Encryption and Signing
CBielstein opened this issue · comments
Ensure all communication is encrypted and signed. Allow for unencrypted communication, which is necessary for first exchange of NamespaceCertificates. Perhaps include an optional unencrypted message flag to save on low-power machines.
Going to need to implement AES and share the symmetric key using RSA encryption. Message sizes are too big for RSA. This will also cut down on overhead of RSA. Need to store keys for a set time and resend on timeout. This will also need a slight redesign of message layout since we can't assume everything is encrypted with our private key.