@digitaldefiance/ecies-lib 4.5.18 → 4.6.1

package/src/interfaces/voting-service.d.ts

@@ -0,0 +1,131 @@
+/**
+ * Common interface for VotingService across ecies-lib and node-ecies-lib
+ *
+ * This interface defines the shared contract that both browser (Web Crypto)
+ * and Node.js (crypto module) implementations must adhere to, ensuring
+ * consistent behavior and cross-platform compatibility.
+ */
+import type { KeyPair, PrivateKey, PublicKey } from 'paillier-bigint';
+import type { IsolatedPrivateKey } from '../isolated-private';
+import type { IsolatedPublicKey } from '../isolated-public';
+import type { PlatformBuffer } from './platform-buffer';
+/**
+ * Common interface for VotingService implementations
+ */
+export interface IVotingService {
+    /**
+     * Serialize a base Paillier public key with magic/version/keyId
+     * Format: [magic:4][version:1][keyId:32][n_length:4][n:variable]
+     *
+     * @param publicKey - Paillier public key to serialize
+     * @returns Platform-specific buffer (Uint8Array or Buffer)
+     */
+    votingPublicKeyToBuffer(publicKey: PublicKey): PlatformBuffer | Promise<PlatformBuffer>;
+    /**
+     * Deserialize a base Paillier public key from buffer
+     * Format: [magic:4][version:1][keyId:32][n_length:4][n:variable]
+     *
+     * @param buffer - Serialized public key
+     * @returns Deserialized Paillier public key
+     */
+    bufferToVotingPublicKey(buffer: PlatformBuffer): Promise<PublicKey>;
+    /**
+     * Serialize a base Paillier private key with magic/version
+     * Format: [magic:4][version:1][lambda_length:4][lambda:variable][mu_length:4][mu:variable]
+     *
+     * @param privateKey - Paillier private key to serialize
+     * @returns Platform-specific buffer (Uint8Array or Buffer)
+     */
+    votingPrivateKeyToBuffer(privateKey: PrivateKey): PlatformBuffer;
+    /**
+     * Deserialize a base Paillier private key from buffer
+     * Format: [magic:4][version:1][lambda_length:4][lambda:variable][mu_length:4][mu:variable]
+     *
+     * @param buffer - Serialized private key
+     * @param publicKey - Corresponding public key
+     * @returns Deserialized Paillier private key
+     */
+    bufferToVotingPrivateKey(buffer: PlatformBuffer, publicKey: PublicKey): Promise<PrivateKey>;
+    /**
+     * Serialize an IsolatedPublicKey with magic/version/keyId/instanceId
+     * Format: [magic:4][version:1][keyId:32][instanceId:32][n_length:4][n:variable]
+     *
+     * @param publicKey - Isolated public key to serialize
+     * @returns Platform-specific buffer (Uint8Array or Buffer)
+     */
+    isolatedPublicKeyToBuffer(publicKey: IsolatedPublicKey): PlatformBuffer;
+    /**
+     * Deserialize an IsolatedPublicKey from buffer
+     * Format: [magic:4][version:1][keyId:32][instanceId:32][n_length:4][n:variable]
+     *
+     * @param buffer - Serialized isolated public key
+     * @returns Deserialized IsolatedPublicKey
+     */
+    bufferToIsolatedPublicKey(buffer: PlatformBuffer): Promise<IsolatedPublicKey>;
+    /**
+     * Serialize an IsolatedPrivateKey
+     * Uses same format as base private key
+     *
+     * @param privateKey - Isolated private key to serialize
+     * @returns Platform-specific buffer (Uint8Array or Buffer)
+     */
+    isolatedPrivateKeyToBuffer(privateKey: IsolatedPrivateKey): PlatformBuffer;
+    /**
+     * Deserialize an IsolatedPrivateKey from buffer
+     *
+     * @param buffer - Serialized isolated private key
+     * @param publicKey - Corresponding IsolatedPublicKey
+     * @returns Deserialized IsolatedPrivateKey
+     */
+    bufferToIsolatedPrivateKey(buffer: PlatformBuffer, publicKey: IsolatedPublicKey): Promise<IsolatedPrivateKey>;
+    /**
+     * Derive Paillier voting keys from ECDH key pair
+     *
+     * SECURITY: This is the proper way to generate voting keys - they must be
+     * derived from ECDH keys to bind them to user identity.
+     *
+     * @param ecdhPrivateKey - ECDH private key
+     * @param ecdhPublicKey - ECDH public key
+     * @param options - Optional derivation parameters
+     * @returns Paillier key pair
+     */
+    deriveVotingKeysFromECDH(ecdhPrivateKey: PlatformBuffer, ecdhPublicKey: PlatformBuffer, options?: Record<string, unknown>): Promise<KeyPair>;
+    /**
+     * Generate deterministic Paillier key pair from seed
+     *
+     * WARNING: For testing only! Production voting keys MUST be derived from
+     * ECDH keys using deriveVotingKeysFromECDH().
+     *
+     * @param seed - Random seed for deterministic generation
+     * @param bitLength - Key bit length (default: 3072)
+     * @param iterations - Prime test iterations (default: 256)
+     * @returns Paillier key pair
+     */
+    generateDeterministicKeyPair(seed: PlatformBuffer, bitLength?: number, iterations?: number): Promise<KeyPair>;
+}
+/**
+ * Extended interface for IsolatedPublicKey with async methods
+ * These are the actual methods used by the voting service implementations
+ */
+export interface IIsolatedPublicKeyAsync {
+    readonly keyId: PlatformBuffer;
+    getKeyId(): PlatformBuffer;
+    getInstanceId(): PlatformBuffer;
+    updateInstanceId(): Promise<void>;
+    verifyKeyIdAsync(): Promise<void>;
+    encryptAsync(m: bigint): Promise<bigint>;
+    multiplyAsync(ciphertext: bigint, constant: bigint): Promise<bigint>;
+    additionAsync(a: bigint, b: bigint): Promise<bigint>;
+    extractInstanceId(ciphertext: bigint): Promise<PlatformBuffer>;
+}
+/**
+ * Extended interface for IsolatedPrivateKey with async methods
+ * These are the actual methods used by the voting service implementations
+ */
+export interface IIsolatedPrivateKeyAsync {
+    decryptAsync(taggedCiphertext: bigint): Promise<bigint>;
+    getOriginalKeyId(): PlatformBuffer;
+    getOriginalInstanceId(): PlatformBuffer;
+    getOriginalPublicKey(): IIsolatedPublicKeyAsync;
+}
+//# sourceMappingURL=voting-service.d.ts.map

