tink icon indicating copy to clipboard operation
tink copied to clipboard

Published 20 hours ago verified publisher icon tink-crypto

Streaming hybrid encryption/decryption API

Open charredlot opened this issue 4 years ago • 1 comments

Hi

I was wondering if y'all were planning on adding a streaming hybrid encryption/decryption API (similar to the existing streamingaead)? It would be useful for encrypting and decrypting large files.

Is your feature request related to a problem?

The existing HybridEncrypt API requires loading the entire plaintext into a slice which isn't great for large files.

Describe the solution you'd like

A streaming HybridEncrypt API that takes an io.Writer (and corresponding streaming HybridDecrypt of course) similar to streamingaead

Describe alternatives you've considered

  • We'd rather use tink than rolling our own out of the primitives.
  • We could chunk the file and call HybridEncrypt.Encrypt repeatedly but that seems inefficient for speed and file size and problematic when reassembling the chunks
  • I tried combining the existing hybrid encryption ECIES with the existing streamingaead in this commit and it functions, but I don't know if it makes sense to do that.

Additional context

charredlot avatar Jan 16 '21 02:01 charredlot

Yes, it's definitely something we want to add and we have someone looking into this.

kste avatar Jan 19 '21 09:01 kste

I'd like to add my support for this.

gdbelvin avatar Nov 04 '22 17:11 gdbelvin