Add new encryption scheme in server part.

2017-04-17 20:37:26 +02:00
parent 89465f4c68
commit cef1194ad0
10 changed files with 144 additions and 686 deletions
--- a/server/functions.php
+++ b/server/functions.php
@@ -20,11 +20,13 @@

 /*
  login is stored as :
-  @@url;login
+  url;login + 16 bytes padding * \0 + sha256(url;login + padding)[8:24]
  
  Password is salted (3 random characters) and encrypted

-  All is encrypted with AES256 and key : PKDBF2(hmac_sha256, master key, url, 1000)
+  All is encrypted with AES256-CBC and key PBKDF2(hmac_sha256, master key, server url, 1000)
+  level is server configurable
+  iv is PBKDF2(hmac_sha256, server url, master key, 1000)[0:16]
 */
 $MAX_ENTRY_LEN = 512;
 $USERS_PATH = "./users/";