npm - @digitaldefiance/ecies-lib - Versions diffs - 1.1.23 → 1.1.24 - Mend

@digitaldefiance/ecies-lib 1.1.23 → 1.1.24

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (347) hide show

package/README.md +4 -0
package/package.json +13 -33
package/src/constants.ts +474 -0
package/src/email-string.ts +83 -0
package/src/enumerations/ecies-encryption-type.ts +102 -0
package/src/enumerations/ecies-error-type.ts +31 -0
package/src/enumerations/ecies-string-key.ts +108 -0
package/src/enumerations/guid-brand-type.ts +26 -0
package/src/enumerations/guid-error-type.ts +6 -0
package/{dist/enumerations/index.d.ts → src/enumerations/index.ts} +0 -1
package/src/enumerations/invalid-email-type.ts +5 -0
package/src/enumerations/length-encoding-type.ts +6 -0
package/src/enumerations/length-error-type.ts +5 -0
package/src/enumerations/member-error-type.ts +106 -0
package/{dist/enumerations/member-type.d.ts → src/enumerations/member-type.ts} +7 -6
package/src/enumerations/password-login-error-type.ts +4 -0
package/src/enumerations/pbkdf2-error-type.ts +5 -0
package/src/enumerations/pbkdf2-profile.ts +5 -0
package/src/enumerations/secure-storage-error-type.ts +5 -0
package/src/errors/disposed.ts +15 -0
package/src/errors/ecies.ts +34 -0
package/src/errors/guid.ts +34 -0
package/{dist/errors/index.d.ts → src/errors/index.ts} +0 -1
package/src/errors/invalid-email.ts +11 -0
package/src/errors/length.ts +11 -0
package/src/errors/member.ts +12 -0
package/src/errors/pbkdf2.ts +12 -0
package/src/errors/secure-storage.ts +13 -0
package/src/errors/simple-ecies.ts +18 -0
package/src/errors/simple-test-error.ts +6 -0
package/src/guid.ts +800 -0
package/src/i18n-setup.ts +1312 -0
package/{dist/index.d.ts → src/index.ts} +0 -1
package/src/interfaces/checksum-config.ts +4 -0
package/src/interfaces/checksum-consts.ts +13 -0
package/src/interfaces/constants.ts +48 -0
package/src/interfaces/ecies-config.ts +8 -0
package/src/interfaces/ecies-consts.ts +70 -0
package/src/interfaces/ecies-file-service.ts +6 -0
package/src/interfaces/guid.ts +53 -0
package/{dist/interfaces/index.d.ts → src/interfaces/index.ts} +0 -1
package/src/interfaces/library-error.ts +23 -0
package/src/interfaces/member-operational.ts +54 -0
package/{dist/interfaces/member-storage.d.ts → src/interfaces/member-storage.ts} +11 -10
package/{dist/interfaces/member-with-mnemonic.d.ts → src/interfaces/member-with-mnemonic.ts} +3 -3
package/src/interfaces/pbkdf2-config.ts +6 -0
package/src/interfaces/pbkdf2-consts.ts +10 -0
package/src/interfaces/pbkdf2-result.ts +5 -0
package/src/member.ts +429 -0
package/{dist/pbkdf2-profiles.d.ts → src/pbkdf2-profiles.ts} +2 -2
package/src/phone-number.ts +18 -0
package/src/regexes.ts +10 -0
package/src/secure-buffer.ts +183 -0
package/src/secure-string.ts +229 -0
package/src/services/aes-gcm.ts +177 -0
package/src/services/ecies/README.md +147 -0
package/src/services/ecies/crypto-core.ts +180 -0
package/src/services/ecies/example.ts +185 -0
package/src/services/ecies/file.ts +167 -0
package/{dist/services/ecies/index.d.ts → src/services/ecies/index.ts} +3 -1
package/src/services/ecies/integration.ts +241 -0
package/src/services/ecies/interfaces.ts +59 -0
package/src/services/ecies/manual-test.ts +219 -0
package/src/services/ecies/multi-recipient.ts +394 -0
package/src/services/ecies/service.ts +317 -0
package/src/services/ecies/signature.ts +93 -0
package/src/services/ecies/single-recipient.ts +340 -0
package/{dist/services/index.d.ts → src/services/index.ts} +0 -1
package/src/services/password-login.ts +228 -0
package/src/services/pbkdf2.ts +172 -0
package/src/services/xor.ts +65 -0
package/src/types/deep-partial.ts +11 -0
package/{dist/types.d.ts → src/types.ts} +10 -4
package/src/utils.ts +331 -0
package/dist/constants.d.ts +0 -46
package/dist/constants.d.ts.map +0 -1
package/dist/constants.js +0 -358
package/dist/constants.js.map +0 -1
package/dist/email-string.d.ts +0 -42
package/dist/email-string.d.ts.map +0 -1
package/dist/email-string.js +0 -75
package/dist/email-string.js.map +0 -1
package/dist/enumerations/ecies-encryption-type.d.ts +0 -15
package/dist/enumerations/ecies-encryption-type.d.ts.map +0 -1
package/dist/enumerations/ecies-encryption-type.js +0 -71
package/dist/enumerations/ecies-encryption-type.js.map +0 -1
package/dist/enumerations/ecies-error-type.d.ts +0 -32
package/dist/enumerations/ecies-error-type.d.ts.map +0 -1
package/dist/enumerations/ecies-error-type.js +0 -36
package/dist/enumerations/ecies-error-type.js.map +0 -1
package/dist/enumerations/ecies-string-key.d.ts +0 -96
package/dist/enumerations/ecies-string-key.d.ts.map +0 -1
package/dist/enumerations/ecies-string-key.js +0 -105
package/dist/enumerations/ecies-string-key.js.map +0 -1
package/dist/enumerations/guid-brand-type.d.ts +0 -27
package/dist/enumerations/guid-brand-type.d.ts.map +0 -1
package/dist/enumerations/guid-brand-type.js +0 -31
package/dist/enumerations/guid-brand-type.js.map +0 -1
package/dist/enumerations/guid-error-type.d.ts +0 -7
package/dist/enumerations/guid-error-type.d.ts.map +0 -1
package/dist/enumerations/guid-error-type.js +0 -11
package/dist/enumerations/guid-error-type.js.map +0 -1
package/dist/enumerations/index.d.ts.map +0 -1
package/dist/enumerations/index.js +0 -31
package/dist/enumerations/index.js.map +0 -1
package/dist/enumerations/invalid-email-type.d.ts +0 -6
package/dist/enumerations/invalid-email-type.d.ts.map +0 -1
package/dist/enumerations/invalid-email-type.js +0 -10
package/dist/enumerations/invalid-email-type.js.map +0 -1
package/dist/enumerations/length-encoding-type.d.ts +0 -7
package/dist/enumerations/length-encoding-type.d.ts.map +0 -1
package/dist/enumerations/length-encoding-type.js +0 -11
package/dist/enumerations/length-encoding-type.js.map +0 -1
package/dist/enumerations/length-error-type.d.ts +0 -6
package/dist/enumerations/length-error-type.d.ts.map +0 -1
package/dist/enumerations/length-error-type.js +0 -10
package/dist/enumerations/length-error-type.js.map +0 -1
package/dist/enumerations/member-error-type.d.ts +0 -87
package/dist/enumerations/member-error-type.d.ts.map +0 -1
package/dist/enumerations/member-error-type.js +0 -91
package/dist/enumerations/member-error-type.js.map +0 -1
package/dist/enumerations/member-type.d.ts.map +0 -1
package/dist/enumerations/member-type.js +0 -19
package/dist/enumerations/member-type.js.map +0 -1
package/dist/enumerations/password-login-error-type.d.ts +0 -5
package/dist/enumerations/password-login-error-type.d.ts.map +0 -1
package/dist/enumerations/password-login-error-type.js +0 -9
package/dist/enumerations/password-login-error-type.js.map +0 -1
package/dist/enumerations/pbkdf2-error-type.d.ts +0 -6
package/dist/enumerations/pbkdf2-error-type.d.ts.map +0 -1
package/dist/enumerations/pbkdf2-error-type.js +0 -10
package/dist/enumerations/pbkdf2-error-type.js.map +0 -1
package/dist/enumerations/pbkdf2-profile.d.ts +0 -6
package/dist/enumerations/pbkdf2-profile.d.ts.map +0 -1
package/dist/enumerations/pbkdf2-profile.js +0 -10
package/dist/enumerations/pbkdf2-profile.js.map +0 -1
package/dist/enumerations/secure-storage-error-type.d.ts +0 -6
package/dist/enumerations/secure-storage-error-type.d.ts.map +0 -1
package/dist/enumerations/secure-storage-error-type.js +0 -10
package/dist/enumerations/secure-storage-error-type.js.map +0 -1
package/dist/errors/disposed.d.ts +0 -4
package/dist/errors/disposed.d.ts.map +0 -1
package/dist/errors/disposed.js +0 -20
package/dist/errors/disposed.js.map +0 -1
package/dist/errors/ecies.d.ts +0 -7
package/dist/errors/ecies.d.ts.map +0 -1
package/dist/errors/ecies.js +0 -15
package/dist/errors/ecies.js.map +0 -1
package/dist/errors/guid.d.ts +0 -15
package/dist/errors/guid.d.ts.map +0 -1
package/dist/errors/guid.js +0 -26
package/dist/errors/guid.js.map +0 -1
package/dist/errors/index.d.ts.map +0 -1
package/dist/errors/index.js +0 -25
package/dist/errors/index.js.map +0 -1
package/dist/errors/invalid-email.d.ts +0 -7
package/dist/errors/invalid-email.d.ts.map +0 -1
package/dist/errors/invalid-email.js +0 -14
package/dist/errors/invalid-email.js.map +0 -1
package/dist/errors/length.d.ts +0 -7
package/dist/errors/length.d.ts.map +0 -1
package/dist/errors/length.js +0 -14
package/dist/errors/length.js.map +0 -1
package/dist/errors/member.d.ts +0 -7
package/dist/errors/member.d.ts.map +0 -1
package/dist/errors/member.js +0 -14
package/dist/errors/member.js.map +0 -1
package/dist/errors/pbkdf2.d.ts +0 -7
package/dist/errors/pbkdf2.d.ts.map +0 -1
package/dist/errors/pbkdf2.js +0 -14
package/dist/errors/pbkdf2.js.map +0 -1
package/dist/errors/secure-storage.d.ts +0 -7
package/dist/errors/secure-storage.d.ts.map +0 -1
package/dist/errors/secure-storage.js +0 -15
package/dist/errors/secure-storage.js.map +0 -1
package/dist/errors/simple-ecies.d.ts +0 -6
package/dist/errors/simple-ecies.d.ts.map +0 -1
package/dist/errors/simple-ecies.js +0 -15
package/dist/errors/simple-ecies.js.map +0 -1
package/dist/errors/simple-test-error.d.ts +0 -4
package/dist/errors/simple-test-error.d.ts.map +0 -1
package/dist/errors/simple-test-error.js +0 -11
package/dist/errors/simple-test-error.js.map +0 -1
package/dist/guid.d.ts +0 -153
package/dist/guid.d.ts.map +0 -1
package/dist/guid.js +0 -647
package/dist/guid.js.map +0 -1
package/dist/i18n-setup.d.ts +0 -24
package/dist/i18n-setup.d.ts.map +0 -1
package/dist/i18n-setup.js +0 -837
package/dist/i18n-setup.js.map +0 -1
package/dist/index.d.ts.map +0 -1
package/dist/index.js +0 -32
package/dist/index.js.map +0 -1
