Crate sframe

Secure Frame (SFrame)

This library is an implementation of draft-ietf-sframe-enc-06.

Optional features

Using optional features sframe allows to configure different crypto libraries. Be aware that those features are mutually exlusive, if multiple are configured sframe issues a compiler error.

• ring (enabled by default) — Uses the ring library which allows compilation to Wasm32. AES-CTR mode ciphers are not supported.
• openssl — Uses the rust-openssl crate, which provides bindings to OpenSSL. Per default the OpenSSL library is locally compiled and then statically linked. The build process requires a C compiler, perl (and perl-core), and make. For further options see the openssl crate documentation. Compilation to Wasm32 is not yet supported.

Modules

• error
  error definitions
• frame
  Frame-based API
• frame_validation
  sframe header validation before decryption, e.g. to detect replay attacks see sframe draft 06 9.3
• header
  sframe header definitions as of sframe draft 06 4.3
• key
  sframe key definitions as of sframe draft 06 4.4.2
• ratchet
  ratchet support as of sframe draft 06 5.1
• receiver
  receiver API: models the sframe decryption block in the receiver path, see sframe draft 06 4.1
• sender
  sender API: models the sframe encryption block in the sender path, sframe draft 06 4.1

Enums

• CipherSuiteVariant
  Depicts which AEAD algorithm is used for encryption and which hashing function is used for the key expansion, see sframe draft 06 4.4