package/src/interfaces/voting-service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"voting-service.d.ts","sourceRoot":"","sources":["../../../../../packages/digitaldefiance-ecies-lib/src/interfaces/voting-service.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACtE,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAC9D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAC5D,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAExD;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B;;;;;;OAMG;IACH,uBAAuB,CACrB,SAAS,EAAE,SAAS,GACnB,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC,CAAC;IAE5C;;;;;;OAMG;IACH,uBAAuB,CAAC,MAAM,EAAE,cAAc,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IAEpE;;;;;;OAMG;IACH,wBAAwB,CAAC,UAAU,EAAE,UAAU,GAAG,cAAc,CAAC;IAEjE;;;;;;;OAOG;IACH,wBAAwB,CACtB,MAAM,EAAE,cAAc,EACtB,SAAS,EAAE,SAAS,GACnB,OAAO,CAAC,UAAU,CAAC,CAAC;IAEvB;;;;;;OAMG;IACH,yBAAyB,CAAC,SAAS,EAAE,iBAAiB,GAAG,cAAc,CAAC;IAExE;;;;;;OAMG;IACH,yBAAyB,CAAC,MAAM,EAAE,cAAc,GAAG,OAAO,CAAC,iBAAiB,CAAC,CAAC;IAE9E;;;;;;OAMG;IACH,0BAA0B,CAAC,UAAU,EAAE,kBAAkB,GAAG,cAAc,CAAC;IAE3E;;;;;;OAMG;IACH,0BAA0B,CACxB,MAAM,EAAE,cAAc,EACtB,SAAS,EAAE,iBAAiB,GAC3B,OAAO,CAAC,kBAAkB,CAAC,CAAC;IAE/B;;;;;;;;;;OAUG;IACH,wBAAwB,CACtB,cAAc,EAAE,cAAc,EAC9B,aAAa,EAAE,cAAc,EAC7B,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAChC,OAAO,CAAC,OAAO,CAAC,CAAC;IAEpB;;;;;;;;;;OAUG;IACH,4BAA4B,CAC1B,IAAI,EAAE,cAAc,EACpB,SAAS,CAAC,EAAE,MAAM,EAClB,UAAU,CAAC,EAAE,MAAM,GAClB,OAAO,CAAC,OAAO,CAAC,CAAC;CACrB;AAED;;;GAGG;AACH,MAAM,WAAW,uBAAuB;IACtC,QAAQ,CAAC,KAAK,EAAE,cAAc,CAAC;IAC/B,QAAQ,IAAI,cAAc,CAAC;IAC3B,aAAa,IAAI,cAAc,CAAC;IAChC,gBAAgB,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAClC,gBAAgB,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAClC,YAAY,CAAC,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACzC,aAAa,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACrE,aAAa,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACrD,iBAAiB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC,CAAC;CAChE;AAED;;;GAGG;AACH,MAAM,WAAW,wBAAwB;IACvC,YAAY,CAAC,gBAAgB,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACxD,gBAAgB,IAAI,cAAc,CAAC;IACnC,qBAAqB,IAAI,cAAc,CAAC;IACxC,oBAAoB,IAAI,uBAAuB,CAAC;CACjD"}

