npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@digitaldefiance/eecp-crypto

v0.1.1

Published

Temporal key management and encryption primitives for EECP

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jessica-muleinjessica-mulein

Keywords

eecpencryptiontemporal-encryptionkey-managementzero-knowledgecryptography

Readme

@digitaldefiance/eecp-crypto

Temporal key management and encryption primitives for EECP (Ephemeral Encrypted Collaboration Protocol).

Overview

This package implements the cryptographic foundation of EECP, providing HKDF key derivation, AES-256-GCM encryption, ECIES multi-recipient encryption, zero-knowledge authentication, and cryptographic commitments for provable key deletion. Extensively tested with 100+ property-based tests.

Features

  • Temporal Key Derivation: HKDF-SHA256 for time-bound key generation
  • Time-Locked Encryption: AES-256-GCM with temporal key binding
  • Multi-Recipient Encryption: ECIES using @digitaldefiance/ecies-lib
  • Zero-Knowledge Authentication: ECDSA-based participant authentication
  • Cryptographic Commitments: Provable key deletion guarantees

Installation

npm install @digitaldefiance/eecp-crypto
# or
yarn add @digitaldefiance/eecp-crypto

Usage

Temporal Key Derivation

import { TemporalKeyDerivation } from '@digitaldefiance/eecp-crypto';

const keyDerivation = new TemporalKeyDerivation();

// Derive a temporal key
const temporalKey = await keyDerivation.deriveKey(
  workspaceSecret,
  timeWindow,
  keyId
);

// Get current key ID based on time
const currentKeyId = keyDerivation.getCurrentKeyId(
  timeWindow.startTime,
  Date.now(),
  timeWindow.rotationInterval
);

Time-Locked Encryption

import { TimeLockedEncryption } from '@digitaldefiance/eecp-crypto';

const encryption = new TimeLockedEncryption();

// Encrypt data
const encrypted = await encryption.encrypt(
  Buffer.from('sensitive data'),
  temporalKey
);

// Decrypt data
const decrypted = await encryption.decrypt(
  encrypted,
  temporalKey
);

Multi-Recipient Encryption

import { MultiRecipientEncryption } from '@digitaldefiance/eecp-crypto';
import { Member, MemberType, EmailString, eciesService } from '@digitaldefiance/ecies-lib';

const multiRecipient = new MultiRecipientEncryption();

// Create participants
const participants = [
  Member.newMember(eciesService, MemberType.User, 'Alice', new EmailString('[email protected]')),
  Member.newMember(eciesService, MemberType.User, 'Bob', new EmailString('[email protected]')),
];

// Encrypt for multiple recipients
const encrypted = await multiRecipient.encrypt(
  Buffer.from('shared secret'),
  participants.map(p => p.member.publicKey)
);

// Each recipient can decrypt with their private key
const decrypted = await multiRecipient.decrypt(
  encrypted,
  participants[0].member.privateKey
);

Zero-Knowledge Authentication

import { ParticipantAuth } from '@digitaldefiance/eecp-crypto';

const auth = new ParticipantAuth();

// Generate authentication proof
const proof = await auth.generateProof(
  participantPrivateKey,
  challenge
);

// Verify proof (server-side)
const isValid = await auth.verifyProof(
  participantPublicKey,
  challenge,
  proof
);

Cryptographic Commitments

import { CommitmentScheme } from '@digitaldefiance/eecp-crypto';

const commitment = new CommitmentScheme();

// Create commitment to a key
const { commitment: commitmentValue, opening } = await commitment.commit(
  temporalKey.key
);

// Later, prove the key was deleted by revealing the opening
const isValid = await commitment.verify(
  commitmentValue,
  temporalKey.key,
  opening
);

Key Classes

TemporalKeyDerivation

Derives time-bound encryption keys using HKDF-SHA256:

  • deriveKey(secret, timeWindow, keyId): Derive a temporal key
  • getCurrentKeyId(startTime, currentTime, interval): Get current key ID
  • getKeyIdForTimestamp(startTime, timestamp, interval): Get key ID for specific time

TimeLockedEncryption

Encrypts data with temporal keys using AES-256-GCM:

  • encrypt(plaintext, temporalKey): Encrypt data
  • decrypt(encrypted, temporalKey): Decrypt data
  • Uses authenticated encryption with 96-bit nonces and 128-bit auth tags

MultiRecipientEncryption

Encrypts data for multiple recipients using ECIES:

  • encrypt(data, recipientPublicKeys): Encrypt for multiple recipients
  • decrypt(encrypted, recipientPrivateKey): Decrypt with private key
  • Each recipient gets their own encrypted copy of the symmetric key

ParticipantAuth

Zero-knowledge authentication using ECDSA:

  • generateProof(privateKey, challenge): Create authentication proof
  • verifyProof(publicKey, challenge, proof): Verify authentication proof
  • Server never learns the participant's private key

CommitmentScheme

Cryptographic commitments for provable key deletion:

  • commit(value): Create a commitment
  • verify(commitment, value, opening): Verify a commitment
  • Enables proving that keys were destroyed as scheduled

Security Properties

  • Forward Secrecy: Past keys cannot decrypt future content
  • Temporal Isolation: Each time window has independent keys
  • Zero-Knowledge: Server never sees plaintext or keys
  • Provable Deletion: Cryptographic proof of key destruction
  • Multi-Recipient: Efficient encryption for multiple participants

Testing

This package includes 100+ property-based tests using fast-check to verify cryptographic properties across a wide range of inputs.

npm test

License

MIT

Repository

https://github.com/Digital-Defiance/digitaldefiance-eecp