This repository has been archived by the owner on Jun 14, 2024. It is now read-only.
XX/WAKU-KEYSTORE: new RFC #571
Labels
track:rln
RLN Track (Secure Messaging/Applied ZK), e.g. relay and applications
track:waku-specs
Waku specs track (RAD)
Problem
The PR waku-org/nwaku#1466 implements in nwaku the JSON keystore format proposed in waku-org/nwaku#1238 (comment). Encryption of credentials is done using an implementation derived from nimbus keystore and implemented in nwaku in waku-org/nwaku#1285.
In order to properly address #543, the format and features implemented by the above PRs should be documented in a new RFC with suggested name XX/WAKU-KEYSTORE, to reflect the fact that in nwaku all related implementations are grouped under the
protocol\waku_keystore
module.Credentials padding
In #543 (comment) it is noted that the default keyfile implementation uses aes-ctr, which leaks the length of the ciphertext. Padding is not enforced in current nwaku implementation and it is up to the RFC to specify how this should be done (e.g. by using pkcs7 padding implemented in https://github.com/waku-org/nwaku/blob/6811af328cfae8b23755faaf3a30dae5df15880e/waku/v2/protocol/waku_noise/noise_utils.nim#L38-L60)
Acceptance criteria
The text was updated successfully, but these errors were encountered: