thank you for such a great playlist on end to end encryption! i was wondering what could be the best approach for encrypting a group chat as there will be a lot of users
How would you go about storing the messages in the database? if it is end to end encrypted the shared keys will change and you wont be able to view the past messages that are stored in the database (i.e. if you store the cipher text as is in the database). what would you suggest for saving messages in database? is it possible to store the messages in such a way that only the two parties like alice and bob can decipher the messages in database.
@@mafiacodes but wont the shared key change over time? all the control over the key generation is with client. the server cannot know. so when the app gets uninstalled and then installed again or something like that. wont the key change? how do you make the private keys persistent if the keys can only be generated in client and server cant know about it?
See if server knows about the keys or u store them somewhere in outside the client then the whole purpose of end to end is deceived. For example whatsapp, fb messenger they use signal protocol where for every message they use 3 diffi Hellman - 3 key exchanges for a single message. If your interested read more about the signal protocol because that is what eventually you should use when makin a million dollar 💵 app. It’s open source by open whisper systems. As far as this goes you can use it for a simple project and the message will be e2e encrypted.
How do you do this on the front end? One of the key points of E2EE is not to let your server know about the messages. So this has to happen completely on the client side, right?
That’s what was explained here, just use ur server to exchange the public keys 🔑 and then u can use them to generate a shared secret. Subscribe like share
If bob and alice are different machine how can you access bobSharedKey ?
Here you are using both in one file?
thank you for such a great playlist on end to end encryption!
i was wondering what could be the best approach for encrypting a group chat as there will be a lot of users
Well again use diffie Hellman
consider group as a user, and sender are other user
can you help me that which library can be used in flutter to implement ?
This should be build inside flutter itself, I am not sure
Thnk you so much for this video.. its really helpful.😍 Plz make video on AES_256_ECB encryption
How would you go about storing the messages in the database? if it is end to end encrypted the shared keys will change and you wont be able to view the past messages that are stored in the database (i.e. if you store the cipher text as is in the database). what would you suggest for saving messages in database? is it possible to store the messages in such a way that only the two parties like alice and bob can decipher the messages in database.
Well u can store the cipher in db, since Bob Alice generated on a common shared key which they can use to decipher.
@@mafiacodes but wont the shared key change over time? all the control over the key generation is with client. the server cannot know. so when the app gets uninstalled and then installed again or something like that. wont the key change? how do you make the private keys persistent if the keys can only be generated in client and server cant know about it?
See if server knows about the keys or u store them somewhere in outside the client then the whole purpose of end to end is deceived. For example whatsapp, fb messenger they use signal protocol where for every message they use 3 diffi Hellman - 3 key exchanges for a single message. If your interested read more about the signal protocol because that is what eventually you should use when makin a million dollar 💵 app. It’s open source by open whisper systems.
As far as this goes you can use it for a simple project and the message will be e2e encrypted.
In javascript how to do??
Great, how do I do it in browser AND how to make it handle a ReadableStream?
use elliptic curve library
Great video.
How can I convert the same code in to Kotlin?
Great video! Thx! Would you make a video that demonstrates the said Signal-E2EE?
Is wolfssl more secure than aes 256 gcm?
I have a question. What's the recommended way to generate IV? I heard that using a 12 byte random string is not safe enough. Is there any other ways?
The shared key you are using in this tutorial is 512 bit encrypted key right?
I want to use 12 byte IV is it possible to do so?
Yup
How do you do this on the front end? One of the key points of E2EE is not to let your server know about the messages. So this has to happen completely on the client side, right?
This is my concern too...
hey this is usch a great video i'm wondering if u can do a video about encryting and decryting a file using RSA algorithm
I need this same algo in android . Can you help me in that. would be appreciated.
yes I have that for android, but not planning to sell it 😃
@@mafiacodes No worries. I did it myself. :D
@@afnanhaider512haider7 can you let me know what you used for it?
how do you run this now? need a video of you using this
That’s what was explained here, just use ur server to exchange the public keys 🔑 and then u can use them to generate a shared secret.
Subscribe like share
In line 56 how the bobshared key is sent to an server
By any mechanism you like, typically in request body. But only you need to share the bobs public key and not the shared key.
@@mafiacodes so the bob_payload has the key??
The payload which Bob recieved has three things namely the iv, encrypted msg and auth tag. So he used his decipher to get back the msg.
You're a god. :3
God is one and only one - I am a simple human being 😊