Security News
PyPI Introduces Digital Attestations to Strengthen Python Package Security
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
#Scrypt For NodeJS node-scrypt is a native node C++ wrapper for Colin Percival's scrypt key derivation utility.
##What Is Scrypt? Scrypt is an advanced crypto library used mainly for key derivation (i.e. password authenticator). More information can be found here:
For additional interest, read the article on wikipedias about the key derivation function.
###The Three Essential Properties Of Password Key Derivation Password key derivation requires three properties:
This scrypt library automatically handles the above properties. The last item seems strange: Computer scientists are normally pre-occupied with making things fast. Yet it is this property that sets Scrypt apart from the competition. As computers evolve and get more powerful, they are able to attack this property more efficiently. This has become especially apparent with the rise of parallel programming. Scrypt aims to defend against all types of attacks, not matter the attackers power now or in the future.
This module implements the following:
I suspect scrypt will be used mainly as a password key derivation function (its author's intended use), but I have also ported the scrypt encryption and decryption functions as implementations for them were available from the author. Performing scrypt cryptography is done if you value security over speed. Scrypt is more secure than a vanilla block cipher (e.g. AES) but it is much slower. It is also the basis for the key derivation functions.
##Why Use Scrypt? It is probably the most advanced key derivation function available. This is is quote taken from a comment in hacker news:
Passwords hashed with scrypt with sufficiently-high strength values (there are 3 tweakable input numbers) are fundamentally impervious to being cracked. I use the word "fundamental" in the literal sense, here; even if you had the resources of a large country, you would not be able to design any hardware (whether it be GPU hardware, custom-designed hardware, or otherwise) which could crack these hashes. Ever. (For sufficiently-small definitions of "ever". At the very least "within your lifetime"; probably far longer.)
The three tweakable inputs mentioned above are as follows (Quoting from the author):
maxtime
maxtime will instruct scrypt to spend at most maxtime seconds computing the derived encryption key from the password; [If using scrypt] for encryption, this value will determine how secure the encrypted data is, while for decryption this value is used as an upper limit (if scrypt detects that it would take too long to decrypt the data, it will exit with an error message).
maxmemfrac
maxmemfrac instructs scrypt to use at most the specified fraction of the available RAM for computing the derived encryption key. For encryption, increasing this value might increase the security of the encrypted data, depending on the maxtime value; for decryption, this value is used as an upper limit and may cause scrypt to exit with an error.
maxmem
maxmem instructs scrypt to use at most the specified number of bytes of RAM when computing the derived encryption key.
A Note On How Memory Is Calculated: maxmem
is often defaulted to 0
. This does not mean that 0
RAM is used. Instead, memory used is calculated like so (quote from Colin Percival):
the system [will use] the amount of RAM which [is] specified [as the] fraction of the available RAM, but no more than maxmem, and no less than 1MiB
Therefore at the very least, 1MiB of ram will be used.
###The Three Tweakable Inputs Note: This is a very important section to understand. The three tweakable inputs mentioned above are actually just human understandable inputs into a translation function that produces the inputs required for the internal scrypt cryptographic function. These inputs (as defined in the scrypt paper) are as follows:
Values for maxtime, maxmemfrac and maxmem are translated into the above values, which are then fed to the scrypt function. The translation function also takes into account the CPU and Memory capabilities of a machine. Therefore values of N, r and p may differ for different machines that have different specs.
Here are some pros and cons for using it:
###Pros
I will end this section with a quote from Colin Percival (author of scrypt):
We estimate that on modern (2009) hardware, if 5 seconds are spent computing a derived key, the cost of a hardware brute-force attack against scrypt is roughly 4000 times greater than the cost of a similar attack against bcrypt (to find the same password), and 20000 times greater than a similar attack against PBKDF2.
###Cons There is just one con I can think of: It is a relatively new library (only been around since 2009). Cryptographers don't really like new libraries for production deployment as it has not been battle tested. That being said, it is being actively used in Tarsnap (as mentioned above) and the author is very active.
#Security Issues/Concerns As should be the case with any security tool, this library should be scrutinized by anyone using it. If you find or suspect an issue with the code- please bring it to my attention and I'll spend some time trying to make sure that this tool is as secure as possible.
#Platforms This library works on the following platforms:
Windows support is coming very soon.
