MarketTakers/arbiter
5
0
Fork 0
Code Issues 27 Pull Requests 4 Packages Projects Releases Wiki Activity

Implement key hierarchy and encryption at rest #5

New Issue
Closed
opened 2026-02-14 11:33:43 +00:00 by Skipper · 1 comment
Skipper commented 2026-02-14 11:33:43 +00:00
Owner
Copy Link

Implement the three-layer key hierarchy and AEAD encryption at rest as described in ARCHITECTURE.md section 4.

The aead_encrypted table and arbiter_settings.root_key_id FK exist in the DB, and chacha20poly1305 is a dependency, but no encryption logic is implemented yet.

Requirements:

  • User key derived from password (e.g. Argon2)
  • Root key encrypted by user key, stored in aead_encrypted
  • Wallet keys encrypted by root key, stored in aead_encrypted
  • Password rotation re-encrypts only the root key
  • Root key rotation re-encrypts all wallet keys
  • Symmetric AEAD encryption using ChaCha20-Poly1305
  • Encryption scheme versioned via schema_version column for future migration
Implement the three-layer key hierarchy and AEAD encryption at rest as described in ARCHITECTURE.md section 4. The `aead_encrypted` table and `arbiter_settings.root_key_id` FK exist in the DB, and `chacha20poly1305` is a dependency, but no encryption logic is implemented yet. **Requirements:** - User key derived from password (e.g. Argon2) - Root key encrypted by user key, stored in `aead_encrypted` - Wallet keys encrypted by root key, stored in `aead_encrypted` - Password rotation re-encrypts only the root key - Root key rotation re-encrypts all wallet keys - Symmetric AEAD encryption using ChaCha20-Poly1305 - Encryption scheme versioned via `schema_version` column for future migration
Skipper added the
Kind
Feature
 label 2026-02-14 11:33:43 +00:00
Skipper added the
Difficulty
High
3
 label 2026-02-14 11:38:48 +00:00
Skipper added
Kind
Security
Priority
Critical
1
 and removed
Kind
Feature
 labels 2026-02-14 11:44:16 +00:00
Skipper commented 2026-02-16 21:31:58 +00:00
Author
Owner
Copy Link

Done, but no rotation

Done, but no rotation
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Compat
Breaking
Breaking change that won't be backward compatible
Difficulty
High
3
Hard difficulty. Experience needed to fix: A lot.
Difficulty
Low
1
Easy difficulty. Experience needed to fix: Not much. Good first issue.
Difficulty
Medium
2
Medium difficulty. Experience needed to fix: Intermediate.
Kind
Bug
This is a bug.
Kind
Enhancement
Improve existing functionality.
Kind
Feature
New functionality
Kind
RFC
Request for comments
Kind
Security
This is security issue
Kind
Testing
This is testing issue.
Kind
Tracking issue
An issue tracking the progress of sth. like the implementation of an RFC
Priority
Critical
1
The priority is critical
Priority
High
2
The priority is high
Priority
Low
4
The priority is low
Priority
Medium
3
The priority is medium
Reviewed
Confirmed
1
Issue has been confirmed
Reviewed
Duplicate
2
This issue or pull request already exists
Reviewed
Invalid
3
Invalid issue
Reviewed
Pending
4
Requires review by dev
Reviewed
Won't Fix
3
This issue won't be fixed
Status
Abandoned
3
Somebody has started to work on this but abandoned work
Status
Blocked
1
Something is blocking this issue or pull request
Status
Need More Info
2
Feedback is required to reproduce issue or to continue work
No Label
Difficulty
High
3
Kind
Security
Priority
Critical
1
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
CleverWild Skipper goodvin testuser
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: MarketTakers/arbiter#5
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?