tlock-js
v0.9.0
Published
A library to encrypt data that can only be decrypted in the future using drand
Downloads
192
Readme
tlock-js
A typescript library for encrypting data which can only be decrypted at a set time in the future using drand.
tlock-js uses AGE to symmetrically encrypt a payload, and encrypts the symmetric key using pairing-based cryptography ensuring that it can only be decrypted when the drand's threshold network has generated randomness at a future point.
Prerequisites
- Node 16+
- a browser that supports bigint (which is most of them - see here )
Quickstart
- install the dependencies by running
npm install
- compile the code with
npm run compile
- run the tests with
npm test
- run the linter and fix the problems by running
npm run lint:fix
Using it as a library
- install the latest version using
npm install tlock-js
- install the drand client using
npm install drand-client
Note: early versions of node may need to pull in a fetch
polyfill; versions 17+ have fetch
already, but it may be behind the --experimental-modules
flag.
Test our Web demo
We have a live web-demo relying on this library to allow you to test Timelock encryption/decryption directly in your browser now by visiting Timevault. Everything is done locally in your browser and it only fetches the drand beacons it needs to decrypt your ciphertexts, nothing else, no logging, no nothing.
API
timelockEncrypt
This encrypts a payload that can only be decrypted when the roundNumber
has been reached.
The time of this roundNumber
depends on the genesis and round frequency of the network you connect to.
By default, the drand testnet HTTP client will be used, but you can implement your own and pass it in here.
The output ciphertext should be compatible with any of the drand tlock implementations
timelockDecrypt
This takes a payload that has been encrypted with any of the drand tlock implementations, reads the roundNumber
from it and attempts to decrypt it.
If the round number has not yet been reached by the network, an error will be thrown.
It accepts both armored and unarmored payloads.
roundForTime
Given a NetworkInfo
object, it calculates what the latest-emitted round will have been at that time
timeForRound
Given a NetworkInfo
object, it calculates the approximate time the given round
will be emitted at (approximate because the network must work together to create the randomness).
Possible issues
- you may need a
fetch
polyfill on some versions of node, e.g. isomorphic fetch. You can provide your ownDrandHttpClientOptions
to theDrandHttpClient
if you don't want to use fetch, but it may be necessary to declare a fakefetch
somewhere for compilation - vite users may need to set their build target to "es2020" with a config such as:
export default {
build: { target: "es2020" },
optimizeDeps: {
esbuildOptions: { target: "es2020", supported: { bigint: true } },
},
};
npm packaging
The github actions create a dist
folder and move the package.json and some other bits in order to do some packaging, thus running npm pack
in the root dir will not give the expected results. Similarly, the main
, module
and types
keys in the package.json
are relative to the dist
dir.
Get in touch
- Open an issue for feature requests or to report a bug.
- Join the drand Slack to discuss Timelock, randomness beacons and more.
- Follow the drand blog for our articles.
- Follow the @drand_loe account on Twitter to stay tuned.
License
This project is licensed using the Permissive License Stack which means that all contributions are available under the most permissive commonly-used licenses, and dependent projects can pick the license that best suits them.
Therefore, the project is dual-licensed under Apache 2.0 and MIT terms:
- Apache License, Version 2.0, (LICENSE-APACHE or http://www.apache.org/licenses/LICENSE-2.0)
- MIT license (LICENSE-MIT or http://opensource.org/licenses/MIT)