Skip to content

gthstepsecurity/2fapi-sdk

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
crypto-core
crypto-core
 
 
docs
docs
 
 
packages
packages
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
NOTICE
NOTICE
 
 
README.md
README.md
 
 

Repository files navigation

Continuum Ghost — The Secret That Doesn't Exist

Zero-Knowledge Proof authentication for APIs. The server never sees your secret.

Continuum Ghost is a protocol where the server never sees, stores, or transmits the client's secret. Authentication is based on Pedersen commitments and Schnorr/Sigma proofs over Ristretto255.

A database breach reveals only commitments — mathematical values that are useless without the client's secret.

Packages

Package Description License
@2fapi/protocol-spec Protocol specification: constants, types, interfaces Apache 2.0
@2fapi/client-sdk Client SDK: ZK proof generation for browsers and Node.js Apache 2.0
@2fapi/server Verification server (separate repo) BSL 1.1

Getting Started

See the Getting Started Guide for a complete walkthrough: start the server, enroll a client, authenticate, and receive a token — with working curl commands.

How It Works

  1. Registration: Client generates secret + blinding factor, computes Pedersen commitment C = s·G + r·H, sends C to server
  2. Challenge: Client requests a fresh nonce from the server
  3. Proof: Client generates a Sigma proof bound to the nonce
  4. Verification: Server verifies the proof against the stored commitment — without ever learning the secret

Cryptographic Core

The crypto-core/ directory contains the Rust implementation of the cryptographic primitives:

  • Ristretto255 group operations (via curve25519-dalek)
  • Pedersen commitments
  • Sigma/Schnorr proofs with Fiat-Shamir transform
  • OPRF (Oblivious PRF, RFC 9497)
  • Argon2id key derivation
  • BIP-39 wordlist validation
  • 2-of-2 additive secret sharing
  • Constant-time operations throughout

Compiled to WASM for browser use and napi-rs for Node.js server use.

Security

  • 128-bit security under DLOG assumption on Ristretto255
  • 28-pass internal red team audit, 109 findings, 0 open
  • 1,940+ automated tests (TypeScript + Rust)
  • Constant-time verification, timing-safe error responses
  • OPRF-based credential derivation — offline brute-force impossible
  • Perfect indistinguishability across all observable metrics

License

Protocol specification and client SDK are licensed under Apache 2.0.

The verification server is licensed under Business Source License 1.1 — free to self-host, converts to Apache 2.0 in 2030. See the server repo for details.

Copyright 2024-2026 Continuum Identity SAS.

About

Continuum Ghost — Zero-Knowledge Proof Authentication for APIs (Apache 2.0)

github.com/gthstepsecurity/2fapi-sdk

Topics

rust typescript authentication wasm pedersen-commitment api-security ristretto255 zero-knowledge-proof

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages