covert-encryption
covert-encryption
Trying to decode a password-encrypted message by pasteing it in a terminal: ``` $ age -d -----BEGIN AGE ENCRYPTED FILE----- YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IHNjcnlwdCAzMGNPVU9NVWJFYkZtejdz dHZQZDhBIDE4ClB2bEo2ako5dGdDcHNvT0F2VGNxSFBMSmxHYjRUcWM0MDlKRnl0 RnFYMUkKLS0tIHBJMGNmNVBub2FCd0tYTFljRmM0UTFML0w0eVN0ckdTcUtTSE9F UFhzcXcK2kmvabtVqQySkhhw5z2USvSWgQyDe9VEOWlSOwUGzu26cxtEc/uy1DKF klzTLEnter passphrase: age: error: incorrect passphrase...
XEdDSA requires a 64-byte nonce as additional security against such a case where the same message was signed many times and a computational error or a side channel leak could...
Currently it returns a tuple (password, ~~valid~~ visible), which is not meaningful for non-Covert passwords. Should refactor this utility function ~~not to return validity but rather handle that via a...
Covert should switch to the [Monocypher library](https://monocypher.org/) for elliptic curve operations because libsodium is lacking much required functionality such as Dirty Elligator 2 (no, despite the name that is not...
It would be good to have wordlists for languages other than English. We intend to create our own, following the principle of unique 3-prefixes as with English (for easy autocompletion...
Decoding of keys, in particular of encrypted minisign and ssh secret keys, is not tested adequately. A single unit test for each of those using the keys within `tests/keys/` should...
On our near-term roadmap (2022/Q1): - Implement a minimal C library, sans I/O and no UI, just Covert cryptography and Archive handling. The purpose of this is to provide bindings...
The current implementation is rather naive. Should be rewritten using `pathlib` where possible. Only the file being read should be kept open. Possibly it should be refactored so that files...
Currently Covert raises `ValueError` for any "normal" errors that might occur because of invalid data or authentication failure, etc, and `Exception` for errors that signal incorrect use (i.e. buggy application...
Merges #57 #62 #63 fixing conflicts and a few bugs introduced within. Additionally fixes the problem with empty password. Thus, all currently open PRs and issues are handled in this....