Encrypt and decrypt your data using your Ed25519 keypair. Allows others to access the data without decrypting it in the process. Allow a semi-trusted third party to re-encypt the keys on your behalf without ever seeing the plaintext data.
- Privacy: Only you can decrypt your data.
- Key Management: Symmetric keys are deterministically derived from your Ed25519 key
- Secure Sharing: Share your data with others without exposing the plaintext first
- Delegation: Allow others to gate access without giving them the ability to decrypt it.
For example, say you want a server to allow access to a file for certain users only under certain conditions (payment, time, etc.). You can set Re-encryption policy to only issue the Re-encrypted key if those conditions are met.
Transform Re-encryption is a homomorphic encryption scheme that allows users to transform ciphertexts from one key to another without decrypting the ciphertexts. This is useful for delegating decryption rights to other users, or for changing the encryption key without re-encrypting all the data.
Written in 100% pure Rust. Workspace composed of:
- recrypted-core - The core library for the Transform Re-encryption scheme.
- recrypted-component - The bindings for Wasm Interface Types Component so the core library can be run anywhere
wasmtimeruns (Rust, JS, ...)