-
-
Notifications
You must be signed in to change notification settings - Fork 3
libsodium.SKI.KeyContainer
Protected Class KeyContainerThis class provides secure containment for sensitive date held in memory, typically a cryptographic key.
To protect the key data from overflow and underflow attacks the data is stored in a SecureMemoryBlock. This means the data resides on its own page of heap-allocated memory and is surrounded by "guard" pages. The memory is further protected by system features for marking pages as non-swappable and non-readable.
In addition, the key data is encrypted using a randomly-generated ephemeral key.
The KeyContainer is used internally to store SecretKeys, SharedSecrets, the private halves of Encryption and Signing keys, and Password data.
Wiki home | Project page | Bugs | Become a sponsor
Text and code examples are Copyright ©2016-24 Andrew Lambert, offered under the CC BY-SA 3.0 License.