sqrypt-cyber-sdk 0.1.0__tar.gz

sqrypt_cyber_sdk-0.1.0/PKG-INFO

@@ -0,0 +1,79 @@
+Metadata-Version: 2.4
+Name: sqrypt-cyber-sdk
+Version: 0.1.0
+Summary: Enterprise Hybrid Post-Quantum Cryptography SDK wrapping NIST FIPS-203 (ML-KEM)
+Author-email: Aryan Sujay <your.email@example.com>
+Classifier: Programming Language :: Python :: 3
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: OS Independent
+Classifier: Topic :: Security :: Cryptography
+Requires-Python: >=3.11
+Description-Content-Type: text/markdown
+Requires-Dist: requests>=2.31.0
+
+# SQrypt Post-Quantum Cybersecurity SDK 🛡️
+
+SQrypt is an enterprise-grade developer kit designed to secure high-stakes data ingestion layers against future quantum threats. It provides an optimized, drop-in abstraction layer wrapping **NIST FIPS-203 (ML-KEM)** lattice cryptography.
+
+## Key Features
+* **One-Line Implementation:** Secure runtime data routing via native Python decorators.
+* **Hybrid Defense Architecture:** Merges classical AES-256-GCM symmetric block ciphers with post-quantum asymmetric encapsulation.
+* **Zero-Knowledge Target Mutation:** Secure specific nested keys within complex JSON payloads without exposing metadata.
+
+## Installation
+```bash
+pip install sqrypt-cyber-sdk
+```
+
+## Quick Start Guide
+* **Initialize the Secure Client:** Connect the SDK to your isolated enterprise infrastructure instance by instantiating the client engine with your secret keys:
+```bash
+from sqrypt import SQryptClient
+
+client = SQryptClient(
+    server_url="[http://127.0.0.1:8500](http://127.0.0.1:8500)", 
+    api_key="YOUR_ENTERPRISE_API_KEY"
+)
+```
+
+* **Runtime Interception (Pattern A):** Protect live string streams dynamically at the functional boundary using the automatic encryption decorator:
+```bash
+@client.auto_encrypt()
+def process_runtime_transaction(user_id: str, card_data: str) -> str:
+    # Data is automatically encapsulated before network dispatch
+    return f"USER:{user_id}|RAW_CARD:{card_data}"
+
+# Executes lattice-based key encapsulation
+protected_payload = process_runtime_transaction("usr_998", "4111-2222-3333-4444")
+
+# Reclaim the plaintext string through zero-knowledge decapsulation
+recovered_string = client.decrypt(protected_payload)
+```
+
+* **Granular Field Masking (Pattern B):** To protect structural records or transactional documents before database insertion, mask target keys selectively:
+```bash
+database_document = {
+    "account_id": "acc_001",
+    "status": "active",
+    "tax_id": "999-12-3456",
+    "secret_token": "token_xyz123"
+}
+
+# Mutates specified targets into quantum-secure ciphertext bundles
+masked_document = client.protect_dict(
+    data=database_document, 
+    sensitive_keys=["tax_id", "secret_token"]
+)
+```
+
+## SECURITY SPECIFICATIONS
+SQrypt's design parameters conform strictly to the modern cryptographic primitives evaluated by the National Institute of Standards and Technology (NIST):
+| Layer / Algorithm / Standard        | Target Bit Security         | Notes / Details                  |
+|-------------------------------------|------------------------------|-----------------------------------|
+| Asymmetric Key Encapsulation        | ML-KEM-768 (FIPS 203)        | 192-bit (Quantum-Secure)          |
+| Symmetric Bulk Encryption           | AES-256-GCM                  | 256-bit (Classical/Quantum-Safe)  |
+| Key Derivation Function             | HKDF-SHA256                  | High-Entropy Expansion            |
+
+
+## License
+This SDK is distributed under the terms of the MIT License.

