kms 0.3.0 copy "kms: ^0.3.0" to clipboard
kms: ^0.3.0 copied to clipboard

Published 4 years agoverified publisherdint.devDart 3 incompatible• Latest: 0.4.1
unlistedoutdated

Metadata

Key Management Service (KMS) API for managing cryptographic keys securely.

More...

Pub Package Github Actions CI

Overview #

This package gives you a vendor-agnostic API for accessing Key Management Service (KMS) products. Many operating systems and major cloud platforms (AWS, Azure, Google) offer such APIs. KMS adapters are subclasses of Kms.

Copyright 2020 Gohilla Ltd. Licensed under the Apache License 2.0.

Want to contribute? #

  • Any help is appreciated! We recommend that you start by creating an issue in the issue tracker.

Available adapters #

  • MemoryKms
    • Works in all platforms. It uses cryptographic algorithm implementations from our sibling project, package:cryptography.
  • CupertinoKms (work-in-progress)
    • Uses Apple Security Framework. Uses Secure Enclave (a hardware-based key manager) when possible.
  • Have an adapter? Let us know so we will add a link here.

Supported algorithms #

Key agreement #

  • X25519
    • Supported by:
      • Apple APIs
  • ECDH P256
    • Supported by:

Digital signature #

  • ED25519
    • Supported by:
      • Apple APIs
      • Hashcorp Vault
  • ECDSA P256 + SHA256
    • Supported by:
      • Apple APIs (including the Secure Enclave).
      • AWS KMS
      • Azure Vault
      • Google Cloud KMS
      • Hashcorp Vault

Authenticated ciphers #

  • AES-GCM
    • Supported by:
      • Apple APIs
      • AWS KMS
      • Azure Vault
      • Google Cloud KMS
      • Hashcorp Vault
  • CHACHA20 + POLY1305
    • Supported by:
      • Apple APIs
      • Hashcorp Vault

Getting started #

1.Add dependency #

In pubspec.yaml:

dependencies:
  kms: ^0.2.0

2.Use #

For digital signature #

import 'package:kms/kms.dart';

Future<void> main() async {
  final kms = MemoryKms();

  // Create the key pair
  final kmsKey = await kms.createKeyPair(
    keyRingId: 'example',
    keyExchangeType: null, // We will not do key exchange.
    signatureType: SignatureType.ed25519,
  );

  // Signed message
  final message = <int>[1,2,3];

  // Request a signature from the KMS
  final signature = await kms.sign(
    message: message,
    kmsKey: kmsKey,
    signatureType: SignatureType.ed25519,
  );

  print('Signature: ${signature.bytes}');
  print('Public key: ${signature.publicKey}');

  // Delete the key pair
  await kms.delete(kmsKey);
}

For key exchange #

import 'package:cryptography/cryptography.dart';
import 'package:kms/kms.dart';

Future<void> main() async {
  final kms = MemoryKms();

  // Create a key pair
  final kmsKey = await kms.createKeyPair(
    keyRingId: 'example',
    keyExchangeType: KeyExchangeType.x25519,
    signatureType: null, // We will not do signing.
  );

  // A random public key for the peer.
  final remotePublicKey = x25519.newKeyPairSync().publicKey;

  // Request a shared secret from the KMS.
  final secretKey = await kms.sharedSecret(
    kmsKey: kmsKey,
    remotePublicKey: remotePublicKey,
    keyExchangeType: KeyExchangeType.x25519,
  );

  print('Secret key: ${secretKey.bytes}');

  // Delete the key pair
  await kms.delete(kmsKey);
}

Metadata

10
likes
0
pub points
0%
popularity

Publisher

verified publisherdint.dev

Metadata

Key Management Service (KMS) API for managing cryptographic keys securely.

Repository (GitHub)
View/report issues

License

unknown (LICENSE)

Dependencies

cryptography, meta

More

Packages that depend on kms

Back