Expand description
Share recovery with encrypted backup implementation.
Ref: https://wamu.tech/specification#share-recovery-backup.
HKDF (HMAC-based Extract-and-Expand Key Derivation Function) and AES-GCM (Advanced Encryption Standard Galois/Counter Mode) are the key derivation function and symmetric encryption algorithm used respectively.
Functions§
- backup
- Given an entropy seed (i.e typically a standardized phrase), “signing share”, “sub-share” and identity provider, returns an ok result including the encrypted share backup (i.e an encrypted “signing share” and “sub-share”, and a random nonce) or an encryption error result.
- recover
- Given an entropy seed (i.e typically a standardized phrase), encrypted share backup (i.e an encrypted “signing share” and “sub-share”, and a random nonce) and an identity provider, returns the decrypted “signing share” and “sub-share”.