A service for handling secrets to 12-factor apps

Find a file

Armin Friedl b39a3ef1ac First version - secsrv handling out secrets - secsrv-companion helping in generating input - secsrv-client retrieving secrets Signed-off-by: Armin Friedl <dev@friedl.net>		2019-11-23 22:45:40 +01:00
secsrv	First version	2019-11-23 22:45:40 +01:00
secsrv-client	First version	2019-11-23 22:45:40 +01:00
secsrv-companion	First version	2019-11-23 22:45:40 +01:00
.gitignore	First version	2019-11-23 22:45:40 +01:00
Cargo.lock	First version	2019-11-23 22:45:40 +01:00
Cargo.toml	First version	2019-11-23 22:45:40 +01:00
README.md	First version	2019-11-23 22:45:40 +01:00

README.md

SecServ

The simple secret service

Protocol

Alice (secret service): keypair (apk, ask) Bob (client): keypair (bpk, bsk)

KEY {id: string, keyid: string, nonce: b64, tag: signature} // alice checks access rights of id for keyid EKY {nonce1:b64, enc(key, nonce:64, bpk), tag: signature}