ruvector

mirror of https://github.com/ruvnet/RuVector.git synced 2026-05-29 19:33:34 +00:00

History

rUv 568eb56724 feat(edge-net): implement production-grade cryptographic security Critical security fixes before production deployment: 1. Argon2id PBKDF in pikey/mod.rs (replaces SHA-256) - Memory-hard KDF with 64MB memory, 3 iterations - Version 0x02 format with salt, backward compatible with v1 - Secure zeroization of key material 2. Ed25519 signature verification in rac/mod.rs - Real cryptographic verification for authority resolutions - ScopedAuthority::sign_resolution() helper for signing - Canonical message format for verification 3. Password-protected key export in identity/mod.rs - export_secret_key now requires 8+ character password - AES-256-GCM encryption with Argon2id-derived key - import_secret_key for secure recovery Dependencies added: - argon2 v0.5 (memory-hard KDF) - zeroize v1.7 (secure memory cleanup) Test coverage: - 125 tests passing (40 lib + 85 integration) - Updated adversarial tests with real Ed25519 signatures 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-01 05:28:42 +00:00
..
mod.rs	feat(edge-net): implement production-grade cryptographic security	2026-01-01 05:28:42 +00:00

rUv 568eb56724 feat(edge-net): implement production-grade cryptographic security

Critical security fixes before production deployment:

1. Argon2id PBKDF in pikey/mod.rs (replaces SHA-256)
   - Memory-hard KDF with 64MB memory, 3 iterations
   - Version 0x02 format with salt, backward compatible with v1
   - Secure zeroization of key material

2. Ed25519 signature verification in rac/mod.rs
   - Real cryptographic verification for authority resolutions
   - ScopedAuthority::sign_resolution() helper for signing
   - Canonical message format for verification

3. Password-protected key export in identity/mod.rs
   - export_secret_key now requires 8+ character password
   - AES-256-GCM encryption with Argon2id-derived key
   - import_secret_key for secure recovery

Dependencies added:
- argon2 v0.5 (memory-hard KDF)
- zeroize v1.7 (secure memory cleanup)

Test coverage:
- 125 tests passing (40 lib + 85 integration)
- Updated adversarial tests with real Ed25519 signatures

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-01 05:28:42 +00:00

mod.rs

feat(edge-net): implement production-grade cryptographic security

2026-01-01 05:28:42 +00:00