ymarcus93
commented
4 years ago Alternatively, use the sealed box approach so that Client does not need to manage private DH secrets
Open ymarcus93 opened 4 years ago
ymarcus93
commented
4 years ago Alternatively, use the sealed box approach so that Client does not need to manage private DH secrets
Currently, we use the RSA library provided by the standard library in Go. However, the Callisto paper mentions using
libsodiumfor doing asymmetric encryption with the DLOCs and LOCs. Details of the scheme used can be found here: https://libsodium.gitbook.io/doc/public-key_cryptography/authenticated_encryptionTransitioning to this scheme would require instantiating a public DH value for the client, as well as the DLOCs and LOCs.