xpra icon
Bug tracker and wiki

This bug tracker and wiki are being discontinued
please use https://github.com/Xpra-org/xpra instead.



Version 2 (modified by Antoine Martin, 8 years ago) (diff)

--

Encryption

Introduction

Xpra's network connection can be protected using authentication modules but those do not protect the network connection from man in the middle attacks.
Xpra's encryption layer uses the pycrypto library to:

  • encrypt the network packets with AES (Advanced Encryption Standard) CBC mode (Cipher-block chaining)
  • stretch the "passwords" with PBKDF2 (Password-Based Key Derivation Function 2)

The salts used are generated using Python's uuid.uuid4()

Setup