#Installation Instructions This library has been tested and works on Linux (Ubuntu to be exact) and Mac OS (thanks to Kelvin Wong). ##From NPM
npm install scrypt
##From Source
You will need node-gyp
to get this to work (install it if you don't have it: npm install -g node-gyp
):
git clone https://github.com/barrysteyn/node-scrypt.git
cd node-scrypt
node-gyp configure build
#Testing Testing is accomplished with the node tap module. ##If installed via NPM To test, go to the folder where scrypt was installed, and type:
cd node_modules/scrypt
npm install
node tests/scrypt-tests
##If installed via source Go to the folder where scrypt was installed and type:
cd node-scrypt
npm install
node tests/scrypt-tests
#Hash Info
All scrypt output is encoded into Base64 using René Nyffenegger library. The character sets that compromises all output are ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/
.
#Usage There are both asynchronous and synchronous functions available. It is highly recommended not to use the synchronous version unless necessary due to the fact that Node's event loop will be blocked for the duration of these purposefully slow functions.
##Asynchronous Authentication
For interactive authentication, set maxtime
to 0.1
- 100 milliseconds.
###To create a password hash
var scrypt = require("scrypt");
var password = "This is a password";
var maxtime = 0.1;
scrypt.passwordHash(password, maxtime, function(err, pwdhash) {
if (!err) {
//pwdhash should now be stored in the database
}
});
Note: maxmem
and maxmemfrac
can also be passed to hash function. If they are not passed, then maxmem
defaults to 0
and maxmemfrac
defaults to 0.5
. If these values are to be passed, then they must be passed after maxtime
and before the callback function like so:
var scrypt = require("scrypt");
var password = "This is a password";
var maxtime = 0.1;
var maxmem = 0, maxmemfrac = 0.5;
scrypt.passwordHash(password, maxtime, maxmem, maxmemfrac, function(err, pwdhash) {
if (!err) {
//pwdhash should now be stored in the database
}
});
###To verify a password hash
var scrypt = require("scrypt");
var password = "This is a password";
var hash; //This should be obtained from the database
scrypt.verifyHash(hash, password, function(err, result) {
if (!err)
return result; //Will be True
return False;
});
##Synchronous Authentication
Again, for interactive authentication, set maxtime
to 0.1
- 100 milliseconds.
###To create a password hash
var scrypt = require("scrypt");
var password = "This is a password";
var maxtime = 0.1;
var hash = scrypt.passwordHashSync(password, maxtime);
Note: maxmem
and maxmemfrac
can also be passed to hash function. If they are not passed, then maxmem
defaults to 0
and maxmemfrac
defaults to 0.5
. If these values are to be passed, then they must be passed after maxtime
and before the callback function like so:
var scrypt = require("scrypt");
var password = "This is a password";
var maxtime = 0.1;
var maxmem = 0, maxmemfrac = 0.5;
var hash = scrypt.passwordHashSync(password, maxtime, maxmem, maxmemfrac);
###To verify a password hash
var scrypt = require("scrypt");
var password = "This is a password";
var hash; //This should be obtained from the database
var result = scrypt.verifyHashSync(hash, password);
Note: There is no error description for the synchronous version. Therefore, if an error occurs, it will just return its result as false
.
##Asynchronous Encryption and Decryption
var scrypt = require("scrypt");
var message = "Hello World";
var password = "Pass";
var maxtime = 1.0;
scrypt.encrypt(message, password, maxtime, function(err, cipher) {
console.log(cipher);
scrypt.decrypt(cipher, password, maxtime, function(err, msg) {
console.log(msg);
});
});
Note that maxmem
and maxmemfrac
can also be passed to the functions. If they are not passed, then maxmem
defaults to 0
and maxmemfrac
defaults to 0.5
. If these values are to be passed, then they must be passed after maxtime
and before the callback function like so:
var scrypt = require("scrypt");
var message = "Hello World";
var password = "Pass";
var maxtime = 1.0;
var maxmem = 1; //Defaults to 0 if not set
var maxmemfrac = 1.5; //Defaults to 0.5 if not set
scrypt.encrypt(message, password, maxtime, maxmem, maxmemfrac, function(err, cipher) {
console.log(cipher);
scrypt.decrypt(cipher, password, maxtime, maxmem, maxmemfrac, function(err, msg) {
console.log(msg);
});
});
##Synchronous Encryption and Decryption
var scrypt = require("scrypt");
var message = "Hello World";
var password = "Pass";
var maxtime = 1.0;
var cipher = scrypt.encryptSync(message, password, maxtime);
var plainText = scrypt.decryptSync(cipher, password, maxtime);
Note: that maxmem
and maxmemfrac
