Which encryption is in use? #402
-
|
I was looking around the source code and couldn't find where encryption is applied. |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments
-
|
Hi @JoeyVisbeen - Password Pusher uses lockbox (using the AES-GCM algorithm) to encrypt sensitive fields before they are stored. It acts as an ActiveRecord middle layer to passively encrypt selected fields (e.g. When hosting your own private instance, we suggest setting your own encryption key. A bit more documentation on encryption is available here:
I hope this answers your question. If there is anything else, let me know. |
Beta Was this translation helpful? Give feedback.
-
|
We now have a page that explains the security of Password Pusher: https://docs.pwpush.com/docs/security/ |
Beta Was this translation helpful? Give feedback.
Hi @JoeyVisbeen - Password Pusher uses lockbox (using the AES-GCM algorithm) to encrypt sensitive fields before they are stored. It acts as an ActiveRecord middle layer to passively encrypt selected fields (e.g.
payload,note).When hosting your own private instance, we suggest setting your own encryption key.
A bit more documentation on encryption is available here:
I hope this answers your question. If there is anything else, let me know.