Secure Types
This crate provides data structures (SecureVec, SecureArray, SecureString) designed to handle sensitive information in memory with enhanced security.
The goal is to protect secret data (like passwords, private keys, or credentials) from being exposed through common vulnerabilities.
Key Features
- Zeroization on Drop: Memory is securely wiped clean when dropped.
- Memory Locking: (std-only) OS-level protection against being swapped to disk.
- Memory Encryption: (Windows-only)
CryptProtectMemoryfor in-memory encryption. - Scoped Access: Data is protected by default and only accessible within safe blocks.
no_stdSupport: For embedded and Web environments (with zeroization only).- Serde Support: Optional serialization/deserialization.
Usage
use SecureString;
// Create a string from a sensitive literal.
let mut secret = from;
// Use a scope to safely access the content as a &str.
secret.str_scope;
For a SecureVec:
use SecureVec;
let secret_vec = from_vec.unwrap;
secret_vec.slice_scope;
Security Model
This crate is designed to mitigate certain risks but is not a perfect solution. It primarily protects secrets in program memory against:
- Disk Swapping: The OS writing secrets to a page file.
- Cold Boot Attacks: Recovering data from RAM after a shutdown.
- Malicious Memory Reads: Malware that can steal data by reading a process's memory.
- Process Memory Dumps: Data being exposed in a core dump.
It does not protect against an attacker who can directly read your programs's memory (e.g., via admin rights or a kernel-level exploit, especially on Unix where we dont encrypt the memory).
Feature Flags
std(default): Enables all OS-level security features.no_std: Forno_stdenvironments. Only provides the Zeroize on Drop guarantee.serde: Enables serialization/deserialization forSecureStringandSecureBytes.