SID-CRYPTO-03 — AES-256-GCM Encrypted Keystore

Property	Value
Status	verified
Owner	platform
Category	technical
CSF Function	protect
Group	Cryptography Controls

Description

Wallet private keys and state encrypted with AES-256-GCM via JWE. Key wrapping via AES-KW with support for asymmetric ECDH-based encapsulation. PBKDF2 (SHA-256, 600K iterations) as password fallback. All random generation uses crypto/rand (Go) and WebCrypto API (browser).

Components

Wallet Frontend

Source References

wallet-frontend/keystore.ts

Audit Findings

Finding	Severity	Status
EN-S-2 — Partial asset classification and cryptographic documentation	medium	in progress
EN-S-5 — Partial transport and instance protection	medium	in progress
EN-P-6 — Partial key management and credential operations	medium	in progress
ISO-PH-2 — Partial storage media controls	low	open

Description​

Components​

Source References​

Audit Findings​

Description

Components

Source References

Audit Findings