{"type":"doc","content":[{"type":"layoutSection","marks":[{"type":"breakout","attrs":{"mode":"wide"}}],"content":[{"type":"layoutColumn","attrs":{"width":66.66},"content":[{"type":"paragraph","content":[{"text":"The ","type":"text"},{"text":"securestore","type":"text","marks":[{"type":"em"}]},{"text":" object provides a mechanism for securely storing customer data within the player. Data held in the ","type":"text"},{"text":"securestore","type":"text","marks":[{"type":"em"}]},{"text":" are encrypted using root keys which are held securely within the player hardware and are unique to each unit. In general, the ","type":"text"},{"text":"securestore","type":"text","marks":[{"type":"em"}]},{"text":" is used to hold a second-level key which in turn is used for subsequent decryption. The key itself cannot be retrieved, but the user can ask the ","type":"text"},{"text":"securestore","type":"text","marks":[{"type":"em"}]},{"text":" to perform decryption using it.","type":"text"}]},{"type":"paragraph","content":[{"text":"The capacity of the ","type":"text"},{"text":"securestore","type":"text","marks":[{"type":"em"}]},{"text":" is limited and customers should not store more than 256kB of keys.","type":"text"}]},{"type":"paragraph","content":[{"text":"securestore IDL","type":"text","marks":[{"type":"strong"}]}]},{"type":"codeBlock","attrs":{"language":"javascript"},"content":[{"text":"interface SecureStore {\n Promise writePkcs8DecryptionKey(String name, Array data)\n Promise> decryptWithPkcs8Key(String name, String algorithm, String hash, Array data)\n Promise eraseSecureStore();\n}; ","type":"text"}]}]},{"type":"layoutColumn","attrs":{"width":33.33},"content":[{"type":"bodiedExtension","attrs":{"layout":"default","extensionType":"com.atlassian.confluence.macro.core","extensionKey":"panel","parameters":{"macroParams":{"borderColor":{"value":"#3D3D3D"},"bgColor":{"value":"#F4F4F4"},"titleColor":{"value":"#3D3D3D"},"borderWidth":{"value":"0"},"titleBGColor":{"value":"#3D3D3D"},"borderStyle":{"value":"solid"}},"macroMetadata":{"macroId":{"value":"6041596c-97c4-48dc-8f94-eb2b1d949b1e"},"schemaVersion":{"value":"1"},"title":"Panel"}},"localId":"7fd77fd9-0404-4e9c-97f7-ef8076168953"},"content":[{"type":"paragraph","content":[{"text":"ON THIS PAGE","type":"text"}]},{"type":"extension","attrs":{"layout":"default","extensionType":"com.atlassian.confluence.macro.core","extensionKey":"toc","parameters":{"macroParams":{"indent":{"value":"20px"}},"macroMetadata":{"macroId":{"value":"47b4ce7e-9563-4cd5-98e4-28fa04ea1bea"},"schemaVersion":{"value":"1"},"title":"Table of Contents"}},"localId":"3425dc34-a7c4-436d-9af2-5b84080bfb33"}}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph"}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Object Creation","type":"text"}]},{"type":"paragraph","content":[{"text":"To create a ","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}}]},{"text":"securestore","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}},{"type":"em"}]},{"text":" object, load the","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}}]},{"text":" @brightsign/securestore","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}},{"type":"em"}]},{"text":" module using the Node.js® require() method:","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}}]}]},{"type":"codeBlock","attrs":{"language":"javascript"},"content":[{"text":"var securestoreClass = require(\"@brightsign/securestore\");\nvar securestore = new securestoreClass();","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"SecureStore","type":"text"}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"writePkcs8DecryptionKey()","type":"text"}]},{"type":"codeBlock","attrs":{"language":"javascript"},"content":[{"text":"Promise writePkcs8DecryptionKey(String name, Array data)","type":"text"}]},{"type":"paragraph","content":[{"text":"Writes the key in pkcs8 format to the ","type":"text"},{"text":"securestore.","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}}]}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"name","type":"text","marks":[{"type":"code"}]},{"text":" string","type":"text","marks":[{"type":"textColor","attrs":{"color":"#6554c0"}}]},{"text":": ","type":"text"},{"text":"The filename of the key within the secure