package/src/interfaces/voting-service.js

@@ -0,0 +1,10 @@
+"use strict";
+/**
+ * Common interface for VotingService across ecies-lib and node-ecies-lib
+ *
+ * This interface defines the shared contract that both browser (Web Crypto)
+ * and Node.js (crypto module) implementations must adhere to, ensuring
+ * consistent behavior and cross-platform compatibility.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=voting-service.js.map

package/src/interfaces/voting-service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"voting-service.js","sourceRoot":"","sources":["../../../../../packages/digitaldefiance-ecies-lib/src/interfaces/voting-service.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG"}

package/src/isolated-private.d.ts

@@ -0,0 +1,67 @@
+import { PrivateKey } from 'paillier-bigint';
+import { IIsolatedPrivateKey } from './interfaces/isolated-keys';
+import { IsolatedPublicKey } from './isolated-public';
+/**
+ * IsolatedPrivateKey extends Paillier PrivateKey with instance isolation validation.
+ *
+ * This class ensures that:
+ * - Decryption only works with ciphertexts encrypted by the matching IsolatedPublicKey instance
+ * - Instance ID verification prevents cross-instance decryption attacks
+ * - HMAC validation ensures ciphertext integrity
+ *
+ * The private key stores the original keyId and instanceId from construction time,
+ * and validates them before any decryption operation.
+ */
+export declare class IsolatedPrivateKey extends PrivateKey implements IIsolatedPrivateKey<Uint8Array, 'async'> {
+    /**
+     * Original keyId from the IsolatedPublicKey at construction time
+     */
+    private readonly _originalKeyId;
+    /**
+     * Original instanceId from the IsolatedPublicKey at construction time
+     */
+    private readonly _originalInstanceId;
+    /**
+     * Reference to the original IsolatedPublicKey
+     */
+    private readonly _originalPublicKey;
+    constructor(lambda: bigint, mu: bigint, publicKey: IsolatedPublicKey);
+    /**
+     * Converts hex string to Uint8Array
+     */
+    private hexToUint8Array;
+    /**
+     * Converts Uint8Array to hex string
+     */
+    private uint8ArrayToHex;
+    /**
+     * Compares two Uint8Arrays for equality
+     */
+    private uint8ArrayEquals;
+    /**
+     * Decrypts a tagged ciphertext after validating instance ID and HMAC
+     */
+    decryptAsync(taggedCiphertext: bigint): Promise<bigint>;
+    /**
+     * Synchronous decrypt override (throws error - use decryptAsync instead)
+     */
+    decrypt(_taggedCiphertext: bigint): bigint;
+    /**
+     * Gets a copy of the original keyId
+     */
+    getOriginalKeyId(): Uint8Array;
+    /**
+     * Gets a copy of the original instanceId
+     */
+    getOriginalInstanceId(): Uint8Array;
+    /**
+     * Gets the original public key reference
+     */
+    getOriginalPublicKey(): IsolatedPublicKey;
+    /**
+     * Decrypts a tagged ciphertext after validating instance ID and HMAC
+     * Implements both sync and async interfaces
+     */
+    decryptIsolated(taggedCiphertext: bigint): Promise<bigint>;
+}
+//# sourceMappingURL=isolated-private.d.ts.map

