Crate ockam_vault
source ·Expand description
In order to support a variety of cryptographically capable hardware we maintain loose coupling between our protocols and how a specific building block is invoked in a specific hardware. This is achieved using an abstract Vault trait.
A concrete implementation of the Vault trait is called an Ockam Vault. Over time, and with help from the Ockam open source community, we plan to add vaults for several TEEs, TPMs, HSMs, and Secure Enclaves.
This crate provides a software-only Vault implementation that can be used when no cryptographic hardware is available. The primary Ockam crate uses this as the default Vault implementation.
The main [Ockam][main-ockam-crate-link] has optional dependency on this crate.
Re-exports
Modules
- Curve constants
- Storage
- Traits and types defining the behaviour of a Vault
- Default Vault implementation Core types and traits of the Ockam vault.
Structs
- A key pair with a public key and a reference to the private key (which should be stored in a Vault)
- A public key.
- Binary representation of a Secret.
- Binary representation of Signature.
- Stored secret: binary data + secret metadata
Enums
- Attributes for secrets
- All possible
SecretType
s
Type Definitions
- Buffer for large binaries. (e.g. encrypted data)
- Public Key Vector.
- Secret Key Vector.
- Signature Vector.
- Buffer for small vectors. (e.g. an array of attributes)