add iv definition

This commit is contained in:
1e99 2024-11-08 16:11:49 +01:00
parent 05e787baba
commit ced07b2dd8

View file

@ -14,7 +14,7 @@ You want to write it on paper, but everyone can read that.
PassED solves these issues by allowing you to generate single-use URLs that contain your password. PassED solves these issues by allowing you to generate single-use URLs that contain your password.
## How it works ## How it works
When you create a password URL, PassED firstly encrypts the password in your browser using `AES-GCM`. It then uploads the encrypted password to the server, which responds with an ID that uniquely identifies that password. The AES Key and IV is then stored in the URL, along with the ID. When you create a password URL, PassED firstly encrypts the password in your browser using `AES-GCM`. It then uploads the encrypted password to the server, which responds with an ID that uniquely identifies that password. The AES Key and IV (Initialization vector) is then stored in the URL, along with the ID.
When someone views the password, PassED looks at the URL. It knows the password ID, AES Key and IV. It reaches out to the server, asks for a password with the ID from the URL, and then decrypts it with the AES Key and IV. When someone views the password, PassED looks at the URL. It knows the password ID, AES Key and IV. It reaches out to the server, asks for a password with the ID from the URL, and then decrypts it with the AES Key and IV.