This project provides pvde and skde modules, which facilitate secure cryptographic operations, including time-lock puzzle generation, proof generation and verification, symmetric key encryption and decryption, and more. These modules leverage WebAssembly (Wasm) for efficient cryptographic computations.
- Installation
- Initialization
- Usage
- Dependencies
- Examples
- Contributing
- Getting Help
To use these modules, ensure you have installed all dependencies and the required WebAssembly files. Clone the repository and install necessary packages:
git clone https://github.com/radiusxyz/radius-delay-encryption.git
cd radius-delay-encryption
npm installBefore using the functions in either pvde or skde, initialize the modules to load the WebAssembly components properly.
import { pvde, skde } from "./radius-delay-encryption";
await pvde.ensureInitialized();
await skde.ensureInitialized();Before performing any time-lock puzzle or encryption operations, you need to fetch the Zero-Knowledge Proof (ZKP) parameters and keys. These are essential for generating and verifying proofs in both the time-lock puzzle and encryption processes.
// Fetch Time-Lock Puzzle ZKP parameters and keys
const timeLockPuzzleZkpParam = await pvde.fetchTimeLockPuzzleZkpParam();
const timeLockPuzzleZkpProvingKey = await pvde.fetchTimeLockPuzzleProvingKey();
const timeLockPuzzleZkpVerifyingKey = await pvde.fetchTimeLockPuzzleVerifyingKey();
// Fetch Encryption ZKP parameters and keys
const encryptionZkpParam = await pvde.fetchEncryptionZkpParam();
const encryptionProvingKey = await pvde.fetchEncryptionProvingKey();
const encryptionVerifyingKey = await pvde.fetchEncryptionVerifyingKey();- Purpose: These parameters and keys are required for generating and verifying ZKPs.
- Time-Lock Puzzle:
timeLockPuzzleZkpParam: ZKP parameter data for time-lock puzzles.timeLockPuzzleZkpProvingKey: Proving key for generating proofs.timeLockPuzzleZkpVerifyingKey: Verifying key for proof verification.
- Encryption:
encryptionZkpParam: ZKP parameter data for encryption.encryptionProvingKey: Proving key for generating encryption proofs.encryptionVerifyingKey: Verifying key for proof verification.
- Time-Lock Puzzle:
The pvde module provides functionality for creating, proving, and verifying time-lock puzzles, enabling time-delayed decryption of messages with Zero-Knowledge Proof (ZKP) for security.
To create a time-lock puzzle, start by generating the required cryptographic parameters:
const timeLockPuzzleParam = await pvde.generateTimeLockPuzzleParam();- Output: An object containing fields like
g,n,t,y, andyTwo, where each field represents specific cryptographic values and configurations required for the time-lock puzzle.
Use the generated parameters to create a time-lock puzzle. This step generates a puzzle alongside public and secret inputs for use in proof generation and verification:
const [timeLockPuzzleSecretInput, timeLockPuzzlePublicInput] = await pvde.generateTimeLockPuzzle(timeLockPuzzleParam);- Inputs:
timeLockPuzzleParam— Object containing values likeg,n,t,y, andyTwo. - Outputs: An array with:
timeLockPuzzleSecretInput— Containsk, a cryptographic key in array format.timeLockPuzzlePublicInput— Contains arrays forkHashValue,kTwo,o,r1,r2, andz, used in proof verification.
Generate a Zero-Knowledge Proof (ZKP) to validate the time-lock puzzle. This proof ensures the puzzle was created correctly, without revealing the underlying secret key:
const timeLockPuzzleProof = await pvde.generateTimeLockPuzzleProof(
timeLockPuzzleZkpParam, // Uint8Array containing ZKP parameters
timeLockPuzzleZkpProvingKey, // Uint8Array containing ZKP proving key
timeLockPuzzlePublicInput, // Public inputs for the puzzle
timeLockPuzzleSecretInput, // Secret inputs for the puzzle
timeLockPuzzleParam // Puzzle parameters
);- Output: An object representing the generated ZKP for the time-lock puzzle.
Verify the ZKP for the time-lock puzzle to confirm the validity of the generated puzzle without revealing any secret information:
const isTimeLockPuzzleVerified = await pvde.verifyTimeLockPuzzleProof(
timeLockPuzzleZkpParam, // Uint8Array with ZKP parameters
timeLockPuzzleZkpVerifyingKey, // Uint8Array with ZKP verifying key
timeLockPuzzlePublicInput, // Public input data for verification
timeLockPuzzleParam, // Puzzle parameters
timeLockPuzzleProof // The proof object generated
);- Output: A boolean indicating the success or failure of the verification process.
After verifying the proof, solve the time-lock puzzle to retrieve the symmetric key, which is stored as an array of two arrays for use in encryption:
const symmetricKey = await pvde.solveTimeLockPuzzle(
timeLockPuzzlePublicInput, // Public inputs required for solving
timeLockPuzzleParam // Puzzle parameters
);- Output: The symmetric key, returned as an array of two arrays, for encryption or decryption operations.
This module also supports encryption and decryption using the generated symmetric key, as well as ZKP generation and verification for encrypted messages to ensure data integrity and confidentiality.
Generate a symmetric encryption key from an input array. This key is used for encrypting and decrypting messages:
const encryptionKey = await pvde.generateSymmetricKey(timeLockPuzzleSecretInput.k);- Output: An array of two arrays, representing the symmetric encryption key.
Encrypt a plaintext message using the symmetric encryption key generated in the previous step:
const encryptedMessage = await pvde.encryptMessage(
"Hello World", // Message to encrypt
encryptionKey // Symmetric key (array of two arrays)
);- Output: A string representing the encrypted message (cipher text).
Create a ZKP for the encryption operation. This proof confirms the integrity and correctness of the encryption process without revealing the plaintext:
const encryptionProof = await pvde.generateEncryptionProof(
encryptionZkpParam, // Uint8Array for encryption ZKP parameters
encryptionProvingKey, // Uint8Array for encryption proving key
encryptionPublicInput, // Object containing encryptedData (String) and kHashValue (array of two arrays)
encryptionSecretInput // Object containing data (String) and k (array)
);- Output: An object representing the ZKP for the encryption operation.
Verify the ZKP for an encrypted message, ensuring the validity and integrity of the encryption without exposing any secret data:
const isValidEncryptionProof = await pvde.verifyEncryptionProof(
encryptionZkpParam, // Uint8Array with encryption ZKP parameters
encryptionVerifyingKey, // Uint8Array with encryption verifying key
encryptionPublicInput, // Public inputs for encryption
encryptionProof // Proof object for verification
);- Output: A boolean indicating whether the encryption proof is valid.
Use the symmetric key to decrypt the previously encrypted message, recovering the original plaintext:
const decryptedMessage = await pvde.decryptCipher(
cipher, // Encrypted message (cipher text)
decryptionKey // Symmetric key (array of two arrays)
);- Output: The decrypted plaintext message as a string.
Before performing encryption, decryption operations, you need to fetch parameters and keys.
The skde module enables encrypting messages with specified cryptographic parameters and a public encryption key. Ensure that the WebAssembly module is initialized before attempting encryption.
Usage Example:
const cipherText = await skde.encryptMessage(
skdeParams, // Cryptographic parameters required for encryption
message, // Plaintext message to encrypt, in hex string format
encryptionKey // Object containing the public encryption key
);-
skdeParams: An object containing the following cryptographic parameters for encryption:n(string): A large modulus used in cryptographic calculations, represented as a string.g(string): The generator value, serving as a base for cryptographic operations.t(number): The time factor, which introduces a delay or difficulty in the encryption process.h(string): An additional large integer parameter used in modular arithmetic.max_sequencer_number(string): A constraint on the maximum sequence number.
-
message: The plaintext message to encrypt, represented as a hex string. -
encryptionKey: An object containing the public key:pk(string): The public encryption key, which is used to encrypt the message.
The skde module also enables decrypting an encrypted message using cryptographic parameters and a secret decryption key. Ensure that the module is initialized and configured with the appropriate parameters and keys.
Usage Example:
const decryptedMessage = await skde.decryptCipher(
skdeParams, // Cryptographic parameters for decryption
cipherText, // The encrypted message in hex string format
secretKey // Object containing the secret key for decryption
);skdeParams: The same cryptographic parameters object as used in encryption.cipherText: The encrypted message to decrypt, provided as a hex string.secretKey: An object containing the privatesk(string), which is the secret key used to decrypt thecipherText.
This project relies on the following components:
- WebAssembly (Wasm) Modules: Provides efficient and secure cryptographic operations for both encryption and decryption processes.
- Fetch API: Used to download cryptographic parameters and key files necessary for encryption and decryption.
Ensure that the following files are available at the correct URLs or local paths, as they contain essential cryptographic parameters and keys:
-
For Time-Lock Puzzle:
time_lock_puzzle_zkp_param.datatime_lock_puzzle_zkp_proving_key.datatime_lock_puzzle_zkp_verifying_key.data
-
For Encryption:
encryption_zkp_param.dataencryption_proving_key.dataencryption_verifying_key.data
These files are required to initialize and perform encryption and decryption operations within the module.
To see practical examples of using the pvde and skde modules, refer to the following scripts:
Help request