package/dist/interfaces/checksum-config.d.ts +0 -5
package/dist/interfaces/checksum-config.d.ts.map +0 -1
package/dist/interfaces/checksum-config.js +0 -3
package/dist/interfaces/checksum-config.js.map +0 -1
package/dist/interfaces/checksum-consts.d.ts +0 -11
package/dist/interfaces/checksum-consts.d.ts.map +0 -1
package/dist/interfaces/checksum-consts.js +0 -3
package/dist/interfaces/checksum-consts.js.map +0 -1
package/dist/interfaces/constants.d.ts +0 -45
package/dist/interfaces/constants.d.ts.map +0 -1
package/dist/interfaces/constants.js +0 -3
package/dist/interfaces/constants.js.map +0 -1
package/dist/interfaces/ecies-config.d.ts +0 -9
package/dist/interfaces/ecies-config.d.ts.map +0 -1
package/dist/interfaces/ecies-config.js +0 -3
package/dist/interfaces/ecies-config.js.map +0 -1
package/dist/interfaces/ecies-consts.d.ts +0 -58
package/dist/interfaces/ecies-consts.d.ts.map +0 -1
package/dist/interfaces/ecies-consts.js +0 -3
package/dist/interfaces/ecies-consts.js.map +0 -1
package/dist/interfaces/ecies-file-service.d.ts +0 -7
package/dist/interfaces/ecies-file-service.d.ts.map +0 -1
package/dist/interfaces/ecies-file-service.js +0 -3
package/dist/interfaces/ecies-file-service.js.map +0 -1
package/dist/interfaces/guid.d.ts +0 -45
package/dist/interfaces/guid.d.ts.map +0 -1
package/dist/interfaces/guid.js +0 -3
package/dist/interfaces/guid.js.map +0 -1
package/dist/interfaces/index.d.ts.map +0 -1
package/dist/interfaces/index.js +0 -30
package/dist/interfaces/index.js.map +0 -1
package/dist/interfaces/library-error.d.ts +0 -23
package/dist/interfaces/library-error.d.ts.map +0 -1
package/dist/interfaces/library-error.js +0 -3
package/dist/interfaces/library-error.js.map +0 -1
package/dist/interfaces/member-operational.d.ts +0 -40
package/dist/interfaces/member-operational.d.ts.map +0 -1
package/dist/interfaces/member-operational.js +0 -3
package/dist/interfaces/member-operational.js.map +0 -1
package/dist/interfaces/member-storage.d.ts.map +0 -1
package/dist/interfaces/member-storage.js +0 -3
package/dist/interfaces/member-storage.js.map +0 -1
package/dist/interfaces/member-with-mnemonic.d.ts.map +0 -1
package/dist/interfaces/member-with-mnemonic.js +0 -3
package/dist/interfaces/member-with-mnemonic.js.map +0 -1
package/dist/interfaces/pbkdf2-config.d.ts +0 -7
package/dist/interfaces/pbkdf2-config.d.ts.map +0 -1
package/dist/interfaces/pbkdf2-config.js +0 -3
package/dist/interfaces/pbkdf2-config.js.map +0 -1
package/dist/interfaces/pbkdf2-consts.d.ts +0 -9
package/dist/interfaces/pbkdf2-consts.d.ts.map +0 -1
package/dist/interfaces/pbkdf2-consts.js +0 -3
package/dist/interfaces/pbkdf2-consts.js.map +0 -1
package/dist/interfaces/pbkdf2-result.d.ts +0 -6
package/dist/interfaces/pbkdf2-result.d.ts.map +0 -1
package/dist/interfaces/pbkdf2-result.js +0 -3
package/dist/interfaces/pbkdf2-result.js.map +0 -1
package/dist/member.d.ts +0 -66
package/dist/member.d.ts.map +0 -1
package/dist/member.js +0 -271
package/dist/member.js.map +0 -1
package/dist/pbkdf2-profiles.d.ts.map +0 -1
package/dist/pbkdf2-profiles.js +0 -3
package/dist/pbkdf2-profiles.js.map +0 -1
package/dist/phone-number.d.ts +0 -6
package/dist/phone-number.d.ts.map +0 -1
package/dist/phone-number.js +0 -22
package/dist/phone-number.js.map +0 -1
package/dist/regexes.d.ts +0 -7
package/dist/regexes.d.ts.map +0 -1
package/dist/regexes.js +0 -10
package/dist/regexes.js.map +0 -1
package/dist/secure-buffer.d.ts +0 -38
package/dist/secure-buffer.d.ts.map +0 -1
package/dist/secure-buffer.js +0 -168
package/dist/secure-buffer.js.map +0 -1
package/dist/secure-string.d.ts +0 -39
package/dist/secure-string.d.ts.map +0 -1
package/dist/secure-string.js +0 -195
package/dist/secure-string.js.map +0 -1
package/dist/services/aes-gcm.d.ts +0 -57
package/dist/services/aes-gcm.d.ts.map +0 -1
package/dist/services/aes-gcm.js +0 -111
package/dist/services/aes-gcm.js.map +0 -1
package/dist/services/ecies/crypto-core.d.ts +0 -51
package/dist/services/ecies/crypto-core.d.ts.map +0 -1
package/dist/services/ecies/crypto-core.js +0 -139
package/dist/services/ecies/crypto-core.js.map +0 -1
package/dist/services/ecies/example.d.ts +0 -25
package/dist/services/ecies/example.d.ts.map +0 -1
package/dist/services/ecies/example.js +0 -128
package/dist/services/ecies/example.js.map +0 -1
package/dist/services/ecies/file.d.ts +0 -18
package/dist/services/ecies/file.d.ts.map +0 -1
package/dist/services/ecies/file.js +0 -110
package/dist/services/ecies/file.js.map +0 -1
package/dist/services/ecies/index.d.ts.map +0 -1
package/dist/services/ecies/index.js +0 -57
package/dist/services/ecies/index.js.map +0 -1
package/dist/services/ecies/integration.d.ts +0 -59
package/dist/services/ecies/integration.d.ts.map +0 -1
