πŸ”„ Symmetric Encryption β€” Party A
PGP-like: Party A retrieves the AES-256 key (sealed for them), decrypts it, then seals it for Party B
Default PoC password: PartyA@PoC2024
πŸ“€ Send Message to Party B
PGP-like flow:
  1. Fetch AES-256 key sealed for Party A (from server)
  2. Decrypt key using Party A's RSA-4096 private key
  3. Encrypt SecretText with AES-256-CBC (random IV)
  4. Re-seal AES key under Party B's RSA-4096 public key
  5. POST both ciphertexts to the server
πŸ‘οΈ What Gets Stored

Both the symmetric key (for Party B) and the secret text are stored encrypted.

Waiting…
RSA-4096-OAEP encrypted AES-256 key (readable only by Party B)
Waiting…
IV (16 bytes) prepended to ciphertext, then base64-encoded
πŸ”¬ Technical Details
Symmetric cipher AES-256-CBC
IV Random 128-bit (per send)
Key transport RSA-4096-OAEP-SHA256
AES library CryptoJS 4.2
RSA library node-forge 1.3
AES key source /api/sym/sym-key-for-A