bunch of UI cleanup, add MIT license, add readme

2024-01-29 22:41:01 -05:00
parent 1c75b72b82
commit 5cd3e3f990
7 changed files with 90 additions and 48 deletions
--- a/index.html
+++ b/index.html
@@ -40,8 +40,14 @@
 <body>
  <header class="container">
    <hgroup>
-      <h1>SURE</h1>
-      <p>Secure URL Requests</p>
+      <h1>
+        SURE
+      </h1>
+      <p>
+        <span style="color: #44a616;">S</span>ecure
+        <span style="color: #44a616;">U</span>RL
+        <span style="color: #44a616;">Re</span>quests
+      </p>
    </hgroup>
  </header>

@@ -57,7 +63,40 @@
    </article>
  </dialog>

-  <main id="app" class="container"></main>
+  <main class="container">
+    <section>
+      <div id="app"></div>
+
+      <details>
+        <summary>How it Works:</summary>
+        <ul>
+          <li>Each client generates an ECDH keypair, consisting of a public key and a private key.</li>
+          <li>Your private key is kept in localStorage, and never leaves your device.</li>
+          <li>Your public key is embedded in the URLs you generate. This key can be safely shared anywhere without
+            compromising security.</li>
+          <li>When another client opens your generated URL, they will find your public ECDH key. They then generate a
+            random IV for this specific message, and use it, along with their private ECDH key and your public ECDH key,
+            to derive a shared secret (AES-GCM).</li>
+          <li>This derived shared secret never leaves their device. It is used to encrypt their message to you.
+            The encrypted message, along with their public key and the IV for this message, are embedded in the URL they
+            generate.</li>
+          <li>Upon opening the response URL, your device uses your private ECDH key, along with the public key and IV
+            from the URL, to recreate the shared secret. This secret is used to decrypt the message. If the message was
+            properly encrypted using the expected keys, it will be successfully decrypted and displayed to you.</li>
+          <li>If you clear your browser's local storage, you will not be able to decrypt any response URLs generated
+            with your previous unique URL.</li>
+        </ul>
+      </details>
+    </section>
+  </main>
+
+  <footer class="container">
+    <p>
+      <a href="https://git.silentsilas.com/silentsilas/sure" target="_blank" rel="noopener noreferrer">Source Code</a> |
+      <a href="https://silentsilas.com" target="_blank" rel="noopener noreferrer">whoami</a>
+    </p>
+  </footer>
+
  <script type="module" src="/src/main.ts"></script>
 </body>