package/dist/services/ecies/integration.js +0 -172
package/dist/services/ecies/integration.js.map +0 -1
package/dist/services/ecies/interfaces.d.ts +0 -51
package/dist/services/ecies/interfaces.d.ts.map +0 -1
package/dist/services/ecies/interfaces.js +0 -6
package/dist/services/ecies/interfaces.js.map +0 -1
package/dist/services/ecies/manual-test.d.ts +0 -29
package/dist/services/ecies/manual-test.d.ts.map +0 -1
package/dist/services/ecies/manual-test.js +0 -171
package/dist/services/ecies/manual-test.js.map +0 -1
package/dist/services/ecies/multi-recipient.d.ts +0 -52
package/dist/services/ecies/multi-recipient.d.ts.map +0 -1
package/dist/services/ecies/multi-recipient.js +0 -243
package/dist/services/ecies/multi-recipient.js.map +0 -1
package/dist/services/ecies/service.d.ts +0 -104
package/dist/services/ecies/service.d.ts.map +0 -1
package/dist/services/ecies/service.js +0 -192
package/dist/services/ecies/service.js.map +0 -1
package/dist/services/ecies/signature.d.ts +0 -27
package/dist/services/ecies/signature.d.ts.map +0 -1
package/dist/services/ecies/signature.js +0 -76
package/dist/services/ecies/signature.js.map +0 -1
package/dist/services/ecies/single-recipient.d.ts +0 -46
package/dist/services/ecies/single-recipient.d.ts.map +0 -1
package/dist/services/ecies/single-recipient.js +0 -212
package/dist/services/ecies/single-recipient.js.map +0 -1
package/dist/services/index.d.ts.map +0 -1
package/dist/services/index.js +0 -22
package/dist/services/index.js.map +0 -1
package/dist/services/password-login.d.ts +0 -49
package/dist/services/password-login.d.ts.map +0 -1
package/dist/services/password-login.js +0 -121
package/dist/services/password-login.js.map +0 -1
package/dist/services/pbkdf2.d.ts +0 -56
package/dist/services/pbkdf2.d.ts.map +0 -1
package/dist/services/pbkdf2.js +0 -114
package/dist/services/pbkdf2.js.map +0 -1
package/dist/services/xor.d.ts +0 -37
package/dist/services/xor.d.ts.map +0 -1
package/dist/services/xor.js +0 -67
package/dist/services/xor.js.map +0 -1
package/dist/types/deep-partial.d.ts +0 -4
package/dist/types/deep-partial.d.ts.map +0 -1
package/dist/types/deep-partial.js +0 -3
package/dist/types/deep-partial.js.map +0 -1
package/dist/types.d.ts.map +0 -1
package/dist/types.js +0 -3
package/dist/types.js.map +0 -1
package/dist/utils.d.ts +0 -68
package/dist/utils.d.ts.map +0 -1
package/dist/utils.js +0 -288
package/dist/utils.js.map +0 -1

package/src/services/ecies/multi-recipient.ts ADDED Viewed

@@ -0,0 +1,394 @@
+import { IECIESConstants } from '../../interfaces/ecies-consts';
+import { Constants } from '../../constants';
+import { IECIESConfig } from '../../interfaces/ecies-config';
+import { concatUint8Arrays } from '../../utils';
+import { AESGCMService } from '../aes-gcm';
+import { EciesCryptoCore } from './crypto-core';
+import {
+  IMultiEncryptedMessage,
+  IMultiEncryptedParsedHeader,
+  IMultiRecipient,
+} from './interfaces';
+import { EciesComponentId, getEciesI18nEngine } from '../../i18n-setup';
+import { EciesStringKey } from '../../enumerations';
+/**
+ * Browser-compatible multi-recipient ECIES encryption/decryption
+ */
+export class EciesMultiRecipient {
+  protected readonly cryptoCore: EciesCryptoCore;
+  protected readonly eciesConsts: IECIESConstants;
+  constructor(config: IECIESConfig, eciesParams: IECIESConstants = Constants.ECIES) {
+    this.cryptoCore = new EciesCryptoCore(config, eciesParams);
+    this.eciesConsts = eciesParams;
+  }
+  /**
+   * Get the header size for multi-recipient encryption
+   */
+  public getHeaderSize(recipientCount: number): number {
+    return (
+      this.eciesConsts.MULTIPLE.DATA_LENGTH_SIZE +
+      this.eciesConsts.MULTIPLE.RECIPIENT_COUNT_SIZE +
+      recipientCount * this.eciesConsts.MULTIPLE.RECIPIENT_ID_SIZE +
+      recipientCount * this.eciesConsts.MULTIPLE.ENCRYPTED_KEY_SIZE
+    );
+  }
+  /**
+   * Encrypt a message symmetric key with a public key
+   * @param receiverPublicKey The public key of the receiver
+   * @param messageSymmetricKey The message to encrypt
+   * @returns The encrypted message
+   */
+  public async encryptKey(
+    receiverPublicKey: Uint8Array,
+    messageSymmetricKey: Uint8Array,
+  ): Promise<Uint8Array> {
+    const ephemeralKeyPair = await this.cryptoCore.generateEphemeralKeyPair();
+    const sharedSecret = await this.cryptoCore.computeSharedSecret(
+      ephemeralKeyPair.privateKey,
+      receiverPublicKey,
+    );
+    const symKey = sharedSecret.slice(0, this.eciesConsts.SYMMETRIC.KEY_SIZE);
+    const encryptResult = await AESGCMService.encrypt(
+      messageSymmetricKey,
+      symKey,
+      true,
+      this.eciesConsts
+    );
+    const { encrypted, iv } = encryptResult;
+    const authTag = encryptResult.tag;