package/src/isolated-private.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"isolated-private.d.ts","sourceRoot":"","sources":["../../../../packages/digitaldefiance-ecies-lib/src/isolated-private.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAa,MAAM,iBAAiB,CAAC;AAIxD,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACjE,OAAO,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAC;AAEtD;;;;;;;;;;GAUG;AACH,qBAAa,kBACX,SAAQ,UACR,YAAW,mBAAmB,CAAC,UAAU,EAAE,OAAO,CAAC;IAEnD;;OAEG;IACH,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAa;IAE5C;;OAEG;IACH,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAa;IAEjD;;OAEG;IACH,OAAO,CAAC,QAAQ,CAAC,kBAAkB,CAAoB;gBAE3C,MAAM,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,iBAAiB;IAepE;;OAEG;IACH,OAAO,CAAC,eAAe;IAWvB;;OAEG;IACH,OAAO,CAAC,eAAe;IAMvB;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAQxB;;OAEG;IACU,YAAY,CAAC,gBAAgB,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAiEpE;;OAEG;IACM,OAAO,CAAC,iBAAiB,EAAE,MAAM,GAAG,MAAM;IAInD;;OAEG;IACI,gBAAgB,IAAI,UAAU;IAIrC;;OAEG;IACI,qBAAqB,IAAI,UAAU;IAI1C;;OAEG;IACI,oBAAoB,IAAI,iBAAiB;IAIhD;;;OAGG;IACI,eAAe,CAAC,gBAAgB,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;CAGlE"}

package/src/isolated-private.js

@@ -0,0 +1,155 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.IsolatedPrivateKey = void 0;
+const paillier_bigint_1 = require("paillier-bigint");
+const constants_1 = require("./constants");
+const voting_error_type_1 = require("./enumerations/voting-error-type");
+const voting_1 = require("./errors/voting");
+const isolated_public_1 = require("./isolated-public");
+/**
+ * IsolatedPrivateKey extends Paillier PrivateKey with instance isolation validation.
+ *
+ * This class ensures that:
+ * - Decryption only works with ciphertexts encrypted by the matching IsolatedPublicKey instance
+ * - Instance ID verification prevents cross-instance decryption attacks
+ * - HMAC validation ensures ciphertext integrity
+ *
+ * The private key stores the original keyId and instanceId from construction time,
+ * and validates them before any decryption operation.
+ */
+class IsolatedPrivateKey extends paillier_bigint_1.PrivateKey {
+    /**
+     * Original keyId from the IsolatedPublicKey at construction time
+     */
+    _originalKeyId;
+    /**
+     * Original instanceId from the IsolatedPublicKey at construction time
+     */
+    _originalInstanceId;
+    /**
+     * Reference to the original IsolatedPublicKey
+     */
+    _originalPublicKey;
+    constructor(lambda, mu, publicKey) {
+        if (!isolated_public_1.IsolatedPublicKey.isIsolatedPublicKey(publicKey)) {
+            throw new voting_1.VotingError(voting_error_type_1.VotingErrorType.InvalidPublicKeyFormat);
+        }
+        // Create a base PublicKey instance for the parent constructor
+        const basePublicKey = new paillier_bigint_1.PublicKey(publicKey.n, publicKey.g);
+        super(lambda, mu, basePublicKey);
+        // Store the isolated public key for our own use
+        this._originalKeyId = publicKey.getKeyId();
+        this._originalInstanceId = publicKey.getInstanceId();
+        this._originalPublicKey = publicKey;
+    }
+    /**
+     * Converts hex string to Uint8Array
+     */
+    hexToUint8Array(hex) {
+        if (hex.length % 2 !== 0) {
+            hex = '0' + hex;
+        }
+        const bytes = new Uint8Array(hex.length / 2);
+        for (let i = 0; i < hex.length; i += 2) {
+            bytes[i / 2] = parseInt(hex.substr(i, 2), 16);
+        }
+        return bytes;
+    }
+    /**
+     * Converts Uint8Array to hex string
+     */
+    uint8ArrayToHex(bytes) {
+        return Array.from(bytes)
+            .map((b) => b.toString(16).padStart(2, '0'))
+            .join('');
+    }
+    /**
+     * Compares two Uint8Arrays for equality
+     */
+    uint8ArrayEquals(a, b) {
+        if (a.length !== b.length)
+            return false;
