Application should retrieve decryption key using an external source

[thecatkitty]

Key preparation:

1. The key is generated and used for data encryption
2. The key is divided into the local part and the remote part
3. The local part is delivered to the end user alongside the slideshow medium as an access code
4. Both parts are stored in the customer's infrastructure

Data access:

1. The end user enters their access code into the application
2. The application generates a request code (containing the local part and the timestamp) and asks the end user to deliver it to the customer
3. The customer verifies the timestamp and responds with the confirmation code (containing the remote part combined with the request timestamp) and ask the user to enter it into the application
4. The application extracts the remote part from the confirmation code, and combines it with the local part, resulting with a complete key used for content decryption
5. If the end user decided to do that, the application stores the local key combined with the machine hash in persistent storage for future use

Access code:

• 25 characters
• encodes the local part and the related data CRC32