+    if (!authTag) {
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_AuthenticationTagIsRequiredForKeyEncryption));
+    }
+    return concatUint8Arrays(
+      new Uint8Array(ephemeralKeyPair.publicKey),
+      iv,
+      authTag,
+      encrypted,
+    );
+  }
+  /**
+   * Decrypts symmetric key encrypted with ECIES
+   * @param privateKey The private key to decrypt the data
+   * @param encryptedKey The data to decrypt
+   * @returns The decrypted data buffer
+   */
+  public async decryptKey(
+    privateKey: Uint8Array,
+    encryptedKey: Uint8Array,
+  ): Promise<Uint8Array> {
+    if (encryptedKey.length !== this.eciesConsts.MULTIPLE.ENCRYPTED_KEY_SIZE) {
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(
+        EciesComponentId,
+        EciesStringKey.Error_ECIESError_InvalidEncryptedKeyLengthTemplate, {keySize: this.eciesConsts.MULTIPLE.ENCRYPTED_KEY_SIZE, encryptedKeyLength: encryptedKey.length}));
+    }
+    const ephemeralPublicKey = encryptedKey.slice(0, this.eciesConsts.PUBLIC_KEY_LENGTH);
+    const iv = encryptedKey.slice(
+      this.eciesConsts.PUBLIC_KEY_LENGTH,
+      this.eciesConsts.PUBLIC_KEY_LENGTH + this.eciesConsts.IV_SIZE,
+    );
+    const authTag = encryptedKey.slice(
+      this.eciesConsts.PUBLIC_KEY_LENGTH + this.eciesConsts.IV_SIZE,
+      this.eciesConsts.PUBLIC_KEY_LENGTH + this.eciesConsts.IV_SIZE + this.eciesConsts.AUTH_TAG_SIZE,
+    );
+    const encrypted = encryptedKey.slice(
+      this.eciesConsts.PUBLIC_KEY_LENGTH + this.eciesConsts.IV_SIZE + this.eciesConsts.AUTH_TAG_SIZE,
+    );
+    const sharedSecret = await this.cryptoCore.computeSharedSecret(
+      privateKey,
+      ephemeralPublicKey,
+    );
+    const symKey = sharedSecret.slice(0, this.eciesConsts.SYMMETRIC.KEY_SIZE);
+    const encryptedWithTag = AESGCMService.combineEncryptedDataAndTag(
+      encrypted,
+      authTag,
+    );
+    try {
+      const decrypted = await AESGCMService.decrypt(
+        iv,
+        encryptedWithTag,
+        symKey,
+        true,
+        this.eciesConsts
+      );
+      if (decrypted.length !== this.eciesConsts.SYMMETRIC.KEY_SIZE) {
+        const engine = getEciesI18nEngine();
+        throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_InvalidDataLength));
+      }
+      return decrypted;
+    } catch (error) {
+      console.error('Failed to decrypt key:', error);
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_FailedToDecryptKey));
+    }
+  }
+  /**
+   * Encrypt a message for multiple recipients
+   */
+  public async encryptMultiple(
+    recipients: IMultiRecipient[],
+    message: Uint8Array,
+    preamble: Uint8Array = new Uint8Array(0),
+  ): Promise<IMultiEncryptedMessage> {
+    const engine = getEciesI18nEngine();
+    if (recipients.length > this.eciesConsts.MULTIPLE.MAX_RECIPIENTS) {
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_TooManyRecipientsTemplate, { recipientsCount: recipients.length }));
+    }
+    if (message.length > this.eciesConsts.MAX_RAW_DATA_SIZE) {
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_MessageTooLargeTemplate, { length: message.length }));
+    }
+    // Generate symmetric key
+    const symmetricKey = crypto.getRandomValues(
+      new Uint8Array(this.eciesConsts.SYMMETRIC.KEY_SIZE),
+    );
+    // Encrypt message with symmetric key
+    const encryptResult = await AESGCMService.encrypt(
+      message,
+      symmetricKey,
+      true,
+      this.eciesConsts
+    );
+    const { encrypted, iv } = encryptResult;
+    const authTag = encryptResult.tag;
+    if (!authTag) {
+      const engine = getEciesI18nEngine();
+      throw new Error(
+        engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_AuthenticationTagIsRequiredForMultiRecipientECIESEncryption),
+      );
+    }
+    // Create stored message: preamble + iv + authTag + encrypted
+    const storedMessage = concatUint8Arrays(preamble, iv, authTag, encrypted);
+    // Encrypt symmetric key for each recipient
+    const recipientIds: Uint8Array[] = [];
+    const recipientKeys: Uint8Array[] = [];
+    for (const recipient of recipients) {
+      const encryptedKey = await this.encryptKey(
+        recipient.publicKey,
+        symmetricKey,
+      );
+      recipientIds.push(recipient.id);
+      recipientKeys.push(encryptedKey);
+    }
+    const headerSize = this.getHeaderSize(recipients.length);
+    return {
+      dataLength: message.length,
+      recipientCount: recipients.length,
+      recipientIds,
+      recipientKeys,
+      encryptedMessage: storedMessage,
+      headerSize,
+    };
+  }
+  /**
+   * Decrypt a multi-recipient message for a specific recipient
+   */
+  public async decryptMultipleForRecipient(
