-6f6599f9f5ff%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
