New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Securing Private Keys #4

Open

4 tasks

chinmoy12c opened this issue Dec 23, 2022 · 0 comments

Assignees

Labels

Contributor

chinmoy12c commented Dec 23, 2022 •

edited by Shruti3004

Loading

Description

A method is needed to secure the private key of users.
The following things need to be made sure of:

How can we not store private keys at all?
If we do require to store it, how to ensure that it's not stored in plain text?
It is essential that the method adopted to encrypt the private keys cannot be undone, even by the server owner. Ideally, the sole control of that private key should be in the hands of the owner.
As such the secret key used for encryption cannot be on the server itself or in control of any entity.

chinmoy12c mentioned this issue

23rd Dec - 2nd Jan Sprint Unified-Learner-Passbook/docs#1

Open

chinmoy12c self-assigned this

chinmoy12c added the enhancement label

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment