You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
On the current coinos model, private keys are encrypted with the user's password and are saved in the same object (Hash Key: Hash Value) as the user.
db0/user/user:USERNAME
But on our model, we should save them in another table, not accessible for the user. How should be the encryption?
Suggested method: We can use an RSA generated set of keys to encrypt all the private keys with the RSA public key and keep the RSA private key secure, and we will be able to decrypt the private keys from the SuperAdmin view on the browser using the RSA private key.
In this case even with the full access to the SuperAdmin user (user/password or hacks) it's not possible to get the private keys.
The text was updated successfully, but these errors were encountered:
On the current coinos model, private keys are encrypted with the user's password and are saved in the same object (Hash Key: Hash Value) as the user.
But on our model, we should save them in another table, not accessible for the user. How should be the encryption?
Suggested method: We can use an RSA generated set of keys to encrypt all the private keys with the RSA public key and keep the RSA private key secure, and we will be able to decrypt the private keys from the SuperAdmin view on the browser using the RSA private key.
In this case even with the full access to the SuperAdmin user (user/password or hacks) it's not possible to get the private keys.
The text was updated successfully, but these errors were encountered: