I’m working on an app where I want to provide end to end encryption on files, where multiple users are able to access these folders. I’d like the encryption to be as transparent and frictionless as possible (I don’t want users to have to manage their own keys), so I’ve been considering ways to do this.
My current thoughts are:
- When a user signs up, generate a keypair (client side)
- Encrypt their private key with a symmetric key based on a salt + password (client side)
- Upload public key and encrypted private key
- When a user creates a folder, generate a new symmetric key, and encrypt these files using that key (client side)
- Encrypt this symmetric key using the users public key (client side)
- When user logs in, download their public and encrypted private key
- Decrypt private key, store on device
- Use private key to decrypt symmetric key, then decrypt files
- To grant access to another user, encrypt symmetric key with their public key, then add to database
Does such an approach make sense (from a security and usability perspective)? Are there any caveats or potential pitfalls?
I understand that there are N times protocols for multi-party asymmetrical encryption, however as it’s files rather than messages being stored it’s not realistic from a bandwidth perspective.
✓ Extra quality
ExtraProxies brings the best proxy quality for you with our private and reliable proxies
✓ Extra anonymity
Top level of anonymity and 100% safe proxies – this is what you get with every proxy package
✓ Extra speed
1,ooo mb/s proxy servers speed – we are way better than others – just enjoy our proxies!
USA proxy location
We offer premium quality USA private proxies – the most essential proxies you can ever want from USA
Our proxies have TOP level of anonymity + Elite quality, so you are always safe and secure with your proxies
Use your proxies as much as you want – we have no limits for data transfer and bandwidth, unlimited usage!
Superb fast proxy servers with 1,000 mb/s speed – sit back and enjoy your lightning fast private proxies!
99,9% servers uptime
Alive and working proxies all the time – we are taking care of our servers so you can use them without any problems
No usage restrictions
You have freedom to use your proxies with every software, browser or website you want without restrictions
Perfect for SEO
We are 100% friendly with all SEO tasks as well as internet marketing – feel the power with our proxies
Buy more proxies and get better price – we offer various proxy packages with great deals and discounts
We are working 24/7 to bring the best proxy experience for you – we are glad to help and assist you!