-
Notifications
You must be signed in to change notification settings - Fork 9
/
dhkemSecp256k1.ts
68 lines (65 loc) · 2.15 KB
/
dhkemSecp256k1.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
import { Dhkem, KemId } from "@hpke/common";
import { HkdfSha256 } from "@hpke/dhkem-x25519";
import { Secp256k1 } from "./secp256k1.ts";
/**
* The DHKEM(secp256k1, HKDF-SHA256) for HPKE KEM implementing {@link KemInterface}.
*
* This class is implemented using
* {@link https://github.com/paulmillr/noble-curves | @noble/curves}.
*
* The public keys are assumed to be compressed.
*
* The instance of this class can be specified to the
* {@link https://deno.land/x/hpke/core/mod.ts?s=CipherSuiteParams | CipherSuiteParams} as follows:
*
* @example Use with `hpke-js` (`https://deno.land/x/hpke/mod.ts`).
*
* ```ts
* import { AeadId, CipherSuite, KdfId } from "https://deno.land/x/hpke/mod.ts";
* import { DhkemSecp256k1HkdfSha256 } from "https://deno.land/x/hpke/x/dhkem-secp256k1/mod.ts";
*
* const suite = new CipherSuite({
* kem: new DhkemSecp256k1HkdfSha256(),
* kdf: KdfId.HkdfSha256,
* aead: AeadId.Aes128Gcm,
* });
* ```
*
* When using `hpke-js` (`https://deno.land/x/hpke/mod.ts`), `KemId.DhkemSecp256k1HkdfSha256`
* cannot be used as well. So you need to specify the instance of this class as follows:
*
* @example Use with `@hpke/core` (`https://deno.land/x/hpke/core/mod.ts`).
*
* ```ts
* import {
* Aes128Gcm,
* CipherSuite,
* HkdfSha256,
* } from "https://deno.land/x/hpke/core/mod.ts";
* import { DhkemSecp256k1HkdfSha256 } from "https://deno.land/x/hpke/x/dhkem-secp256k1/mod.ts";
*
* const suite = new CipherSuite({
* kem: new DhkemSecp256k1HkdfSha256(),
* kdf: new HkdfSha256(),
* aead: new Aes128Gcm(),
* });
* ```
*
* @experimental Note that it is experimental and not standardized.
*/
export class DhkemSecp256k1HkdfSha256 extends Dhkem {
/** KemId.DhkemSecp256k1HkdfSha256 (0x0013) EXPERIMENTAL */
public readonly id: KemId = KemId.DhkemSecp256k1HkdfSha256;
/** 32 */
public readonly secretSize: number = 32;
/** 33 */
public readonly encSize: number = 33;
/** 33 */
public readonly publicKeySize: number = 33;
/** 32 */
public readonly privateKeySize: number = 32;
constructor() {
const kdf = new HkdfSha256();
super(KemId.DhkemSecp256k1HkdfSha256, new Secp256k1(kdf), kdf);
}
}