You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: ENCRYPTION.md
+4Lines changed: 4 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,5 +1,9 @@
1
1
# A note about age encryption in HashUp
2
2
3
+
> [!WARNING]
4
+
> Disclaimer: the author isn't a cryptographer, so take all this with a grain
5
+
> of salt.
6
+
3
7
The age encryption used when encrypting NATS messages isn't a suitable encryption method, as it lacks some desired properties for message exchange:
4
8
5
9
> Indeed, we don't want people to use age for messaging, because it would be a pretty lousy messaging encryption tool: no forward secrecy, no ratcheting, no authentication... age is optimized for file encryption, so the occasional reminder of that is something we want to keep, although I agree PAYLOAD would be a good generic word.
0 commit comments