+        for (let i = 0; i < a.length; i++) {
+            if (a[i] !== b[i])
+                return false;
+        }
+        return true;
+    }
+    /**
+     * Decrypts a tagged ciphertext after validating instance ID and HMAC
+     */
+    async decryptAsync(taggedCiphertext) {
+        // First verify if we're using a recovered key by checking the public key instance
+        if (!isolated_public_1.IsolatedPublicKey.isIsolatedPublicKey(this._originalPublicKey)) {
+            throw new voting_1.VotingError(voting_error_type_1.VotingErrorType.InvalidPublicKeyFormat);
+        }
+        // Compare instance IDs before any ciphertext operations
+        const currentInstanceId = this._originalPublicKey.getInstanceId();
+        // This check must happen before any ciphertext operations
+        if (!this.uint8ArrayEquals(currentInstanceId, this._originalInstanceId)) {
+            throw new voting_1.VotingError(voting_error_type_1.VotingErrorType.InstanceIdMismatch);
+        }
+        // Now that we've verified the instance ID, we can proceed with ciphertext operations
+        try {
+            const hmacLength = 64;
+            const ciphertextString = taggedCiphertext.toString(constants_1.VOTING.KEY_RADIX);
+            const receivedHmac = ciphertextString.slice(-hmacLength);
+            const ciphertextHex = ciphertextString.slice(0, -hmacLength);
+            const ciphertextBigInt = BigInt(`0x${ciphertextHex}`);
+            // Create HMAC key from originalKeyId + originalInstanceId
+            const hmacKeyMaterial = new Uint8Array(this._originalKeyId.length + this._originalInstanceId.length);
+            hmacKeyMaterial.set(this._originalKeyId, 0);
+            hmacKeyMaterial.set(this._originalInstanceId, this._originalKeyId.length);
+            const hmacKey = await crypto.subtle.importKey('raw', hmacKeyMaterial, { name: 'HMAC', hash: 'SHA-256' }, false, ['sign']);
+            // Calculate expected HMAC
+            const ciphertextBytes = new TextEncoder().encode(ciphertextBigInt.toString(constants_1.VOTING.KEY_RADIX));
+            const signature = await crypto.subtle.sign('HMAC', hmacKey, ciphertextBytes);
+            const expectedHmac = this.uint8ArrayToHex(new Uint8Array(signature));
+            // Verify HMAC
+            if (receivedHmac !== expectedHmac) {
+                throw new voting_1.VotingError(voting_error_type_1.VotingErrorType.InvalidCiphertextHmac);
+            }
+            // Finally decrypt the ciphertext using the parent class implementation
+            return super.decrypt(ciphertextBigInt);
+        }
+        catch (error) {
+            if (error instanceof voting_1.VotingError) {
+                throw error;
+            }
+            throw new voting_1.VotingError(voting_error_type_1.VotingErrorType.InvalidPrivateKeyBufferFailedToParse);
+        }
+    }
+    /**
+     * Synchronous decrypt override (throws error - use decryptAsync instead)
+     */
+    decrypt(_taggedCiphertext) {
+        throw new voting_1.VotingError(voting_error_type_1.VotingErrorType.KeyPairValidationFailed);
+    }
+    /**
+     * Gets a copy of the original keyId
+     */
+    getOriginalKeyId() {
+        return new Uint8Array(this._originalKeyId);
+    }
+    /**
+     * Gets a copy of the original instanceId
+     */
+    getOriginalInstanceId() {
+        return new Uint8Array(this._originalInstanceId);
+    }
+    /**
+     * Gets the original public key reference
+     */
+    getOriginalPublicKey() {
+        return this._originalPublicKey;
+    }
+    /**
+     * Decrypts a tagged ciphertext after validating instance ID and HMAC
+     * Implements both sync and async interfaces
+     */
+    decryptIsolated(taggedCiphertext) {
+        return this.decryptAsync(taggedCiphertext);
+    }
+}
+exports.IsolatedPrivateKey = IsolatedPrivateKey;
+//# sourceMappingURL=isolated-private.js.map

