Plans on integrating a web3 wallet provider or hardware security modules/protocols as source for cryptographic key management

Development
1

Hello,

Are there any plans on paving the way for integrating cryptomator with 3rd party security providers to manage the encryption/decryption keys and processes?

How is this process handled now, and how can someone get started on such a direction?

Looking forward!

2

Welcome to the Cryptomator Communtiy :slightly_smiling_face:

Currently, there are no such plans. The used key derivation and encryption algorithms provide a good, even quantum-resistant (see here or there) level of security.

A goal of Cryptomator is to provide an easy, at best zero-config app, that enables everyone to encrypt their data in a safe manner. The more configuration we allow, the more points of wrong configuration can happen.

That said, there are two remarkable points:

  1. There exists an API to allow storing the vault passwords in an external password manager.
  2. For teams and organization exists Cryptomator Hub, where the encryption/decryption key material is stored elsewhere.

So if you really want to implement a different encryption key provider, have a look at the KeyloadingStrategy class in our main repository.