Nigori: Storing Secrets in the Cloud

Filed under
Software
Security

Nigori is a protocol for storing secrets in the cloud such that the storage need not be trusted and only a single password is required to access secrets.

Table of Contents

1. Introduction
    1.1. Requirements Language
    1.2. Notation
    1.3. Constants
2. Key and Salt Derivation
    2.1. Unassisted Password-based Key Derivation
    2.2. Assisted Password-based Key Derivation
3. Authentication
4. Storage of Secrets
5. Secret Storage at a Single Server
    5.1. Storage
    5.2. Retrieval
6. Secret Storage at Multiple Servers
7. Protocol Details
    7.1. Storage
    7.2. Retrieval
    7.3. Responses
8. Algorithms
    8.1. Shamir Secret Split
9. Examples
10. Pre-calculated values for mod_inverse(x, p)
11. Acknowledgements
12. IANA Considerations
13. Security Considerations
14. References
    14.1. Normative References
    14.2. Informative References
§ Author's Address

Located Here