This repository was archived by the owner on Mar 29, 2022. It is now read-only.
End to end encryption #129
Open
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
- Hardcoded Hash Algorithms to SHA256 and SHA512 - __init__ working with JSON - Set up new keys
Using already produced RSA Keys
- Keys of AES - 128 are randomly generated and are encrypted using the RSA public key of the designated ECU - Working on adding the encrypted symmetric key and hashes of the encrypted images in the metadata that the ECUs parse
…ypted target - Custom field includes encrypted file hashes sha256 and sha512; a boolean encrypted_image option; an encrypted symmetric key - the encrypted image and key are both converted from binary to hex and will be needed to be converted back for decryption to work.
…ypted files will be stored
…ccessed by the director for encrypted folder
- Director generates random AES-128 key - Encrypts the image with the key - Encrypts the key with the public key of the ECU image is meant for - Primary recieves the encrypted images and checks it's encrypted hashes and encrypted length mentioned in the metadata (custom field) - After primary approves of the file; secondary checks the encrypted hashes and lengths - Then decrypts the key and image and checks the file against the metadata of unencrypted file - If everything checks out, it installs the image
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes #34
The director now encrypts images using AES key it randomly generates. It encrypts the AES Key using the public key of the ECU the image was meant for. Includes the encrypted hashes and encrypted length in the custom field.
The primary checks the encrypted file against the encrypted hashes and length in the custom field in the metadata. The secondary checks the encrypted hashes and lengths too, if verified, decrypts the image, verify the unencrypted image and downloads it.
Further Requirements: