Skip to main content

A proxy re-encryption network to empower privacy in decentralized systems.

Project description

A decentralized cryptological network offering accessible, intuitive, and extensible runtimes and interfaces for secrets management and dynamic access control.

pypi pyversions codecov circleci discord Documentation Status license


The NuCypher network provides accessible, intuitive, and extensible runtimes and interfaces for secrets management and dynamic access control.

  • Accessible - The network is permissionless and censorship-resistant. There are no gate-keepers and anyone can use it.
  • Intuitive - The network leverages the classic cryptological narrative of Alice and Bob (with additional characters where appropriate). This character-based narrative permeates the code-base and helps developers write safe, misuse-resistant code.
  • Extensible - The network currently supports proxy re-encryption but can be extended to provide support other cryptographic primitives.

Access permissions are baked into the underlying encryption, and access can only be explicitly granted by the data owner via sharing policies. Consequently, the data owner has ultimate control over access to their data. At no point is the data decrypted nor can the underlying private keys be determined by the NuCypher network.

Under the hood, the NuCypher network uses the Umbral threshold proxy re-encryption scheme to provide cryptographic access control.

How does NuCypher work?

  1. Alice, the data owner, grants access to her encrypted data to anyone she wants by creating a policy and uploading it to the NuCypher network.

  2. Using her policy's public key, any entity can encrypt data on Alice's behalf. This entity could be an IoT device in her car, a collaborator assigned the task of writing data to her policy, or even a third-party creating data that belongs to her – for example, a lab analyzing medical tests. The resulting encrypted data can be uploaded to IPFS, Swarm, S3, or any other storage layer.

  3. A group of Ursulas, which are nodes of the NuCypher network, receive the access policy and stand ready to re-encrypt data in exchange for payment in fees and token rewards. Thanks to the use of proxy re-encryption, Ursulas and the storage layer never have access to Alice's plaintext data.

  4. Bob, a data recipient, sends an access request to the NuCypher network. If Bob was granted an access policy by Alice, the data is re-encrypted for his public key, and he can subsequently decrypt it with his private key.

More detailed information:

Whitepapers

Network

"NuCypher - A proxy re-encryption network to empower privacy in decentralized systems"

by Michael Egorov, David Nuñez, and MacLane Wilkison - NuCypher

Economics

"NuCypher - Mining & Staking Economics"

by Michael Egorov, MacLane Wilkison - NuCypher

Cryptography

"Umbral: A Threshold Proxy Re-Encryption Scheme"

by David Nuñez

Getting Involved

NuCypher is a community-driven project and we're very open to outside contributions.

All our development discussions happen in our Discord server, where we're happy to answer technical questions, discuss feature requests, and accept bug reports.

If you're interested in contributing code, please check out our Contribution Guide and browse our Open Issues for potential areas to contribute.

Get up and running quickly by using our docker development setup

Security

If you identify vulnerabilities with any nucypher code, please email security@nucypher.com with relevant information to your findings. We will work with researchers to coordinate vulnerability disclosure between our stakers, partners, and users to ensure successful mitigation of vulnerabilities.

Throughout the reporting process, we expect researchers to honor an embargo period that may vary depending on the severity of the disclosure. This ensures that we have the opportunity to fix any issues, identify further issues (if any), and inform our users.

Sometimes vulnerabilities are of a more sensitive nature and require extra precautions. We are happy to work together to use a more secure medium, such as Signal. Email security@nucypher.com and we will coordinate a communication channel that we're both comfortable with.

A great place to begin your research is by working on our testnet. Please see our documentation to get started. We ask that you please respect testnet machines and their owners. If you find a vulnerability that you suspect has given you access to a machine against the owner's permission, stop what you're doing and immediately email security@nucypher.com.

Project details


Release history Release notifications | RSS feed

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

nucypher-0.1.0a28.tar.gz (192.2 kB view details)

Uploaded Source

Built Distribution

nucypher-0.1.0a28-py3-none-any.whl (313.0 kB view details)

Uploaded Python 3

File details

Details for the file nucypher-0.1.0a28.tar.gz.

File metadata

  • Download URL: nucypher-0.1.0a28.tar.gz
  • Upload date:
  • Size: 192.2 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.14.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/41.2.0 requests-toolbelt/0.8.0 tqdm/4.35.0 CPython/3.7.4

File hashes

Hashes for nucypher-0.1.0a28.tar.gz
Algorithm Hash digest
SHA256 88796d9f796dbe651ea2ea8d4d9c8a4698499a4316b33280ad8953f4d10c1953
MD5 fafa16190b16d19e88302a7d5d9af2fc
BLAKE2b-256 e76cac078897433d988266e94fe946f89571209d3a07b2ec4bc2ff5489f768eb

See more details on using hashes here.

File details

Details for the file nucypher-0.1.0a28-py3-none-any.whl.

File metadata

  • Download URL: nucypher-0.1.0a28-py3-none-any.whl
  • Upload date:
  • Size: 313.0 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.14.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/41.2.0 requests-toolbelt/0.8.0 tqdm/4.35.0 CPython/3.7.4

File hashes

Hashes for nucypher-0.1.0a28-py3-none-any.whl
Algorithm Hash digest
SHA256 6e979f3b21fd3fff05c0e83564751c8199e137acac48a982fb45aa8d7a80b230
MD5 a7bf2f5d50f2103e880a9984be6cdfa0
BLAKE2b-256 a4145c51ea642b4282fa43756b07fbb27889c0b853b585818ac46a41c5c048ed

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page