mirror of https://github.com/nucypher/pyUmbral.git
0a1dbf18b0
|
||
|---|---|---|
| docs | ||
| tests | ||
| umbral | ||
| wheelhouse | ||
| .coveragerc | ||
| .gitignore | ||
| .travis.yml | ||
| LICENSE.md | ||
| Pipfile | ||
| Pipfile.lock | ||
| README.rst | ||
| setup.py | ||
| tox.ini | ||
README.rst
.. role:: bash(code)
:language: bash
=========
pyUmbral
=========
.. image:: https://travis-ci.org/nucypher/pyUmbral.svg?branch=master
:target: https://travis-ci.org/nucypher/pyUmbral
pyUmbral is a python implementation of David Nuñez's threshold proxy re-encryption scheme: Umbral_.
Implemented with OpenSSL_ and Cryptography.io_, pyUmbral is a referential and open-source cryptography library
extending the traditional cryptological narrative of "Alice and Bob" by introducing a new actor,
*Ursula*, who has the ability to take secrets encrypted for Alice and *re-encrypt* them for Bob.
.. _Umbral: https://github.com/nucypher/umbral-doc/blob/master/umbral-doc.pdf
.. _Cryptography.io: https://cryptography.io/en/latest/
.. _OpenSSL: https://www.openssl.org/
**Encryption**
.. code-block:: python
from umbral import pre, keys
# Generate umbral keys for Alice.
alices_private_key = keys.UmbralPrivateKey.gen_key()
alices_public_key = alices_private_key.get_pubkey()
# Encrypt data with Alice's public key.
plaintext = b'Proxy Re-encryption is cool!'
ciphertext, capsule = pre.encrypt(alices_public_key, plaintext)
# Decrypt data with Alice's private key.
cleartext = pre.decrypt(capsule, alices_private_key,
ciphertext, alices_public_key)
**Fragmentation**
.. code-block:: python
# Generate umbral keys for Bob.
bobs_private_key = keys.UmbralPrivateKey.gen_key()
bobs_public_key = bobs_private_key.get_pubkey()
# Alice generates split re-encryption keys for Bob with "M of N".
kfrags = pre.split_rekey(alices_private_key, bobs_public_key, 10, 20)
**Re-encryption**
.. code-block:: python
# Ursula re-encrypts the capsule to obtain a cfrag.
# Bob attaches the cfrags to the capsule.
for kfrag in kfrags:
cfrag = pre.reencrypt(kfrag, capsule)
capsule.attach_cfrag(cfrag)
# Bob activates and opens the capsule.
cleartext = pre.decrypt(capsule, bobs_private_key,
ciphertext, alices_public_key)
Quick Installation
==================
The NuCypher team uses pipenv for managing pyUmbral's dependencies.
The recommended installation procedure is as follows:
.. code-block:: bash
$ sudo pip3 install pipenv
$ pipenv install
Post-installation, you can activate the project virtual environment
in your current terminal session by running :bash:`pipenv shell`.
For more information on pipenv, find the official documentation here: https://docs.pipenv.org/.
Academic Whitepaper
====================
The Umbral scheme academic whitepaper and cryptographic specifications
are available on GitHub_.
"Umbral: A Threshold Proxy Re-Encryption Scheme"
*by David Nuñez*
https://github.com/nucypher/umbral-doc/blob/master/umbral-doc.pdf
.. _GitHub: https://github.com/nucypher/umbral-doc/
Support & Contribute
=====================
- Issue Tracker: https://github.com/nucypher/pyUmbral/issues
- Source Code: https://github.com/nucypher/pyUmbral
OFAC Sanctions Disclaimer
=========================
By using this software, you hereby affirm you are not an individual or entity subject to economic sanctions administered by the U.S. Government or any other applicable authority, including but not limited to, sanctioned party lists administered by the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC), the U.S. State Department, and the U.S. Commerce Department. You further affirm you are not located in, or ordinarily resident in, any country, territory or region subject to comprehensive economic sanctions administered by OFAC, which are subject to change but currently include Cuba, Iran, North Korea, Syria and the Crimea region.