package/src/isolated-private.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"isolated-private.js","sourceRoot":"","sources":["../../../../packages/digitaldefiance-ecies-lib/src/isolated-private.ts"],"names":[],"mappings":";;;AAAA,qDAAwD;AACxD,2CAAqC;AACrC,wEAAmE;AACnE,4CAA8C;AAE9C,uDAAsD;AAEtD;;;;;;;;;;GAUG;AACH,MAAa,kBACX,SAAQ,4BAAU;IAGlB;;OAEG;IACc,cAAc,CAAa;IAE5C;;OAEG;IACc,mBAAmB,CAAa;IAEjD;;OAEG;IACc,kBAAkB,CAAoB;IAEvD,YAAY,MAAc,EAAE,EAAU,EAAE,SAA4B;QAClE,IAAI,CAAC,mCAAiB,CAAC,mBAAmB,CAAC,SAAS,CAAC,EAAE,CAAC;YACtD,MAAM,IAAI,oBAAW,CAAC,mCAAe,CAAC,sBAAsB,CAAC,CAAC;QAChE,CAAC;QAED,8DAA8D;QAC9D,MAAM,aAAa,GAAG,IAAI,2BAAS,CAAC,SAAS,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC,CAAC,CAAC;QAC9D,KAAK,CAAC,MAAM,EAAE,EAAE,EAAE,aAAa,CAAC,CAAC;QAEjC,gDAAgD;QAChD,IAAI,CAAC,cAAc,GAAG,SAAS,CAAC,QAAQ,EAAE,CAAC;QAC3C,IAAI,CAAC,mBAAmB,GAAG,SAAS,CAAC,aAAa,EAAE,CAAC;QACrD,IAAI,CAAC,kBAAkB,GAAG,SAAS,CAAC;IACtC,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,GAAW;QACjC,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YACzB,GAAG,GAAG,GAAG,GAAG,GAAG,CAAC;QAClB,CAAC;QACD,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QAC7C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;YACvC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAChD,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,KAAiB;QACvC,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC;aACrB,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;aAC3C,IAAI,CAAC,EAAE,CAAC,CAAC;IACd,CAAC;IAED;;OAEG;IACK,gBAAgB,CAAC,CAAa,EAAE,CAAa;QACnD,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM;YAAE,OAAO,KAAK,CAAC;QACxC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAClC,IAAI,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAAE,OAAO,KAAK,CAAC;QAClC,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,YAAY,CAAC,gBAAwB;QAChD,kFAAkF;QAClF,IAAI,CAAC,mCAAiB,CAAC,mBAAmB,CAAC,IAAI,CAAC,kBAAkB,CAAC,EAAE,CAAC;YACpE,MAAM,IAAI,oBAAW,CAAC,mCAAe,CAAC,sBAAsB,CAAC,CAAC;QAChE,CAAC;QAED,wDAAwD;QACxD,MAAM,iBAAiB,GAAG,IAAI,CAAC,kBAAkB,CAAC,aAAa,EAAE,CAAC;QAElE,0DAA0D;QAC1D,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,iBAAiB,EAAE,IAAI,CAAC,mBAAmB,CAAC,EAAE,CAAC;YACxE,MAAM,IAAI,oBAAW,CAAC,mCAAe,CAAC,kBAAkB,CAAC,CAAC;QAC5D,CAAC;QAED,qFAAqF;QACrF,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,EAAE,CAAC;YACtB,MAAM,gBAAgB,GAAG,gBAAgB,CAAC,QAAQ,CAAC,kBAAM,CAAC,SAAS,CAAC,CAAC;YACrE,MAAM,YAAY,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC,UAAU,CAAC,CAAC;YACzD,MAAM,aAAa,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,UAAU,CAAC,CAAC;YAC7D,MAAM,gBAAgB,GAAG,MAAM,CAAC,KAAK,aAAa,EAAE,CAAC,CAAC;YAEtD,0DAA0D;YAC1D,MAAM,eAAe,GAAG,IAAI,UAAU,CACpC,IAAI,CAAC,cAAc,CAAC,MAAM,GAAG,IAAI,CAAC,mBAAmB,CAAC,MAAM,CAC7D,CAAC;YACF,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC;YAC5C,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,mBAAmB,EAAE,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC;YAE1E,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAC3C,KAAK,EACL,eAAe,EACf,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,EACjC,KAAK,EACL,CAAC,MAAM,CAAC,CACT,CAAC;YAEF,0BAA0B;YAC1B,MAAM,eAAe,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAC9C,gBAAgB,CAAC,QAAQ,CAAC,kBAAM,CAAC,SAAS,CAAC,CAC5C,CAAC;YACF,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,IAAI,CACxC,MAAM,EACN,OAAO,EACP,eAAe,CAChB,CAAC;YACF,MAAM,YAAY,GAAG,IAAI,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC;YAErE,cAAc;YACd,IAAI,YAAY,KAAK,YAAY,EAAE,CAAC;gBAClC,MAAM,IAAI,oBAAW,CAAC,mCAAe,CAAC,qBAAqB,CAAC,CAAC;YAC/D,CAAC;YAED,uEAAuE;YACvE,OAAO,KAAK,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC;QACzC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,oBAAW,EAAE,CAAC;gBACjC,MAAM,KAAK,CAAC;YACd,CAAC;YACD,MAAM,IAAI,oBAAW,CACnB,mCAAe,CAAC,oCAAoC,CACrD,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACM,OAAO,CAAC,iBAAyB;QACxC,MAAM,IAAI,oBAAW,CAAC,mCAAe,CAAC,uBAAuB,CAAC,CAAC;IACjE,CAAC;IAED;;OAEG;IACI,gBAAgB;QACrB,OAAO,IAAI,UAAU,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;IAC7C,CAAC;IAED;;OAEG;IACI,qBAAqB;QAC1B,OAAO,IAAI,UAAU,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;IAClD,CAAC;IAED;;OAEG;IACI,oBAAoB;QACzB,OAAO,IAAI,CAAC,kBAAkB,CAAC;IACjC,CAAC;IAED;;;OAGG;IACI,eAAe,CAAC,gBAAwB;QAC7C,OAAO,IAAI,CAAC,YAAY,CAAC,gBAAgB,CAAC,CAAC;IAC7C,CAAC;CACF;AA3KD,gDA2KC"}