store.","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"data","type":"text","marks":[{"type":"code"}]},{"text":" ","type":"text"},{"text":"Array","type":"text","marks":[{"type":"textColor","attrs":{"color":"#6554c0"}}]},{"text":": ","type":"text"},{"text":"The key as a Uint8 data array.","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}}]}]}]}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"decryptWithPkcs8Key()","type":"text"}]},{"type":"codeBlock","attrs":{"language":"javascript"},"content":[{"text":"Promise> decryptWithPkcs8Key(String name, String algorithm, String hash, Array data)","type":"text"}]},{"type":"paragraph","content":[{"text":"Decrypts a data array using the designated key stored in the ","type":"text"},{"text":"securestore","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}}]},{"text":" and using the designated algorithm and hash.","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"name","type":"text","marks":[{"type":"code"}]},{"text":" ","type":"text"},{"text":"string","type":"text","marks":[{"type":"textColor","attrs":{"color":"#6554c0"}}]},{"text":": ","type":"text"},{"text":"The filename of the key within the secure store.","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"algorithm","type":"text","marks":[{"type":"code"}]},{"text":" ","type":"text"},{"text":"string","type":"text","marks":[{"type":"textColor","attrs":{"color":"#6554c0"}}]},{"text":": For the moment, the only algorithm supported is \"\"RSA-OAEP\". ","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"hash","type":"text","marks":[{"type":"code"}]},{"text":" ","type":"text"},{"text":"string","type":"text","marks":[{"type":"textColor","attrs":{"color":"#6554c0"}}]},{"text":": Hash values can be any of the following: \"SHA-1\", \"SHA-256\", \"SHA-384\" or \"SHA-512\".","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"data","type":"text","marks":[{"type":"code"}]},{"text":" ","type":"text"},{"text":"Array","type":"text","marks":[{"type":"textColor","attrs":{"color":"#6554c0"}}]},{"text":": Uint8Array data","type":"text"}]}]}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"eraseSecureStore()","type":"text"}]},{"type":"codeBlock","attrs":{"language":"javascript"},"content":[{"text":"Promise eraseSecureStore()","type":"text"}]},{"type":"paragraph","content":[{"text":"Completely deletes the ","type":"text"},{"text":"securestore.","type":"text","marks":[{"type":"textColor","attrs":{"color":"#000000"}}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Examples","type":"text"}]},{"type":"paragraph","content":[{"text":"Write example:","type":"text"}]},{"type":"codeBlock","attrs":{"language":"javascript"},"content":[{"text":"window.crypto.subtle.generateKey(\n {\n name: \"RSA-OAEP\", \n modulusLength: 2048, //can be 1024, 2048, or 4096\n publicExponent: new Uint8Array([0x01, 0x00, 0x01]),\n hash: {name: \"SHA-1\"}, //can be \"SHA-1\", \"SHA-256\", \"SHA-384\", or \"SHA-512\"\n },\n true, //whether the key is extractable (i.e. can be used in exportKey)\n [\"encrypt\", \"decrypt\"] //must be [\"encrypt\", \"decrypt\"] or [\"wrapKey\", \"unwrapKey\"]\n)\n.then(function(key){\n window.crypto.subtle.exportKey(\"pkcs8\", key.privateKey)\n .then(function(exportKey) {\n var SecureClass = require(\"@brightsign/securestore\");\n var secure = new SecureClass();\n secure.write(\"testkey.bin\", Array.from(new Uint8Array(exportKey)))\n .then(function(store){\n\n ....\n\n }\n\n ....\n\n });","type":"text"}]},{"type":"paragraph","content":[{"text":"Decrypt example:","type":"text"}]},{"type":"codeBlock","attrs":{"language":"javascript"},"content":[{"text":"var SecureClass = require(\"@brightsign/securestore\");\nvar secure = new SecureClass();\n\ndecryptWithPkcs8Key(\"testkey.bin\", \"RSA-OAEP\", \"SHA-1\", Array.from(new Uint8Array(encrypted)))\n .then(function(decryptedArray){\n\n ....\n})","type":"text"}]},{"type":"paragraph","content":[{"text":"Delete example:","type":"text"}]},{"type":"codeBlock","attrs":{"language":"javascript"},"content":[{"text":"var SecureClass = require(\"@brightsign/securestore\");\nvar secure = new SecureClass();\n\nsecure.eraseSecureStore()","type":"text"}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph","content":[{"type":"hardBreak"}]}],"version":1}

Browser not supported