This directory contains the Rust code for the Enquo core cryptography library.
The Rust Enquo core serves two purposes:
a Rust-based queryable encryption library; and
the core code for Enquo client functionality in other languages.
As such, there may be things in this library that aren't as "Rustaceous" as might be expected. This may be either because I didn't know a better way, or else because it's important for cross-language compatibility.
The Enquo core is all about encrypting and decrypting field data, using keys derived from a root.
Creating the root is a matter of initializing a key, and then providing that to the root.
```rust use enquocore::{KeyProvider, keyprovider::Static, Root}; use rand::{Rng, SeedableRng}; // The generated key must be from a cryptographically secure random number generator; // threadrng() is not guaranteed to be secure enough. use randchacha::ChaCha20Rng; use std::sync::Arc;
let keydata = ChaCha20Rng::fromentropy().gen::<[u8; 32]>();
let rootkey = Static::new(&keydata)?; let root = Root::new(Arc::new(root_key));
```
Once you have a root, you can create a field, which represents the derived key for a given group of data values. All the data that you want to compare together must be encrypted with the same field, but unrelated values should be encrypted with different fields.
```rust
#
#
let field = root.field(b"somerelation", b"somefield_name")?;
```
To encrypt a value, you create a ciphertext of that value of the appropriate type, providing the field so that the value can be encrypted with the correct key.
```rust
use enquo_core::datatype::Text;
#
let ciphertext = Text::new("this is some text", b"test", &field)?; assert_eq!("this is some text", ciphertext.decrypt(b"test", &field)?);
```
All encrypted data types use Serde to provide serialization.
For more details on the full API, consult the fine manual.