sqrypt_cyber_sdk-0.1.0/README.md

@@ -0,0 +1,66 @@
+# SQrypt Post-Quantum Cybersecurity SDK 🛡️
+
+SQrypt is an enterprise-grade developer kit designed to secure high-stakes data ingestion layers against future quantum threats. It provides an optimized, drop-in abstraction layer wrapping **NIST FIPS-203 (ML-KEM)** lattice cryptography.
+
+## Key Features
+* **One-Line Implementation:** Secure runtime data routing via native Python decorators.
+* **Hybrid Defense Architecture:** Merges classical AES-256-GCM symmetric block ciphers with post-quantum asymmetric encapsulation.
+* **Zero-Knowledge Target Mutation:** Secure specific nested keys within complex JSON payloads without exposing metadata.
+
+## Installation
+```bash
+pip install sqrypt-cyber-sdk
+```
+
+## Quick Start Guide
+* **Initialize the Secure Client:** Connect the SDK to your isolated enterprise infrastructure instance by instantiating the client engine with your secret keys:
+```bash
+from sqrypt import SQryptClient
+
+client = SQryptClient(
+    server_url="[http://127.0.0.1:8500](http://127.0.0.1:8500)", 
+    api_key="YOUR_ENTERPRISE_API_KEY"
+)
+```
+
+* **Runtime Interception (Pattern A):** Protect live string streams dynamically at the functional boundary using the automatic encryption decorator:
+```bash
+@client.auto_encrypt()
+def process_runtime_transaction(user_id: str, card_data: str) -> str:
+    # Data is automatically encapsulated before network dispatch
+    return f"USER:{user_id}|RAW_CARD:{card_data}"
+
+# Executes lattice-based key encapsulation
+protected_payload = process_runtime_transaction("usr_998", "4111-2222-3333-4444")
+
+# Reclaim the plaintext string through zero-knowledge decapsulation
+recovered_string = client.decrypt(protected_payload)
+```
+
+* **Granular Field Masking (Pattern B):** To protect structural records or transactional documents before database insertion, mask target keys selectively:
+```bash
+database_document = {
+    "account_id": "acc_001",
+    "status": "active",
+    "tax_id": "999-12-3456",
+    "secret_token": "token_xyz123"
+}
+
+# Mutates specified targets into quantum-secure ciphertext bundles
+masked_document = client.protect_dict(
+    data=database_document, 
+    sensitive_keys=["tax_id", "secret_token"]
+)
+```
+
+## SECURITY SPECIFICATIONS
+SQrypt's design parameters conform strictly to the modern cryptographic primitives evaluated by the National Institute of Standards and Technology (NIST):
+| Layer / Algorithm / Standard        | Target Bit Security         | Notes / Details                  |
+|-------------------------------------|------------------------------|-----------------------------------|
+| Asymmetric Key Encapsulation        | ML-KEM-768 (FIPS 203)        | 192-bit (Quantum-Secure)          |
+| Symmetric Bulk Encryption           | AES-256-GCM                  | 256-bit (Classical/Quantum-Safe)  |
+| Key Derivation Function             | HKDF-SHA256                  | High-Entropy Expansion            |
+
+
+## License
+This SDK is distributed under the terms of the MIT License.

sqrypt_cyber_sdk-0.1.0/pyproject.toml

@@ -0,0 +1,26 @@
+[build-system]
+requires = ["setuptools>=61.0.0", "wheel"]
+build-backend = "setuptools.build_meta"
+
+[project]
+name = "sqrypt-cyber-sdk"
+version = "0.1.0"
+authors = [
+    { name = "Aryan Sujay", email = "your.email@example.com" }
+]
+description = "Enterprise Hybrid Post-Quantum Cryptography SDK wrapping NIST FIPS-203 (ML-KEM)"
+readme = "README.md"
+requires-python = ">=3.11"
+classifiers = [
+    "Programming Language :: Python :: 3",
+    "License :: OSI Approved :: MIT License",
+    "Operating System :: OS Independent",
+    "Topic :: Security :: Cryptography",
+]
+dependencies = [
+    "requests>=2.31.0",
+]
+
+[tool.setuptools.packages.find]
+where = ["."]
+include = ["sqrypt*"]

