Skip to content

Encrypted Notes Support #40

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
yuval-po wants to merge 27 commits into
base: develop
Choose a base branch
from
Open

Encrypted Notes Support #40

yuval-po wants to merge 27 commits into from

Conversation

@yuval-po
Copy link
Contributor

@yuval-po yuval-po commented Mar 25, 2022

This P.R introduces basic support for note encryption

NOTE: Encryption is in the ALPHA stage and should not be depended upon or deployed to production as-is
Data loss is a real possibility

Encryption is a custom, zero-knowledge scheme (nicknamed 'fractured key encryption') where the server provides part of the encryption parameters (Salts & KEKs) and the client uses them to both construct and encrypt its own encryption keys.
Once encrypted, the server cannot decrypt the data.
On the flip side, the client cannot decrypt the data without the server meaning the scheme also resists 'cold' attacks on the encrypted data, even given the original password.

More on the encryption mechanism in a separate article.

Additional changes included in the P.R:

  • Note management facade- provides better encapsulation of Note related operations
  • Added note operation debouncing (via NoteWrapper- a proxy-like class over raw Notes)
  • Better web-socket encapsulation
  • Dependency updates
  • Linting updates
  • New modals and components to support encryption-related configurations

yuval-po and others added 27 commits June 25, 2021 23:33
@yuval-po
Re-written as WebCrypto
ff5291d
@yuval-po
First flows
3929caa
@yuval-po
Tmp
999dd61
@yuval-po
Cryto I.S cont. + documentation
aae395a
@yuval-po
Reverted login to be non-async
e792354
@haimkastner
Merge branch 'develop' into cryptocore
c504bec
@yuval-po
Cleanup, initial integration, lint rules
3f1188b
@yuval-po
Added Weak Event. Needs validation
818cb8d
@yuval-po
Replaced node-sass with sass (Node16+ support)
71ede2d
@yuval-po
Fixed lint error
d0df8a8
@yuval-po
Integration Cont. (ts-events local compile!)
bdfac75
@yuval-po
Integration cont.
fc551a8
@yuval-po
Fixed debouncing on NoteWrapper and set interval to 1500
a679d24
@yuval-po
Notes socket encapsulation
fc8b948
@yuval-po
Beta working
1b31362
@yuval-po
Basic working example
af7f4a1
@yuval-po
Remove console logs
0112f2d
@yuval-po
Fixing single-note-tab state and decryption
0c505a2
@yuval-po
Added missing 'isInitialized' set
8450f9c
@yuval-po
Docs
2cece73
@yuval-po
Added 'Missing password' card when note is encrypted and password was…
e9558ad 
…n't given
@yuval-po
CSS Updates + Decrypt button length check
25ae6a9
@haimkastner
Add password loader
622ac0c
@haimkastner
Add encryption mark
7ada3f2
@haimkastner
Add encryption component
bd91903
@yuval-po
Log fixes
f95b38c
@yuval-po
Continued dev
dba43c8
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@yuval-po @haimkastner