Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

SocialGouv / e2esdk Public

Notifications You must be signed in to change notification settings
Fork 0
Star 21

Code
Issues 9
Pull requests 16
Discussions
Actions
Projects
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Roadmap #10

Open

21 of 34 tasks

franky47 opened this issue Dec 1, 2022 · 0 comments

Open

21 of 34 tasks

Roadmap #10

franky47 opened this issue Dec 1, 2022 · 0 comments

Comments

Copy link

Contributor

franky47 commented Dec 1, 2022 •

edited

Loading

Documentation

General
- Add list of goals and non-goals for the project
- Identify use-cases and non-use cases
- Identify threat models (based on who they apply to: end-users, application developers, e2esdk developers)
Cryptography
- Encodings
- Signatures
- Identity
- Public key authentication
- Cipher suite
- Keychain items
- Sharing
- Form data handling
Components
- Server
  - Swagger/OpenAPI docs (Add Swagger/OpenAPI server API docs #12)
  - How to deploy the Docker image
- Client ([docs] document client API #20)
- Devtools

Cryptography

Password derivation (Argon2id) for authentication ([devtools] login with invalid creds #19)
Secret splitting (Shamir Secret Sharing) for recovery
PAKE for online authentication (OPAQUE)
Form data handling
~~Separate~~ Consolidate cryptographic layer:
- ~~@e2esdk/crypto-core for common code (codecs, utils)~~
- ~~@e2esdk/crypto-lite for TweetNaCl-based ingestion operations (sealed box, secret box)~~
- ~~@e2esdk/crypto-sodium for complete Sodium-based operations~~
- ~~@e2esdk/crypto-forms for higher-level form data encryption~~
  Note: it is preferable to focus on a single ciphersuite to avoid rolling out missing algorithms on a "lite" version that will only save a few KiB. So everything should be part of a single cryptographic library.

Client

Real-time notifications via WebSocket ~~+ SharedWorker, gracefully degraded to polling where SW aren't available.~~ (Realtime notifications with websockets #8)
Configure persistance ("remember me for N days")

Server

Add audit logs

Devtools

Investigate passing a live Client as "props" rather than creating a dedicated one
Fix usage in SSR frameworks (Next.js)
Allow configuring position & size, for static panel vs drawer behaviour

Examples

Add contact form example from https://github.com/SocialGouv/chiffrement-sandbox

Other

Add CI
~~Investigate Changesets for versioning packages~~ -> Using semantic release instead
Investigate Verdaccio for local NPM deployment testing (Add Verdaccio to test package publishing #11)
Deploy to ~~SocialGouv's internal NPM registry~~ for testing -> deployed to public NPM registry, under the @socialgouv organisation
Deploy Docker image to SocialGouv's container registry
Add CD

The text was updated successfully, but these errors were encountered:

devthejo and revolunet reacted with thumbs up emoji

All reactions

👍 2 reactions

franky47 pinned this issue

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

No branches or pull requests

1 participant

Footer

© 2024 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.