sqrypt_cyber_sdk-0.1.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+

sqrypt_cyber_sdk-0.1.0/sqrypt/__init__.py

@@ -0,0 +1 @@
+from .client import SQryptClient, SQryptPayload

sqrypt_cyber_sdk-0.1.0/sqrypt/client.py

@@ -0,0 +1,118 @@
+import requests
+import base64
+import os
+from functools import wraps
+from dataclasses import dataclass, asdict
+from typing import Union, Dict, List, Callable
+from cryptography.hazmat.primitives.ciphers.aead import AESGCM
+
+@dataclass
+class SQryptPayload:
+    ciphertext: str
+    nonce: str
+    capsule: str
+
+    def to_dict(self) -> Dict[str, str]:
+        """Serializes payload into a standard JSON-compatible dictionary."""
+        return asdict(self)
+
+
+class SQryptClient:
+    def __init__(self, server_url: str, api_key: str):
+        """Initializes the SDK client with network connection pooling."""
+        self.server_url = server_url.rstrip('/')
+        self.session = requests.Session()
+        self.session.headers.update({"X-SQrypt-Key": api_key})
+
+    def encrypt(self, plaintext: Union[str, bytes]) -> SQryptPayload:
+        """Fetches a post-quantum data key and encrypts payload locally (Zero-Knowledge)."""
+        if not plaintext:
+            raise ValueError("Cannot encrypt an empty payload.")
+
+        raw_bytes = plaintext.encode('utf-8') if isinstance(plaintext, str) else plaintext
+
+        # 1. Fetch ephemeral keys from KMS backend
+        response = self.session.post(f"{self.server_url}/generate-data-key")
+        if response.status_code != 200:
+            raise RuntimeError(f"KMS Server Connection Error: {response.text}")
+            
+        key_data = response.json()
+        plain_key = base64.b64decode(key_data["plaintext_data_key"])
+        pq_capsule = key_data["encrypted_data_key"]
+        
+        # 2. Execute local AES-256-GCM encryption
+        try:
+            aesgcm = AESGCM(plain_key)
+            nonce = os.urandom(12)
+            ciphertext_bytes = aesgcm.encrypt(nonce, raw_bytes, None)
+            
+            return SQryptPayload(
+                ciphertext=base64.b64encode(ciphertext_bytes).decode('utf-8'),
+                nonce=base64.b64encode(nonce).decode('utf-8'),
+                capsule=pq_capsule
+            )
+        finally:
+            # Secure memory cleanup: wipe the raw symmetric plaintext key reference
+            del plain_key
+
+    def decrypt(self, payload: Union[SQryptPayload, Dict[str, str]]) -> str:
+        """Asks KMS server to decapsulate the PQC key, then decrypts data locally."""
+        # Dynamically normalize input type if developer passed a dictionary
+        if isinstance(payload, dict):
+            payload = SQryptPayload(
+                ciphertext=payload["ciphertext"], 
+                nonce=payload["nonce"], 
+                capsule=payload["capsule"]
+            )
+
+        # 1. Send the ML-KEM capsule to server for decryption
+        response = self.session.post(
+            f"{self.server_url}/decrypt-data-key",
+            json={"encrypted_data_key": payload.capsule}
+        )
+        if response.status_code != 200:
+            raise RuntimeError(f"Decapsulation authorization failed: {response.text}")
+            
+        unlocked_key = base64.b64decode(response.json()["plaintext_data_key"])
+        
+        # 2. Locally decrypt the ciphertext bytes using recovered key
+        try:
+            aesgcm = AESGCM(unlocked_key)
+            ciphertext_bytes = base64.b64decode(payload.ciphertext)
+            nonce_bytes = base64.b64decode(payload.nonce)
+            
+            decrypted_bytes = aesgcm.decrypt(nonce_bytes, ciphertext_bytes, None)
+            return decrypted_bytes.decode('utf-8')
+        except Exception as e:
+            raise ValueError("Decryption failed: Key mismatch or payload tampering detected.") from e
+        finally:
+            del unlocked_key
+
+    # ==========================================
+    #   DYNAMIC INTERCEPTION INTERFACES
+    # ==========================================
+
+    def auto_encrypt(self) -> Callable:
+        """
+        Function decorator to intercept data during active processing pipelines.
+        Converts function outputs to an SQryptPayload dynamically.
+        """
+        def decorator(func: Callable) -> Callable:
+            @wraps(func)
+            def wrapper(*args, **kwargs):
+                raw_output = func(*args, **kwargs)
+                return self.encrypt(raw_output)
+            return wrapper
+        return decorator
+
+    def protect_dict(self, data: Dict, sensitive_keys: List[str]) -> Dict:
+        """
+        Scans unstructured models (JSON/DB targets) and replaces specified fields 
+        with post-quantum protected dictionary schemas in-place.
+        """
+        protected_data = data.copy()
+        for key in sensitive_keys:
+            if key in protected_data and isinstance(protected_data[key], (str, bytes)):
+                payload = self.encrypt(protected_data[key])
+                protected_data[key] = payload.to_dict()
+        return protected_data