can also be passed to the functions. If they are not passed, then maxmem
defaults to 0
and maxmemfrac
defaults to 0.5
. If these values are to be passed, then they must be passed after maxtime
and before the callback function like so:
var scrypt = require("scrypt");
var message = "Hello World";
var password = "Pass";
var maxtime = 1.0;
var maxmem = 1; //Defaults to 0 if not set
var maxmemfrac = 1.5; //Defaults to 0.5 if not set
var cipher = scrypt.encryptSync(message, password, maxtime, maxmem, maxmemfrac);
var plainText = scrypt.decryptSync(cipher, password, maxtime, maxmem, maxmemfrac);
#Api
##Authentication
###Asynchronous
passwordHash(password, maxtime, maxmem, maxmemfrac, callback_function)
password
- [REQUIRED] - a password string.maxtime
- [REQUIRED] - a decimal (double) representing the maxtime in seconds for running scrypt. Use 0.1 (100 milliseconds) for interactive logins.maxmem
- [OPTIONAL] - instructs scrypt to use the specified number of bytes of RAM (default 0).maxmemfrac
- [OPTIONAL] - instructs scrypt to use the specified fracion of RAM (defaults 0.5).callback_function
- [REQUIRED] - a callback function that will handle processing when result is ready.verifyHash(hash, password, callback_function)
hash
- [REQUIRED] - the password created with the above passwordHash
function.password
- [REQUIRED] - a password string.callback_function
- [REQUIRED] - a callback function that will handle processing when result is ready.###Synchronous
passwordHashSync(password, maxtime, maxmem, maxmemfrac)
password
- [REQUIRED] - a password string.maxtime
- [REQUIRED] - a decimal (double) representing the maxtime in seconds for running scrypt. Use 0.1 (100 milliseconds) for interactive logins.maxmem
- [OPTIONAL] - instructs scrypt to use the specified number of bytes of RAM (default 0).maxmemfrac
- [OPTIONAL] - instructs scrypt to use the specified fracion of RAM (defaults 0.5).verifyHashSync(hash, password)
hash
- [REQUIRED] - the password created with the above passwordHash
function.password
- [REQUIRED] - a password string.##Encryption/Decryption
###Asynchronous
encrypt(message, password, maxtime, maxmem, maxmemfrac, callback_function)
message
- [REQUIRED] - the message data to be encrypted.password
- [REQUIRED] - a password string.maxtime
- [REQUIRED] - a decimal (double) representing the maxtime in seconds for running scrypt.maxmem
- [OPTIONAL] - instructs scrypt to use the specified number of bytes of RAM (default 0).maxmemfrac
- [OPTIONAL] - instructs scrypt to use the specified fracion of RAM (defaults 0.5).callback_function
- [REQUIRED] - a callback function that will handle processing when result is ready.decrypt(cipher, password, maxtime, maxmem, maxmemfrac, callback_function)
cipher
- [REQUIRED] - the cipher to be decrypted.password
- [REQUIRED] - a password string.maxtime
- [REQUIRED] - a decimal (double) representing the maxtime in seconds for running scrypt.maxmem
- [OPTIONAL] - instructs scrypt to use the specified number of bytes of RAM (default 0).maxmemfrac
- [OPTIONAL] - instructs scrypt to use the specified fracion of RAM (defaults 0.5).callback_function
- [REQUIRED] - a callback function that will handle processing when result is ready.###Synchronous
encryptSync(message, password, maxtime, maxmem, maxmemfrac)
message
- [REQUIRED] - the message data to be encrypted.password
- [REQUIRED] - a password string.maxtime
- [REQUIRED] - a decimal (double) representing the maxtime in seconds for running scrypt.maxmem
- [OPTIONAL] - instructs scrypt to use the specified number of bytes of RAM (default 0).maxmemfrac
- [OPTIONAL] - instructs scrypt to use the specified fracion of RAM (defaults 0.5).decryptSync(cipher, password, maxtime, maxmem, maxmemfrac)
cipher
- [REQUIRED] - the cipher to be decrypted.password
- [REQUIRED] - a password string.maxtime
- [REQUIRED] - a decimal (double) representing the maxtime in seconds for running scrypt.maxmem
- [OPTIONAL] - instructs scrypt to use the specified number of bytes of RAM (default 0).maxmemfrac
- [OPTIONAL] - instructs scrypt to use the specified fracion of RAM (defaults 0.5).#Credits The scrypt library is Colin Percival's scrypt project. This includes the encryption/decryption functions which are basically just wrappers into this library.
The password hash and verify functions are also very heavily influenced by the scrypt source code, with most functionality being copied from various placed within scrypt.
#Contributors
FAQs
The scrypt crypto library for NodeJS
The npm package scrypt receives a total of 5,150 weekly downloads. As such, scrypt popularity was classified as popular.
We found that scrypt demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.