This document outlines a comprehensive plan for implementing end-to-end encryption in DedPaste. This plan ensures that encryption/decryption happens entirely on the client side, with the server having no knowledge of the encryption keys or plaintext content.
- Documentation Home
- Main README
- Contributing Guide
- Release Process
- Testing Guide
- Troubleshooting Guide
- Encryption Implementation Summary
- Shell Completion
flowchart TD
A[User Input] --> B{Encrypt?}
B -->|No| C[Regular Upload]
B -->|Yes| D[Generate/Load Keys]
D --> E[Encrypt Content]
E --> F[Upload to /e/ endpoint]
F --> G[Return URL with /e/ path]
H[Access URL] --> I{Is /e/ path?}
I -->|No| J[Regular Download]
I -->|Yes| K[Download Encrypted Content]
K --> L[Ask for Private Key]
L --> M[Decrypt Content]
M --> N[Display Content]
-
Add support for the
/e/{id}path:- Modify the URL path matching to recognize encrypted pastes
- No changes to the storage mechanism (the server stores encrypted data as-is)
- Update the CORS and OPTIONS handling to include the new path
-
Update the upload handler:
- Add a new endpoint for encrypted pastes (
/e/uploadand/e/temp) - The server doesn't need to know if content is encrypted; it just stores the data
- Update the URL generation to include the
/e/path for encrypted pastes
- Add a new endpoint for encrypted pastes (
-
Add encryption options to the CLI:
- Add
--encryptflag to enable encryption - Add
--key-fileoption to specify a private key file (default to SSH key) - Add
--gen-keyoption to generate a new key pair
- Add
-
Implement encryption functionality:
- Add crypto libraries for public/private key operations
- Implement content encryption using the public key
- Generate a symmetric key for the actual content encryption (for efficiency)
- Encrypt the symmetric key with the public key
-
Implement decryption functionality:
- Detect when accessing an encrypted paste
- Prompt for the private key location if not provided
- Decrypt the symmetric key using the private key
- Decrypt the content using the symmetric key
-
Key management:
- Add functions to generate key pairs
- Add functions to load keys from files
- Support using existing SSH keys
- Implement secure key storage (optional)
- Crypto libraries:
node:crypto(built-in Node.js module)ssh-keygen(optional, for generating SSH-compatible keys)
flowchart TD
A[Original Content] --> B[Generate Random Symmetric Key]
B --> C[Encrypt Content with Symmetric Key]
D[User's Public Key] --> E[Encrypt Symmetric Key]
C --> F[Encrypted Content]
E --> G[Encrypted Symmetric Key]
F --> H[Combine for Storage]
G --> H
H --> I[Upload to Server]
-
Hybrid Encryption:
- Use asymmetric encryption (RSA) for key exchange
- Use symmetric encryption (AES-256-GCM) for content encryption
- This approach provides both security and efficiency
-
Data Format:
- Encrypted symmetric key (base64 encoded)
- Initialization vector (IV) for AES (base64 encoded)
- Authentication tag for AES-GCM (base64 encoded)
- Encrypted content (base64 encoded)
- These components will be combined into a JSON structure
flowchart TD
A[Download Encrypted Data] --> B[Parse Components]
B --> C[Extract Encrypted Symmetric Key]
B --> D[Extract IV, Auth Tag, and Encrypted Content]
E[User's Private Key] --> F[Decrypt Symmetric Key]
F --> G[Decrypt Content using Symmetric Key, IV, and Auth Tag]
G --> H[Original Content]
-
Key Generation:
- Generate RSA key pair (2048 or 4096 bits)
- Save private key securely (with optional passphrase)
- Extract public key for encryption
-
Using SSH Keys:
- Support loading existing SSH keys (typically from
~/.ssh/id_rsa) - Convert SSH key format to the format needed for Node.js crypto operations
- Support loading existing SSH keys (typically from
# Using generated keys
$ echo "secret data" | dedpaste --encrypt --gen-key
✓ Generated new key pair:
- Private key: ~/.dedpaste/keys/private.pem
- Public key: ~/.dedpaste/keys/public.pem
✓ Paste created successfully!
⚠️ This paste is encrypted and can only be decrypted with your private key
📋 https://paste.d3d.dev/e/AbCdEfGh
# Using existing SSH key
$ echo "secret data" | dedpaste --encrypt --key-file ~/.ssh/id_rsa.pub
✓ Paste created successfully!
⚠️ This paste is encrypted and can only be decrypted with your private key
📋 https://paste.d3d.dev/e/AbCdEfGh
$ dedpaste get https://paste.d3d.dev/e/AbCdEfGh
⚠️ This paste is encrypted
Enter path to private key [~/.dedpaste/keys/private.pem]:
✓ Paste decrypted successfully:
secret data
- Update the URL path handling in
src/index.ts - Add support for the
/e/path prefix - Update the URL generation for encrypted pastes
- Deploy the updated server
- Add encryption flags to the CLI
- Implement basic encryption/decryption functionality
- Add key generation and management
- Test with the updated server
- Add support for SSH keys
- Improve error handling and user experience
- Add documentation for encryption features
- Comprehensive testing
-
No Server Involvement:
- The server never sees unencrypted content
- The server never has access to encryption keys
- All encryption/decryption happens client-side
-
Key Security:
- Private keys should be stored securely
- Consider adding passphrase protection for private keys
- Warn users about the importance of key security
-
Limitations:
- If a private key is lost, encrypted pastes cannot be recovered
- The system doesn't provide key recovery mechanisms
-
Unit Tests:
- Test encryption/decryption functions
- Test key generation and loading
- Test URL handling for encrypted pastes
-
Integration Tests:
- Test end-to-end workflow with encryption
- Test compatibility with existing unencrypted pastes
- Test error handling and edge cases
-
Security Tests:
- Verify that encrypted content cannot be decrypted without the correct key
- Verify that the server cannot access unencrypted content
-
README Updates:
- Add section on encryption features
- Document key management
- Provide examples of encrypted paste usage
-
CLI Help Updates:
- Add help text for new encryption options
- Provide examples in the help output