+    encryptedData: IMultiEncryptedMessage,
+    recipientId: Uint8Array,
+    privateKey: Uint8Array,
+  ): Promise<Uint8Array> {
+    // Find recipient's encrypted key
+    const recipientIndex = encryptedData.recipientIds.findIndex((id) =>
+      this.arraysEqual(id, recipientId),
+    );
+    if (recipientIndex === -1) {
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_RecipientNotFound));
+    }
+    const encryptedKey = encryptedData.recipientKeys[recipientIndex];
+    // Decrypt the symmetric key
+    const symmetricKey = await this.decryptKey(privateKey, encryptedKey);
+    // Extract components from encrypted message
+    let offset = 0;
+    const iv = encryptedData.encryptedMessage.slice(
+      offset,
+      offset + this.eciesConsts.IV_SIZE,
+    );
+    offset += this.eciesConsts.IV_SIZE;
+    const authTag = encryptedData.encryptedMessage.slice(
+      offset,
+      offset + this.eciesConsts.AUTH_TAG_SIZE,
+    );
+    offset += this.eciesConsts.AUTH_TAG_SIZE;
+    const encrypted = encryptedData.encryptedMessage.slice(offset);
+    // AES-GCM provides authentication via auth tag (no separate CRC needed)
+    // Decrypt with symmetric key
+    const encryptedWithTag = AESGCMService.combineEncryptedDataAndTag(
+      encrypted,
+      authTag,
+    );
+    const decrypted = await AESGCMService.decrypt(
+      iv,
+      encryptedWithTag,
+      symmetricKey,
+      true,
+      this.eciesConsts
+    );
+    // Verify length
+    if (decrypted.length !== encryptedData.dataLength) {
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_DecryptedDataLengthMismatch));
+    }
+    return decrypted;
+  }
+  /**
+   * Build header for multi-recipient message
+   */
+  public buildHeader(data: IMultiEncryptedMessage): Uint8Array {
+    if (data.recipientIds.length !== data.recipientKeys.length) {
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_RecipientCountMismatch));
+    }
+    if (data.dataLength < 0 || data.dataLength > this.eciesConsts.MAX_RAW_DATA_SIZE) {
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_InvalidDataLength));
+    }
+    // Data length (8 bytes)
+    const dataLengthUint8Array = new Uint8Array(8);
+    new DataView(dataLengthUint8Array.buffer).setBigUint64(
+      0,
+      BigInt(data.dataLength),
+      false,
+    );
+    // Recipient count (2 bytes)
+    const recipientCountUint8Array = new Uint8Array(2);
+    new DataView(recipientCountUint8Array.buffer).setUint16(
+      0,
+      data.recipientIds.length,
+      false,
+    );
+    // Recipient IDs
+    const recipientIdsUint8Array = concatUint8Arrays(...data.recipientIds);
+    // Encrypted keys
+    const encryptedKeysUint8Array = concatUint8Arrays(...data.recipientKeys);
+    return concatUint8Arrays(
+      dataLengthUint8Array,
+      recipientCountUint8Array,
+      recipientIdsUint8Array,
+      encryptedKeysUint8Array,
+    );
+  }
+  /**
+   * Parse multi-recipient header
+   */
+  public parseHeader(data: Uint8Array): IMultiEncryptedParsedHeader {
+    if (data.length < 10) {
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_DataTooShortForMultiRecipientHeader));
+      // minimum: 8 + 2
+    }
+    let offset = 0;
+    const view = new DataView(data.buffer, data.byteOffset);
+    // Read data length
+    const dataLength = Number(view.getBigUint64(offset, false));
+    offset += 8;
+    if (dataLength <= 0 || dataLength > this.eciesConsts.MAX_RAW_DATA_SIZE) {
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_InvalidDataLength));
+    }
+    // Read recipient count
+    const recipientCount = view.getUint16(offset, false);
+    offset += 2;
+    if (recipientCount <= 0 || recipientCount > this.eciesConsts.MULTIPLE.MAX_RECIPIENTS) {
+      const engine = getEciesI18nEngine();
+      throw new Error(engine.translate(EciesComponentId, EciesStringKey.Error_ECIESError_InvalidRecipientCount));
+    }
+    // Read recipient IDs
+    const recipientIds: Uint8Array[] = [];
+    for (let i = 0; i < recipientCount; i++) {
+      recipientIds.push(
+        data.slice(offset, offset + this.eciesConsts.MULTIPLE.RECIPIENT_ID_SIZE),
+      );
+      offset += this.eciesConsts.MULTIPLE.RECIPIENT_ID_SIZE;
+    }
+    // Read encrypted keys
+    const recipientKeys: Uint8Array[] = [];
+    for (let i = 0; i < recipientCount; i++) {
+      recipientKeys.push(
+        data.slice(offset, offset + this.eciesConsts.MULTIPLE.ENCRYPTED_KEY_SIZE),
+      );
+      offset += this.eciesConsts.MULTIPLE.ENCRYPTED_KEY_SIZE;
+    }
+    return {
+      dataLength,
+      recipientCount,
+      recipientIds,
+      recipientKeys,
+      headerSize: offset,
+    };
+  }
+  /**
+   * Parse complete multi-recipient message
+   */
+  public parseMessage(data: Uint8Array): IMultiEncryptedMessage {
