An attempt-limiting, pepper protocol with a bundled Javascript implementation.


Keywords
crypto, cryptograph, derivation, hmac, javascript, kdf, key, node, pepper, salt
License
MIT
Install
npm install habanero@0.4.1

Documentation

habanero

build status NPM

An experimental attempt-limiting, remote pepper provisioning protocol with a bundled Javascript implementation.

WARNING: This protocol has not been peer reviewed - use at your own risk.

Protocol

Example

let hb = require('habanero/server')
let e = Buffer.from(process.env.HABANERO_SECRET, 'ascii')

// ...
hb.get(e, commitment, P, queryCb, limitCb, (err, result) => {
	if (err) return res.status(500).end()
	if (result.limited) return res.status(403).end() // optional (information leak)
	if (!result.pepper) return res.status(401).end()

	res.status(200).json(result)
})

LICENSE MIT