# Ordinal Crypto 🔐
[](https://crates.io/crates/ordinal_crypto)
[](https://docs.rs/crate/ordinal_crypto/)
[](https://github.com/ordinarylabs/ordinal-crypto/blob/main/LICENSE)
The cryptography library for the Ordinal Platform
## Usage
```rust
let (priv_key, pub_key) = ordinal_crypto::generate_exchange_keys();
let (fingerprint, verifying_key) = ordinal_crypto::signature::generate_fingerprint();
let content = vec![0u8; 1214];
let encrypted_content =
ordinal_crypto::content::encrypt(&fingerprint, &content, &pub_key).unwrap();
let (encrypted_content, encrypted_key) =
ordinal_crypto::content::extract_components_for_key_position(&encrypted_content, 0).unwrap();
let decrypted_content = ordinal_crypto::content::decrypt(
Some(&verifying_key),
priv_key,
&encrypted_key,
&encrypted_content,
)
.unwrap();
assert_eq!(decrypted_content, content);
```
## Limits
MAX public keys -> 65,535
MAX content size -> 77.46237 mb
Reasoning:
IPv6 minimum MTU 1,280
each UDP packet in our system needs:
- IPv6 headers (40 bytes)
- UDP headers (8 bytes)
- uuid (16 bytes)
- position (2 bytes)
our base, usable packet size, is 1,214 bytes (1,280 bytes - 40 bytes - 8 bytes - 16 bytes - 2 bytes)
total possible in a “payload” with a 16 bit position counter is 79.55949 mb (1,214 bytes * 65,535)
MAX public keys (32 bytes * 65,535) = 2.09712 mb
MAX content size (MAX "payload" size - MAX public keys) = 77.46237 mb
## Security
*THIS CODE HAS NOT BEEN AUDITED OR REVIEWED. USE AT YOUR OWN RISK.*
**WARNING:** the AES256 content key encryption implementation may currently be vulnerable to side-channel
timing attacks due to my lack of expertise as it relates to how much (if anything) the timing of the block
allocations reveals about the underlying bytes being allocated. There is *a* way to do this
correctly, it will just need to be reviewed.