Ordinal Crypto 🔐

The cryptography library for the Ordinal Platform

Usage

let (priv_key, pub_key) = ordinal_crypto::generate_exchange_keys();
let (fingerprint, verifying_key) = ordinal_crypto::signature::generate_fingerprint();

let content = vec![0u8; 1214];

let encrypted_content =
    ordinal_crypto::content::encrypt(&fingerprint, &content, &pub_key).unwrap();

let (encrypted_content, encrypted_key) =
    ordinal_crypto::content::extract_components_for_key_position(&encrypted_content, 0).unwrap();

let decrypted_content = ordinal_crypto::content::decrypt(
    Some(&verifying_key),
    priv_key,

    &encrypted_key,
    &encrypted_content,
)
.unwrap();

assert_eq!(decrypted_content, content);

Limits

MAX public keys -> 65,535 MAX content size -> 77.46237 mb

Reasoning:

IPv6 minimum MTU 1,280

each UDP packet in our system needs:

• IPv6 headers (40 bytes)
• UDP headers (8 bytes)
• uuid (16 bytes)
• position (2 bytes)

our base, usable packet size, is 1,214 bytes (1,280 bytes - 40 bytes - 8 bytes - 16 bytes - 2 bytes)

total possible in a “payload” with a 16 bit position counter is 79.55949 mb (1,214 bytes * 65,535)

MAX public keys (32 bytes * 65,535) = 2.09712 mb MAX content size (MAX "payload" size - MAX public keys) = 77.46237 mb

Security

THIS CODE HAS NOT BEEN AUDITED OR REVIEWED. USE AT YOUR OWN RISK.

WARNING: the AES256 content key encryption implementation may currently be vulnerable to side-channel timing attacks due to my lack of expertise as it relates to how much (if anything) the timing of the block allocations reveals about the underlying bytes being allocated. There is a way to do this correctly, it will just need to be reviewed.