Audit-friendly implementation in strict accordance with version 18 of the IETF draft CPace for TS
- X25519 + SHA-512 suite
- Audit events
- Unit + integration tests
pnpm add cpace-tsimport {
type CPaceMessage,
type CPaceMode,
type CPaceRole,
CPaceSession,
G_X25519,
sha512,
} from 'cpace-ts';
const EMPTY_AD = new Uint8Array(0);
export function newSession(role: CPaceRole, prs: Uint8Array): CPaceSession {
const suite = {
name: 'CPACE-X25519-SHA512',
group: G_X25519,
hash: sha512,
} as const;
const mode: CPaceMode = 'initiator-responder';
const s = new CPaceSession({
prs,
suite,
mode,
role,
});
return s;
}
export async function start(s: CPaceSession): Promise<Uint8Array> {
const msg = await s.start();
if (!msg) throw new Error('CPaceSession.start() returned null/undefined');
return msg.payload;
}
export async function receive(
s: CPaceSession,
payload: Uint8Array,
): Promise<Uint8Array> {
const inbound: CPaceMessage = {
type: 'msg',
payload,
ad: EMPTY_AD,
};
const out = await s.receive(inbound);
return out.payload;
}
export function exportISK(s: CPaceSession): Uint8Array {
return s.exportISK();
}
async function runFullHandshake() {
const prs = new Uint8Array([...]); // Pre-shared secret
// Setup both parties
const initiator = newSession('initiator', prs);
const responder = newSession('responder', prs);
// 1. Initiator starts and sends message to Responder
const msg1 = await start(initiator);
// 2. Responder receives message and sends a reply
const msg2 = await receive(responder, msg1);
// 3. Initiator receives the reply
await receive(initiator, msg2);
// Handshake complete, keys can be exported
const initiatorKey = exportISK(initiator);
const responderKey = exportISK(responder);
}