Network-binding cryptographic server implementing the Tang protocol, and made to run as a Cloudflare Worker
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
trinity-1686a b78ecce2f4 Update '' pirms 9 mēnešiem
src hide error message pirms 10 mēnešiem
tests init pirms 10 mēnešiem
worker add logging to telegram pirms 9 mēnešiem
.gitignore init pirms 10 mēnešiem
Cargo.lock add logging to telegram pirms 9 mēnešiem
Cargo.toml add logging to telegram pirms 9 mēnešiem Update '' pirms 9 mēnešiem
wrangler.toml change name pirms 9 mēnešiem


Tango-Charlie is a network binding server : it allows a client to decrypt files, but only if the client is in the right network.
It's made to replace tang in a clevis setup.

Tango-Charlie is made to be deployed on Cloudflare Worker (Cloudflare FaaS platform). Contrary to Tang which allow whoever can contact the server to decrypt data, Tango-Charlie require the public ip of the client to have not changed (or be in the same /64 for ipv6). To do so while being stateless, Tango-Charlie generate keys on the fly, based on client ip and a secret known only to the server.

/!\ This software make heavy use of cryptography, and has not been audited, use at your own risks.

Name was inspired by an old french song