this post was submitted on 21 Mar 2025
21 points (100.0% liked)

Programming

19076 readers
276 users here now

Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!

Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.

Hope you enjoy the instance!

Rules

Rules

  • Follow the programming.dev instance rules
  • Keep content related to programming in some way
  • If you're posting long videos try to add in some form of tldr for those who don't want to watch videos

Wormhole

Follow the wormhole through a path of communities [email protected]

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
21
Zero knowledge authentication (lemm.ee)
submitted 1 day ago by [email protected] to c/[email protected]
13 comments fedilink hide all child comments
 

Hi, [email protected]. I'm curious about zero-knowledge encryption, and I would like to use it in my CS50x final project. My goal is to authenticate users and store their encrypted data on the server so that only the users can decrypt it.

I understand the general concepts of public and private keys, as well as symmetric keys, and how to use them to protect data. However, I don't understand how to authenticate users. I have searched online for information on implementing the zero proof knowledge authentication flow, but I found either vague high-level descriptions or research papers that require a strong background in mathematics and cryptography to understand and implement.

Could you maybe suggest some resources on this topic? When your search for "how to implement jwt authentication", you can find many articles that describe the flow with code examples. I'm looking for something similar.

Or should I choose a simpler project?

you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 1 points 18 hours ago (1 children)

Thanks for your reply. The idea of zero-knowledge authentication is that the password never touches the server. Instead, the user can prove that they know the password when logging in by solving a challenge. This enables the user to log in from any new device without the need to transfer keys between them. I'll take a closer look at your suggestions though. Thanks again!

[โ€“] [email protected] 3 points 16 hours ago

All you need in order to do this is for the client to encrypt their password before sending it to the server. Often services that advertise "zero knowledge" platforms that use end-to-end encryption will authenticate their users in this way. If this were a website for example, there could be a javascript/wasm library used within the client page that encrypts their password before a login request is sent to the server.