sqrypt_cyber_sdk-0.1.0/sqrypt_cyber_sdk.egg-info/PKG-INFO

@@ -0,0 +1,79 @@
+Metadata-Version: 2.4
+Name: sqrypt-cyber-sdk
+Version: 0.1.0
+Summary: Enterprise Hybrid Post-Quantum Cryptography SDK wrapping NIST FIPS-203 (ML-KEM)
+Author-email: Aryan Sujay <your.email@example.com>
+Classifier: Programming Language :: Python :: 3
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: OS Independent
+Classifier: Topic :: Security :: Cryptography
+Requires-Python: >=3.11
+Description-Content-Type: text/markdown
+Requires-Dist: requests>=2.31.0
+
+# SQrypt Post-Quantum Cybersecurity SDK 🛡️
+
+SQrypt is an enterprise-grade developer kit designed to secure high-stakes data ingestion layers against future quantum threats. It provides an optimized, drop-in abstraction layer wrapping **NIST FIPS-203 (ML-KEM)** lattice cryptography.
+
+## Key Features
+* **One-Line Implementation:** Secure runtime data routing via native Python decorators.
+* **Hybrid Defense Architecture:** Merges classical AES-256-GCM symmetric block ciphers with post-quantum asymmetric encapsulation.
+* **Zero-Knowledge Target Mutation:** Secure specific nested keys within complex JSON payloads without exposing metadata.
+
+## Installation
+```bash
+pip install sqrypt-cyber-sdk
+```
+
+## Quick Start Guide
+* **Initialize the Secure Client:** Connect the SDK to your isolated enterprise infrastructure instance by instantiating the client engine with your secret keys:
+```bash
+from sqrypt import SQryptClient
+
+client = SQryptClient(
+    server_url="[http://127.0.0.1:8500](http://127.0.0.1:8500)", 
+    api_key="YOUR_ENTERPRISE_API_KEY"
+)
+```
+
+* **Runtime Interception (Pattern A):** Protect live string streams dynamically at the functional boundary using the automatic encryption decorator:
+```bash
+@client.auto_encrypt()
+def process_runtime_transaction(user_id: str, card_data: str) -> str:
+    # Data is automatically encapsulated before network dispatch
+    return f"USER:{user_id}|RAW_CARD:{card_data}"
+
+# Executes lattice-based key encapsulation
+protected_payload = process_runtime_transaction("usr_998", "4111-2222-3333-4444")
+
+# Reclaim the plaintext string through zero-knowledge decapsulation
+recovered_string = client.decrypt(protected_payload)
+```
+
+* **Granular Field Masking (Pattern B):** To protect structural records or transactional documents before database insertion, mask target keys selectively:
+```bash
+database_document = {
+    "account_id": "acc_001",
+    "status": "active",
+    "tax_id": "999-12-3456",
+    "secret_token": "token_xyz123"
+}
+
+# Mutates specified targets into quantum-secure ciphertext bundles
+masked_document = client.protect_dict(
+    data=database_document, 
+    sensitive_keys=["tax_id", "secret_token"]
+)
+```
+
+## SECURITY SPECIFICATIONS
+SQrypt's design parameters conform strictly to the modern cryptographic primitives evaluated by the National Institute of Standards and Technology (NIST):
+| Layer / Algorithm / Standard        | Target Bit Security         | Notes / Details                  |
+|-------------------------------------|------------------------------|-----------------------------------|
+| Asymmetric Key Encapsulation        | ML-KEM-768 (FIPS 203)        | 192-bit (Quantum-Secure)          |
+| Symmetric Bulk Encryption           | AES-256-GCM                  | 256-bit (Classical/Quantum-Safe)  |
+| Key Derivation Function             | HKDF-SHA256                  | High-Entropy Expansion            |
+
+
+## License
+This SDK is distributed under the terms of the MIT License.

sqrypt_cyber_sdk-0.1.0/sqrypt_cyber_sdk.egg-info/SOURCES.txt

@@ -0,0 +1,9 @@
+README.md
+pyproject.toml
+sqrypt/__init__.py
+sqrypt/client.py
+sqrypt_cyber_sdk.egg-info/PKG-INFO
+sqrypt_cyber_sdk.egg-info/SOURCES.txt
+sqrypt_cyber_sdk.egg-info/dependency_links.txt
+sqrypt_cyber_sdk.egg-info/requires.txt
+sqrypt_cyber_sdk.egg-info/top_level.txt

sqrypt_cyber_sdk-0.1.0/sqrypt_cyber_sdk.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

sqrypt_cyber_sdk-0.1.0/sqrypt_cyber_sdk.egg-info/requires.txt

@@ -0,0 +1 @@
+requests>=2.31.0

sqrypt_cyber_sdk-0.1.0/sqrypt_cyber_sdk.egg-info/top_level.txt

@@ -0,0 +1 @@
+sqrypt