Crypto Overview

Scope

• Crypto component
• Reusable crypto libraries

Summary

• The crypto component:
  • Provides consistent APIs for cryptographic functions
  • Used by other components of the replica's stack
  • Provides secure storage and generation of secret keys
• The crypto component consists of two main pieces:
  • External API: Identifier to Key Mapping (IDKM)
    • Stores node public keys
    • Stores threshold signature public keys
    • Called using node identifiers
    • Maps node identifiers to the appropriate keys and algorithms
    • Fetches public keys of other nodes from the Registry canister on the NNS subnet
  • Internal API: Crypto Service Provider (CSP)
    • Generates and stores secret keys
    • Called using node identifiers and secret key IDs
    • Performs cryptographic operations

Resources

• Chain Key Cryptography
  • YouTube: Inside the Internet Computer | Chain Key Cryptography
  • Internet Computer: Chain Key Cryptography
  • Medium: Chain Key Cryptography
• Non-Interactive Distributed Key Generation (NIDKG)
  • YouTube: Inside the Internet Computer | NIDKG
  • Medium: NIDKG
  • NIDKG Whitepaper

Codebase

• Hash Tree
• Hash Tree Tests
• Certification
• The crypto component and crypto libraries
• Crypto interfaces (mod)
• Crypto interfaces (crate)
• Crypto Protobuf definition
• Crypto Protobuf generator
• Registry (NNS) crypto helper
• Registry (NNS) crypto helper tests
• Crypto test utilities
• More crypto test utilities
• Crypto tests
• Canister signature verification test
• More crypto tests
• Crypto types
• More crypto types
• Validator