The Vault service offers state-of-the-art key management with a focus on providing advanced privacy and messaging capabilities (i.e., zero-knowledge proofs, SNARK-friendly hash functions, double-ratchet algorithm, etc.) in a single enterprise-grade API.
This documentation is currently a work in progress!
Supported Curves & Specifications
This section describes the elliptic curves and key specifications which are currently supported by the API. Supported curves and key specs are defined with a
type of either or
asymmetric and a corresponding
symmetric keys support key derivation (i.e., such as the
ChaCha20 stream cipher). Other key specs, such as RSA, are (or may) be provided for convenience and to more closely achieve parity with industry-standard key management solutions (i.e., such as AWS KMS).
default encryption for the master key of each
stream cipher useful with double-ratchet messaging algorithm
not yet supported; 2048, 3072 and 4096-bit
a twisted Edwards elliptic curve designed for zk-SNARK circuits
elliptic curve designed for Diffie–Hellman (ECDH) key exchange
EdDSA signature scheme using SHA-512 (SHA-2)
not yet supported; 2048, 3072 and 4096-bit support for various signing algorithms may be added
elliptic curve used with ECDSA (ETH/BTC)