+    const header = this.parseHeader(data);
+    const encryptedMessage = data.slice(header.headerSize);
+    return {
+      ...header,
+      encryptedMessage,
+    };
+  }
+  private arraysEqual(a: Uint8Array, b: Uint8Array): boolean {
+    if (a.length !== b.length) return false;
+    for (let i = 0; i < a.length; i++) {
+      if (a[i] !== b[i]) return false;
+    }
+    return true;
+  }
+}

package/src/services/ecies/service.ts ADDED Viewed

@@ -0,0 +1,317 @@
+import { IECIESConstants } from '../../interfaces/ecies-consts';
+import { Constants } from '../../constants';
+import {
+  EciesEncryptionType,
+  EciesEncryptionTypeEnum,
+} from '../../enumerations/ecies-encryption-type';
+import { IECIESConfig } from '../../interfaces/ecies-config';
+import { SecureString } from '../../secure-string';
+import { SignatureString, SignatureUint8Array } from '../../types';
+import { EciesCryptoCore } from './crypto-core';
+import { ISimpleKeyPair, IWalletSeed } from './interfaces';
+import { EciesSignature } from './signature';
+import { EciesSingleRecipient } from './single-recipient';
+/**
+ * Browser-compatible ECIES service that mirrors the server-side functionality
+ * Uses Web Crypto API and @scure/@noble libraries for browser compatibility
+ */
+export class ECIESService {
+  protected readonly _config: IECIESConfig;
+  protected readonly cryptoCore: EciesCryptoCore;
+  protected readonly signature: EciesSignature;
+  protected readonly singleRecipient: EciesSingleRecipient;
+  protected readonly eciesConsts: IECIESConstants;
+  constructor(config?: Partial<IECIESConfig>, eciesParams: IECIESConstants = Constants.ECIES) {
+    this.eciesConsts = eciesParams;
+    this._config = {
+      curveName: this.eciesConsts.CURVE_NAME,
+      primaryKeyDerivationPath: this.eciesConsts.PRIMARY_KEY_DERIVATION_PATH,
+      mnemonicStrength: this.eciesConsts.MNEMONIC_STRENGTH,
+      symmetricAlgorithm: this.eciesConsts.SYMMETRIC.ALGORITHM,
+      symmetricKeyBits: this.eciesConsts.SYMMETRIC.KEY_BITS,
+      symmetricKeyMode: this.eciesConsts.SYMMETRIC.MODE,
+      ...config,
+    };
+    // Initialize components
+    this.cryptoCore = new EciesCryptoCore(this._config, this.eciesConsts);
+    this.signature = new EciesSignature(this.cryptoCore);
+    this.singleRecipient = new EciesSingleRecipient(this._config);
+  }
+  public get core(): EciesCryptoCore {
+    return this.cryptoCore;
+  }
+  public get config(): IECIESConfig {
+    return this._config;
+  }
+  public get curveName(): string {
+    return this._config.curveName;
+  }
+  // === Key Management Methods ===
+  /**
+   * Generate a new mnemonic
+   */
+  public generateNewMnemonic(): SecureString {
+    return this.cryptoCore.generateNewMnemonic();
+  }
+  /**
+   * Generate wallet and seed from mnemonic
+   */
+  public walletAndSeedFromMnemonic(mnemonic: SecureString): IWalletSeed {
+    return this.cryptoCore.walletAndSeedFromMnemonic(mnemonic);
+  }
+  /**
+   * Create simple key pair from seed
+   */
+  public seedToSimpleKeyPair(seed: Uint8Array): ISimpleKeyPair {
+    return this.cryptoCore.seedToSimpleKeyPair(seed);
+  }
+  /**
+   * Create simple key pair from mnemonic
+   */
+  public mnemonicToSimpleKeyPair(mnemonic: SecureString): ISimpleKeyPair {
+    return this.cryptoCore.mnemonicToSimpleKeyPair(mnemonic);
+  }
+  /**
+   * Get public key from private key
+   */
+  public getPublicKey(privateKey: Uint8Array): Uint8Array {
+    return this.cryptoCore.getPublicKey(privateKey);
+  }
+  // === Core Encryption/Decryption Methods ===
+  /**
+   * Encrypt for single recipient (simple or single mode)
+   */
+  public async encryptSimpleOrSingle(
+    encryptSimple: boolean,
+    receiverPublicKey: Uint8Array,
+    message: Uint8Array,
+    preamble: Uint8Array = new Uint8Array(0),
+  ): Promise<Uint8Array> {
+    return this.singleRecipient.encrypt(
+      encryptSimple,
+      receiverPublicKey,
+      message,
+      preamble,
+    );
+  }
+  /**
+   * Parse single encrypted header
+   */
+  public parseSingleEncryptedHeader(
+    encryptionType: EciesEncryptionTypeEnum,
+    data: Uint8Array,
+    preambleSize: number = 0,
+    options?: { dataLength?: number },
+  ) {
+    const { header } = this.singleRecipient.parseEncryptedMessage(
+      encryptionType,
+      data,
+      preambleSize,
+      options,
+    );
+    return header;
+  }
+  /**
+   * Decrypt with header
+   */
+  public async decryptSimpleOrSingleWithHeader(
+    decryptSimple: boolean,
+    privateKey: Uint8Array,
+    encryptedData: Uint8Array,
+    preambleSize: number = 0,
+    options?: { dataLength?: number },
+  ): Promise<Uint8Array> {
+    return await this.singleRecipient.decryptWithHeader(
