Expand description
Secure handshake protocol implementation using Elliptic Curve Diffie-Hellman (ECDH)
This module implements a secure cryptographic handshake based on x25519-dalek with protection against replay attacks using timestamped nonces.
Functions§
- clear_
handshake_ data - Clears handshake data for clean test runs
- client_
derive_ session_ key - In test mode, can accept an explicit nonce for testing purposes
- client_
handshake_ init Deprecated - Legacy client handshake function for compatibility Now uses the secure handshake implementation
- client_
secure_ handshake_ init - Initiates secure handshake from the client side. Generates a new key pair and nonce for the client.
- client_
secure_ handshake_ verify - Client verifies server response and sends verification message
- server_
secure_ handshake_ finalize - Server verifies client’s confirmation and finalizes the handshake
- server_
secure_ handshake_ response - Generates server response to client handshake initialization. Validates client timestamp, generates server key pair and nonce, and returns verification data.
- verify_
timestamp - Verify that a timestamp is recent enough Default threshold is 30 seconds