... | ... | @@ -20,7 +20,7 @@ E2E in Passwords is designed to be upgradeable which is why every part of it is |
|
|
| Type | Description |
|
|
|
| --- | --- |
|
|
|
| `none` | An object without any client side encryption. Only available with SSE other than `none` |
|
|
|
| [`CSEv1r1`](./Encryption/CSEv1Encryption) | The standard CSE encryption |
|
|
|
| [`CSEv1r1`](./Encryption/CSEv1Encryption) | The standard CSE encryption. Can not be used for shared entities. |
|
|
|
|
|
|
##### SSE encryption
|
|
|
| Type | Description |
|
... | ... | @@ -38,7 +38,7 @@ E2E in Passwords is designed to be upgradeable which is why every part of it is |
|
|
|
|
|
|
|
|
|
|
|
### Graphical schema of the encryption flow
|
|
|
### The encryption flow
|
|
|
```mermaid
|
|
|
sequenceDiagram
|
|
|
participant User
|
... | ... | @@ -72,3 +72,24 @@ sequenceDiagram |
|
|
Client->>User: Shows changes
|
|
|
end
|
|
|
```
|
|
|
|
|
|
### The encryption setup
|
|
|
```mermaid
|
|
|
sequenceDiagram
|
|
|
participant User
|
|
|
participant Client
|
|
|
participant Server
|
|
|
User->>Client: Master password
|
|
|
Client->>Client: Create challenge
|
|
|
Client->>Server: Set challenge
|
|
|
Server->>Server: Set up SSEv2
|
|
|
Server->>Client: Success
|
|
|
Client->>Client: Create keychain
|
|
|
Client->>Server: Set keychain
|
|
|
Server->>Client: Success
|
|
|
Client->>User: Encryption enabled
|
|
|
Client->>Client: Encrypt objects
|
|
|
Client->>Server: Update objects
|
|
|
Server->>Client: Success
|
|
|
Client->>User: Shows objects
|
|
|
``` |
|
|
\ No newline at end of file |