Expand description
Client to manage the cryptographic machinery of a user account, including key-rotation
Modulesยง
- crypto ๐
- Functionality for re-encrypting account cryptographic state during user key rotation.
- data ๐
- Functionality for re-encrypting user data during key rotation.
- partial_
rotateable_ ๐keyset - password_
change_ ๐and_ rotate_ user_ keys - Functionality for rotating user keys, bundled with a password change.
- rotate_
user_ ๐keys - Client implementation for rotating user keys without a password change.
- rotation_
context ๐ - sync ๐
- Functionality for syncing the latest account data from the server
- unlock ๐
- Functionality for re-encrypting unlock (decryption) methods during user key rotation. During key-rotation, a new user-key is sampled. The unlock module then creates a set of newly encrypted copies, one for each decryption/unlock method.
- unlock_
method ๐ - Functionality for re-encrypting unlock method data during user key rotation.