package/src/isolated-public.d.ts

@@ -0,0 +1,138 @@
+import { PublicKey } from 'paillier-bigint';
+import { IIsolatedPublicKey } from './interfaces/isolated-keys';
+/**
+ * IsolatedPublicKey extends Paillier PublicKey with instance isolation capabilities.
+ *
+ * This class provides:
+ * - keyId: A deterministic SHA-256 hash of the public key 'n' value for verification
+ * - instanceId: A unique identifier per key instance to prevent cross-instance operations
+ * - HMAC-tagged ciphertexts that bind encrypted values to a specific key instance
+ *
+ * Instance isolation ensures that ciphertexts encrypted with one instance cannot be
+ * used with another instance, even if they share the same underlying key material.
+ * This is critical for voting systems where ballot tampering must be prevented.
+ */
+export declare class IsolatedPublicKey extends PublicKey implements IIsolatedPublicKey<Uint8Array, 'async'> {
+    /**
+     * Type guard to check if a PublicKey is an IsolatedPublicKey
+     */
+    static isIsolatedPublicKey(key: PublicKey): key is IsolatedPublicKey;
+    /**
+     * Deterministic identifier derived from the public key (SHA-256 of 'n')
+     */
+    readonly keyId: Uint8Array;
+    /**
+     * Original instance ID generated at construction time
+     */
+    private readonly _originalInstanceId;
+    /**
+     * Current instance ID (can be updated via updateInstanceId())
+     */
+    private _currentInstanceId;
+    /**
+     * Unique salt used for instance ID generation
+     */
+    private readonly uniqueInstanceSalt;
+    /**
+     * Updates the current instance ID to a new random value.
+     * This invalidates all previously encrypted ciphertexts.
+     */
+    updateInstanceId(): Promise<void>;
+    /**
+     * Generates a deterministic instance ID from keyId, n, and a unique salt
+     */
+    private generateInstanceId;
+    /**
+     * Async SHA-256 hash using Web Crypto API
+     */
+    private sha256Async;
+    /**
+     * Converts hex string to Uint8Array
+     */
+    private hexToUint8Array;
+    /**
+     * Converts Uint8Array to hex string
+     */
+    private uint8ArrayToHex;
+    constructor(n: bigint, g: bigint, keyId: Uint8Array);
+    /**
+     * Static factory method to create IsolatedPublicKey asynchronously
+     */
+    static create(n: bigint, g: bigint, keyId: Uint8Array): Promise<IsolatedPublicKey>;
+    /**
+     * Static factory method to create IsolatedPublicKey from deserialized data
+     * Used when reconstructing a key from a buffer with a stored instanceId
+     */
+    static fromBuffer(n: bigint, g: bigint, keyId: Uint8Array, instanceId: Uint8Array): IsolatedPublicKey;
+    /**
+     * Returns a copy of the keyId
+     */
+    getKeyId(): Uint8Array;
+    /**
+     * Returns a copy of the current instance ID
+     */
+    getInstanceId(): Uint8Array;
+    /**
+     * Tags a ciphertext with an HMAC using keyId + instanceId
+     * Returns a new bigint with the HMAC appended
+     */
+    private tagCiphertext;
+    /**
+     * Extracts and validates the instance ID from a tagged ciphertext
+     * Returns the instance ID if valid, or zero-filled array if invalid
+     */
+    extractInstanceId(ciphertext: bigint): Promise<Uint8Array>;
+    /**
+     * Encrypts a message and tags it with instance HMAC
+     */
+    encryptAsync(m: bigint): Promise<bigint>;
+    /**
+     * Synchronous encrypt override (throws error - use encryptAsync instead)
+     */
+    encrypt(_m: bigint): bigint;
+    /**
+     * Multiplies a ciphertext by a constant, preserving instance HMAC
+     */
+    multiplyAsync(ciphertext: bigint, constant: bigint): Promise<bigint>;
+    /**
+     * Synchronous multiply override (throws error - use multiplyAsync instead)
+     */
+    multiply(_ciphertext: bigint, _constant: bigint): bigint;
+    /**
+     * Adds two ciphertexts, preserving instance HMAC
+     */
+    additionAsync(a: bigint, b: bigint): Promise<bigint>;
+    /**
+     * Synchronous addition override (throws error - use additionAsync instead)
+     */
+    addition(_a: bigint, _b: bigint): bigint;
+    /**
+     * Verifies that the keyId matches the SHA-256 hash of the public key 'n'
+     */
+    verifyKeyIdAsync(): Promise<void>;
+    /**
+     * Compares two Uint8Arrays for equality
+     */
+    private uint8ArrayEquals;
+    /**
+     * Encrypts a message and tags it with instance HMAC
+     * Implements both sync and async interfaces
+     */
+    encryptIsolated(m: bigint): Promise<bigint>;
+    /**
+     * Multiplies a ciphertext by a constant, preserving instance HMAC
+     * Implements both sync and async interfaces
+     */
+    multiplyIsolated(ciphertext: bigint, constant: bigint): Promise<bigint>;
+    /**
+     * Adds two ciphertexts, preserving instance HMAC
+     * Implements both sync and async interfaces
+     */
+    additionIsolated(a: bigint, b: bigint): Promise<bigint>;
+    /**
+     * Verifies that the keyId matches the SHA-256 hash of the public key 'n'
+     * Sync version for interface compatibility
+     */
+    verifyKeyId(): void;
+}
+//# sourceMappingURL=isolated-public.d.ts.map

