thePR0M3TH3AN/seedPass
1
0
Fork 0
mirror of https://github.com/PR0M3TH3AN/SeedPass.git synced 2025-09-07 14:58:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
alpha
seedPass/docs/security.md
thePR0M3TH3AN edcf2787ee Add Argon2 calibration and encryption fuzz tests
2025-08-06 09:58:44 -04:00

940 B
Raw Permalink Blame History

Security Testing and Calibration

This project includes fuzz tests and a calibration routine to tune Argon2 parameters for your hardware.

Running Fuzz Tests

The fuzz tests exercise encryption and decryption with random data using Hypothesis. Activate the project's virtual environment and run:

pytest src/tests/test_encryption_fuzz.py

Running the entire test suite will also execute these fuzz tests.

Calibrating Argon2 Time Cost

Argon2 performance varies by device. To calibrate the time_cost parameter, run the helper function:

python - <<'PY'
from seedpass.core.config_manager import ConfigManager
from utils.key_derivation import calibrate_argon2_time_cost

# assuming ``cfg`` is a ConfigManager for your profile
calibrate_argon2_time_cost(cfg)
PY

The selected time_cost is stored in the profile's configuration and used for subsequent key derivations.