-
Notifications
You must be signed in to change notification settings - Fork 0
Termidoof Features
Public-key cryptography, or asymmetric cryptography, is the field of cryptographic systems that use pairs of related keys. Each key pair consists of a public key and a corresponding private key. Key pairs are generated with cryptographic algorithms based on mathematical problems termed one-way functions. Security of public-key cryptography depends on keeping the private key secret; the public key can be openly distributed without compromising security. -- Wikipedia on Asymmetric Encryption
The server and each client has their own Public Encryption Key and Private Decryption Key. The Public Key is used for encrypting messages and cannot be used for decrypting messages. The Private Key is used for decrypting messages that were encrypted by the Public Key and should never be shared. These two keys only work on each other, as every group of two keys are unique to each other.
When a client connects to a server, the server and the client will give each other their Public Key for encrypting messages to send to each other. The Private Key is NEVER shared across ANY connection under ANY circumstances, and is always kept local to that client's/server's computer. This makes messages between the client and server more secure on the chatroom, but remember, there's no such thing as 100% secure.
Optionally, when creating a server you can also create a password for obtaining the server's Public Encryption Key. This will send a signal to the server, and if the password is correct, the server will be prompted to accept or deny the request from the client to obtain the server's public key. This is also basically a password to enter the server as well.