package/src/isolated-public.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"isolated-public.d.ts","sourceRoot":"","sources":["../../../../packages/digitaldefiance-ecies-lib/src/isolated-public.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAI5C,OAAO,EAAE,kBAAkB,EAAE,MAAM,4BAA4B,CAAC;AAEhE;;;;;;;;;;;GAWG;AACH,qBAAa,iBACX,SAAQ,SACR,YAAW,kBAAkB,CAAC,UAAU,EAAE,OAAO,CAAC;IAElD;;OAEG;WACW,mBAAmB,CAAC,GAAG,EAAE,SAAS,GAAG,GAAG,IAAI,iBAAiB;IAI3E;;OAEG;IACH,SAAgB,KAAK,EAAE,UAAU,CAAC;IAElC;;OAEG;IACH,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAa;IAEjD;;OAEG;IACH,OAAO,CAAC,kBAAkB,CAAa;IAEvC;;OAEG;IACH,OAAO,CAAC,QAAQ,CAAC,kBAAkB,CAAa;IAEhD;;;OAGG;IACU,gBAAgB,IAAI,OAAO,CAAC,IAAI,CAAC;IAU9C;;OAEG;YACW,kBAAkB;IAuBhC;;OAEG;YACW,WAAW;IAKzB;;OAEG;IACH,OAAO,CAAC,eAAe;IAWvB;;OAEG;IACH,OAAO,CAAC,eAAe;gBAMX,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,UAAU;IAiBnD;;OAEG;WACiB,MAAM,CACxB,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,KAAK,EAAE,UAAU,GAChB,OAAO,CAAC,iBAAiB,CAAC;IA4C7B;;;OAGG;WACW,UAAU,CACtB,CAAC,EAAE,MAAM,EACT,CAAC,EAAE,MAAM,EACT,KAAK,EAAE,UAAU,EACjB,UAAU,EAAE,UAAU,GACrB,iBAAiB;IA8BpB;;OAEG;IACI,QAAQ,IAAI,UAAU;IAI7B;;OAEG;IACI,aAAa,IAAI,UAAU;IAIlC;;;OAGG;YACW,aAAa;IAoC3B;;;OAGG;IACU,iBAAiB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;IA4CvE;;OAEG;IACU,YAAY,CAAC,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMrD;;OAEG;IACM,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,MAAM;IAIpC;;OAEG;IACU,aAAa,CACxB,UAAU,EAAE,MAAM,EAClB,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,MAAM,CAAC;IAmBlB;;OAEG;IACM,QAAQ,CAAC,WAAW,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM;IAIjE;;OAEG;IACU,aAAa,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAuBjE;;OAEG;IACM,QAAQ,CAAC,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,GAAG,MAAM;IAIjD;;OAEG;IACU,gBAAgB,IAAI,OAAO,CAAC,IAAI,CAAC;IAc9C;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAQxB;;;OAGG;IACI,eAAe,CAAC,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAIlD;;;OAGG;IACI,gBAAgB,CACrB,UAAU,EAAE,MAAM,EAClB,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,MAAM,CAAC;IAIlB;;;OAGG;IACI,gBAAgB,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAI9D;;;OAGG;IACI,WAAW,IAAI,IAAI;CAG3B"}