From 5ed41eba5a257bd016e72a271df73e0e8a0e70bc Mon Sep 17 00:00:00 2001 From: Gab <24553253+gabrix73@users.noreply.github.com> Date: Tue, 11 Feb 2025 16:26:05 +0100 Subject: Update README.md --- README.md | 78 +++++++++++++++++++++++++++++++++++---------------------------- 1 file changed, 44 insertions(+), 34 deletions(-) diff --git a/README.md b/README.md index 2e39e57..01209ba 100644 --- a/README.md +++ b/README.md @@ -3,27 +3,30 @@ Web application for ephemeral encryption of texts. Paring the sessions with an Technical Analysis: -Nofuture Core Security Features: -Uses memguard for secure memory management -Implements curve25519 for public-key cryptography -Employs NaCl's box encryption for message security -Utilizes secure session management with random IDs -Implements CORS protection with proper headers -Key Security Components: +
memguard.CatchInterrupt() +defer memguard.Purge()+
This ensures sensitive data is wiped from memory when the program terminates or receives an interrupt signal.
-b) Session Management: +b) Session Management: -Private keys are stored in memguard.LockedBuffer -Public keys are stored as regular bytes -Sessions are managed in a thread-safe sync.Map -Session IDs use cryptographically secure random generation -c) Encryption Process: +Private keys are stored in memguard.LockedBuffer
+Public keys are stored as regular bytes
+Sessions are managed in a thread-safe sync.Map
+Session IDs use cryptographically secure random generation
+ +c) Encryption Process: Uses X25519 for key exchange Implements box.Seal for authenticated encryption @@ -39,23 +42,30 @@ Security Assessment: The application provides strong protection against: -RAM-based attacks: -Protected by memguard's secure memory allocation -Keys are automatically wiped from memory -No sensitive data in regular heap memory -Protected against cold boot attacks -Network-based threats: -All API endpoints use HTTPS -Proper CORS implementation -Input validation on all endpoints -Session-based authentication -Keylogging protection: -Virtual keyboard bypasses system keyboard -Randomized layout prevents pattern analysis -No physical key events to intercept -Protection against both software and hardware keyloggers -Malware resistance: -The combination of memguard protection and the virtual keyboard makes it extremely difficult for malware to capture sensitive data because: +The combination of memguard protection and the virtual keyboard makes it extremely difficult for malware to capture sensitive data because:
Encryption keys are never exposed in regular memory Virtual keyboard prevents keylogging Screen recording is ineffective due to randomized layouts -- cgit v1.2.3