Abstraction layer for symmetric data encryption, primarily designed for database column encryption.
Find a file
2024-04-20 19:02:55 +02:00
benches Update the benchmarks 2024-04-20 18:24:30 +02:00
src Add the key length to the key context 2024-04-20 19:02:55 +02:00
.gitignore First commit 2024-02-14 18:16:45 +01:00
Cargo.toml Move criterion out of dev-dependencies so it can be optional 2024-04-20 18:28:47 +02:00
deny.toml Update cargo-deny 2024-03-23 11:41:45 +01:00
README.md Enforce word wrapping in the README 2024-04-20 18:26:21 +02:00
rustfmt.toml First commit 2024-02-14 18:16:45 +01:00

Coffio

License MIT OR Apache 2.0

Abstraction layer for symmetric data encryption, primarily designed for database column encryption.

Disclaimer

⚠️ DANGER: DRAGONS A(H)EAD! 🐲

This crate is experimental and has never been audited by an independent security professional. You should therefore NOT use it in production.

Although this crate aim to reduce the risk of misuse, it is still possible to use it in such a way that the cryptography it uses does not provides all the security guaranties you need. Ask your cryptographer if this crate is relevant to your use case and if you are using it correctly.

Frequently Asked Questions

Should I use this crate?

Although it may work, some parts are not stabilized yet. Expect breaking change that may result in the total loss of previously encrypted data.

Why should I use this crate instead of a symmetric encryption function?

  1. Strong algorithms only. If you don't know which one to chose, Coffio provides strong defaults.
  2. Key management is hard. Coffio largely simplifies it in a way that becomes largely accessible.

Why has this crate not been audited by a security professional?

Such an audit cost a lot of money. If you really care about this crate being audited, you may help financing it.

Where does the name coffio comes from?

It is a french slang for a safe or a strongbox. See coffio on the french Wiktionary.