Skip to content
This repository has been archived by the owner on Aug 23, 2023. It is now read-only.

alikhil/sttp

BranchesTags

Repository files navigation

STTP - new generation Secure TBM Transfer Protocol.

npm version Build Status Codacy Badge Codacy Badge Code Climate

STTP works over HTTP and it very similar to TLS. It is a kind of poor copy of HTTPS. sttp-tls-schema Picture taken from

Installation

npm install sttp

Tutorial

  • To use in nodejs backend call var sttp = require("sttp").

  • To use in browser attach bundle.sttp.js script from ./node_modules/sttp/ directory. And use sttp global variable.

<script src="path/to/bundle.sttp.js"></script>
<script type="text/javascript">
    var AuthKeyPacker = sttp.AuthKeyPacker;
    var rsaKeys = sttp.keys.generateRSAKey();
    var packer = new AuthKeyPacker(rsaKeys.public)
    // ...
</script>

AuthDataPacker

AuthDataPacker uses on initializing handshake to share AES-key. Usage:

var sttp = require("sttp");

// server:
// create and share somehow RSA public key with client
var keys = sttp.keys;
var rsaKeys = keys.generateRSAKey({bits: 512}); // by default 1024
// rsaKeys : { public, private }
// Share rsaKeys.public

// client:
// get RSA public key from server and 
// send encrypted with rsaKeys.public generated aesKey
var aesKey = keys.generateAESKey(16); // 128 bit key

var AuthDataPacker = sttp.AuthDataPacker;

var packer = new AuthDataPacker(rsaKeys.public);
var authData = packer.pack(aesKey);
// transfer authData using some channel to server

// server:
// get authData from client, decrypt it and save somewhere
var packer = new AuthDataPacker(rsaKeys.private);
var data = packer.unpack(authData);
// save aesKey to correspoing user in database
// and start using DataPacker

DataPacker

DataPacker uses for transfering main information it uses AES-128 for encryption(aesKey is transfering AuthDataPacker). Usage:

var DataPacker = sttp.DataPacker();
var data = { projectName : "sttp", contributors : ["Alik", "Kevin", "Sergey"] };

var packer = new DataPacker(aesKey);
var packedData = packer.pack(data);

// transfer packedData using some channel
// and on other end do the following:
// P.S. use the same aesKey

var packer = new DataPacker(aesKey);
var data = packer.unpack(packedData);

// use data...

Example

Also you can look at example of using sttp with express.js in nodejs web application.

Contribution

Read git conventions before.

Make sure that you are using nodejs 6+

git clone https://github.com/alikhil/sttp
npm install

Run tests:

npm test

About

STTP - Secure TBM Transfer Protocol over HTTP

Topics

tls tbm sttp

Resources

Readme

License

MIT license
Activity

Stars

7 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases 2

STTP ALIVE! Latest
Dec 30, 2016
+ 1 release

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages