A lot has changed since v0.2.0! PAST is now a lot faster, simpler, and has a greater degree of misuse resistance.
sealhas been removed.authhas been removed.enchas been renamed tolocal.signhas been renamed topublic.- We now use unpadded base64url encoding.
- For encryption, nonces are now derived from the plaintext in addition to the OS CSPRNG, using HMAC-SHA384 (version 1) or keyed BLAKE2b (version 2). This should mitigate the risk of nonce reuse on systems or programming languages with insecure RNGs.
- More unit tests.
- More documentation. It should now be straightforward to implement PAST in other languages.