signed-crypto 0.1.2

A Rust library for encrypted payloads with built-in integrity verification
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78

# signed-crypto

A Rust library for encrypted payloads with built-in integrity verification.

## Overview

`signed-crypto` provides a secure way to encrypt and transmit arbitrary data payloads. Each encrypted package includes:

- **Confidentiality** via AES-256 CTR encryption
- **Integrity** via HMAC-SHA256 signatures
- **Metadata** via embedded timestamps and server identifiers
- **Transparency** via URL-safe Base64 encoding

## Installation

```toml
[dependencies]
signed-crypto = "0.1"
```

## Quick Start

```rust
use signed_crypto::{Crypto, Keys};

let keys = Keys::new(&enc_key, &integrity_key)?;
let crypto = Crypto::new(keys);

// Encrypt
let mut pkg = crypto.init_plain_data(payload.len(), None)?;
crypto.set_payload(&mut pkg, payload)?;
let encrypted = crypto.encrypt(&pkg)?;
let encoded = crypto.encode(&encrypted);

// Decrypt
let decoded = crypto.decode(&encoded)?;
let decrypted = crypto.decrypt(&decoded)?;
```

## Package Format

```
┌────────────────────┬─────────────────────┬────────────┐
│ IV (16 bytes)      │ Encrypted Payload   │ HMAC (4B)  │
│ timestamp + srv_id │ AES-256/CTR         │            │
└────────────────────┴─────────────────────┴────────────┘
```

Overhead: 20 bytes per package.

## Features

- **Authenticated Encryption** — AES-256 + HMAC-SHA256
- **Wire-Safe** — URL-safe Base64 encoding
- **Metadata** — Timestamp and server ID in IV
- **Zero-Copy** — Efficient payload access

## Security Notes

**IMPORTANT: This library is designed for encrypting non-sensitive data only.**

- **Never use weak or predictable keys** (like `[0u8; 32]`) in production
- Always generate cryptographic keys using a secure random number generator
- Use unique IVs for each encryption (automatic with `init_plain_data`)
- Rotate keys periodically
- The 4-byte HMAC signature provides basic integrity protection but is **not** resistant to targeted attacks
- This library is **NOT suitable** for:
  - Highly sensitive data (passwords, financial information, personal data)
  - Adversarial environments where attackers actively forge signatures

## Acknowledgments

Inspired by Google's DoubleClick crypto implementation:
https://github.com/google/openrtb-doubleclick/blob/master/doubleclick-core/src/main/java/com/google/doubleclick/crypto/DoubleClickCrypto.java

## License

Copyright 2026, Kehan Pan, All rights reserved.