+      decryptSimple
+        ? EciesEncryptionTypeEnum.Simple
+        : EciesEncryptionTypeEnum.Single,
+      privateKey,
+      encryptedData,
+      preambleSize,
+      options,
+    );
+  }
+  /**
+   * Extended decrypt with header
+   */
+  public async decryptSimpleOrSingleWithHeaderEx(
+    encryptionType: EciesEncryptionTypeEnum,
+    privateKey: Uint8Array,
+    encryptedData: Uint8Array,
+    preambleSize: number = 0,
+    options?: { dataLength?: number },
+  ) {
+    return this.singleRecipient.decryptWithHeaderEx(
+      encryptionType,
+      privateKey,
+      encryptedData,
+      preambleSize,
+      options,
+    );
+  }
+  /**
+   * Decrypt with individual components
+   */
+  public async decryptSingleWithComponents(
+    privateKey: Uint8Array,
+    ephemeralPublicKey: Uint8Array,
+    iv: Uint8Array,
+    authTag: Uint8Array,
+    encrypted: Uint8Array,
+  ): Promise<{ decrypted: Uint8Array; ciphertextLength?: number }> {
+    const decrypted = await this.singleRecipient.decryptWithComponents(
+      privateKey,
+      ephemeralPublicKey,
+      iv,
+      authTag,
+      encrypted,
+    );
+    return { decrypted, ciphertextLength: encrypted.length };
+  }
+  // === Signature Methods ===
+  /**
+   * Sign a message
+   */
+  public signMessage(
+    privateKey: Uint8Array,
+    data: Uint8Array,
+  ): SignatureUint8Array {
+    return this.signature.signMessage(privateKey, data);
+  }
+  /**
+   * Verify a message signature
+   */
+  public verifyMessage(
+    publicKey: Uint8Array,
+    data: Uint8Array,
+    signature: SignatureUint8Array,
+  ): boolean {
+    return this.signature.verifyMessage(publicKey, data, signature);
+  }
+  /**
+   * Convert signature string to buffer
+   */
+  public signatureStringToSignatureUint8Array(
+    signatureString: SignatureString,
+  ): SignatureUint8Array {
+    return this.signature.signatureStringToSignatureUint8Array(signatureString);
+  }
+  /**
+   * Convert signature buffer to string
+   */
+  public signatureUint8ArrayToSignatureString(
+    signatureArray: SignatureUint8Array,
+  ): string {
+    return this.signature.signatureUint8ArrayToSignatureString(signatureArray);
+  }
+  // === Utility Methods ===
+  /**
+   * Compute encrypted length from data length
+   */
+  public computeEncryptedLengthFromDataLength(
+    dataLength: number,
+    encryptionMode: EciesEncryptionType,
+    recipientCount?: number,
+  ): number {
+    if (dataLength < 0) {
+      throw new Error('Invalid data length');
+    }
+    switch (encryptionMode) {
+      case 'simple':
+        return dataLength + this.eciesConsts.SIMPLE.FIXED_OVERHEAD_SIZE;
+      case 'single':
+        return dataLength + this.eciesConsts.SINGLE.FIXED_OVERHEAD_SIZE;
+      case 'multiple':
+        // Basic calculation for multiple recipients
+        return (
+          dataLength +
+          this.eciesConsts.MULTIPLE.FIXED_OVERHEAD_SIZE +
+          (recipientCount ?? 1) * this.eciesConsts.MULTIPLE.ENCRYPTED_KEY_SIZE
+        );
+      default:
+        throw new Error('Invalid encryption type');
+    }
+  }
+  /**
+   * Compute decrypted length from encrypted data length
+   */
+  public computeDecryptedLengthFromEncryptedDataLength(
+    encryptedDataLength: number,
+    padding?: number,
+  ): number {
+    if (encryptedDataLength < 0) {
+      throw new Error('Invalid encrypted data length');
+    }
+  const overhead = this.eciesConsts.SINGLE.FIXED_OVERHEAD_SIZE;
+    const actualPadding = padding !== undefined ? padding : 0;
+    const decryptedLength = encryptedDataLength - overhead - actualPadding;
+    if (decryptedLength < 0) {
+      throw new Error('Computed decrypted length is negative');
+    }
+    return decryptedLength;
+  }
+  /**
+   * Generic encrypt method
+   */
+  public async encrypt(
+    encryptionType: EciesEncryptionTypeEnum,
+    recipients: Array<{ publicKey: Uint8Array }>,
+    message: Uint8Array,
+    preamble?: Uint8Array,
+  ): Promise<Uint8Array> {
+    if (
+      (encryptionType === EciesEncryptionTypeEnum.Simple ||
+        EciesEncryptionTypeEnum.Single) &&
+      recipients.length === 1
+    ) {
+      return this.singleRecipient.encrypt(
+        encryptionType === EciesEncryptionTypeEnum.Simple,
+        recipients[0].publicKey,
+        message,
+        preamble,
+      );
+    } else if (
+      encryptionType === EciesEncryptionTypeEnum.Multiple &&
+      recipients.length > 1
+    ) {
+      // TODO: Implement multi-recipient encryption
+      throw new Error('Multi-recipient encryption not yet implemented');
+    } else {
+      throw new Error(
+        `Invalid encryption type or number of recipients: ${encryptionType}, ${recipients.length}`,
+      );
+    }
+  }
+}