With the recent "burst" in cryptography posts on 0x00sec, I've decided to start a, more or less, point of concept framework. Nothing in the program is going to be groundbreaking new security measures, but a collection of many of the best.
- The framework is going to be written in Python, and Cython.
- Hosted on Github, I'm taking all suggestions and criticism that I can to make it better
As with all my projects, they are open source. It will provide as much flexibility as possible.
* Server-client model
- 2048 bit RSA encryption (can be lowered or raised based on user needs)
The data is hashed before being sent, and the hash is encrypted with the sender's private key, proving that the message came from the person that we believed sent it.
The hash, providing it was decrypted, will make sure the message wasn't corrupted along the way
- Data is decrypted within the server to perform, if configured, to filter data or search for keywords.
It's been a while since I programmed and my skills are a bit rusty, so code checks are welcome.
Github for Project (Updated first, but updates will be moved to GitLab after thorough testing)
GitLab for Project
Secure key exchange is absolutely something I am going to implement, but after the base form of the framework is complete. Any more suggestions of implementations are going into consideration.