From dc1f5a14c58d2b098a35db7b073f48137dd1c13d Mon Sep 17 00:00:00 2001 From: Gab <24553253+gabrix73@users.noreply.github.com> Date: Thu, 13 Feb 2025 15:08:10 +0100 Subject: Update README.md --- README.md | 171 +++++++++++++++++++++++++++++++++++++------------------------- 1 file changed, 101 insertions(+), 70 deletions(-) (limited to 'README.md') diff --git a/README.md b/README.md index a05cb6f..9a2b9d1 100644 --- a/README.md +++ b/README.md @@ -1,78 +1,109 @@ -# Nofuture-Buddy-Go-Memguard -Web application for ephemeral encryption of texts. Paring the sessions with an interlocutor permets encryption/decryption of conversations via an external realtime communication applications. + + + Nofuture.go - Post-Quantum Cryptographic Core Documentation + + + +

Nofuture.go - Post-Quantum Cryptographic System

-Technical Analysis: +
+

MemGuard Initialization & Configuration

+
memguard.CatchInterrupt()
+memguard.Purge()
+unix.Mlockall(unix.MCL_CURRENT | unix.MCL_FUTURE)
+ +
-

Nofuture Core Security Features:


- -

Key Security Components:

+
+

MemGuard in Key Lifecycle Management

+
passphrase, _ := memguard.NewImmutableRandom(32)
+defer passphrase.Destroy()
+ +
-a) Memory Protection: +
+

Enclave-Based Cryptography

+
func deriveEnclaveKey(passphrase *memguard.Enclave) {
+    passBuf, _ := passphrase.Open()
+    defer passBuf.Destroy()
+}
+ +
-
memguard.CatchInterrupt()
-defer memguard.Purge()
-

This ensures sensitive data is wiped from memory when the program terminates or receives an interrupt signal.

+
+

Quantum-Safe Key Exchange

+
pubKey, secKey, _ := quantumKEMKeyPair()
+defer pubKey.Destroy()
+defer secKey.Destroy()
+ +
-b) Session Management: - +
+

Secure Session Management

+
type QuantumSession struct {
+    sessionKey   *memguard.Enclave
+    remotePubKey *memguard.Enclave
+}
+ +
-c) Encryption Process: - - -

Virtual Keyboard Security Features:

- -Security Assessment: +
+

Memory-Hardened Cryptography

+
lockedKey, _ := memguard.NewImmutableFromBytes(key)
+defer lockedKey.Destroy()
+ +
+ +
+

MemGuard Best Practices

+ +
+ -

The application provides strong protection against:

-

RAM-based attacks:

- -

Network-based threats:

- -

Keylogging protection:

- - -

Malware resistance:

-

The combination of memguard protection and the virtual keyboard makes it extremely difficult for malware to capture sensitive data because:

-Encryption keys are never exposed in regular memory.
-Virtual keyboard prevents keylogging.
-Memory is actively protected against dumping attempts.
-

Overall Security Assessment:

-

The application provides robust protection against both memory-based attacks and network-based threats.

-

The use of memguard for memory protection, combined with the virtual keyboard's anti-keylogging features, creates multiple layers of security that make it extremely difficult for malware or spyware to capture sensitive data.

-- cgit v1.2.3