diff --git a/security/security_levels.html b/security/security_levels.html new file mode 100644 index 0000000..d9c88ef --- /dev/null +++ b/security/security_levels.html @@ -0,0 +1,62 @@ + + + + + + + + + + + + + Security Levels + + + +

Security Levels

+

S0

+

Intended access: Public

+

Encryption: None

+

Signing: Optional

+

S1

+

Intended access: Authorised users of S1 or lower security levels

+

Encryption: Enforced

+

Signing: Enforced

+

Permitted symmetrical encryption ciphers (order of preference): +

    +
  1. AES
    2. +
  2. ChaCha20*
    3. +
  3. Twofish
    4. +

+

S2

+

Intended access: Authorised users of S2 or lower security levels

+

Encryption: Enforced

+

Signing: Enforced

+

Permitted symmetrical encryption ciphers (order of preference): +

    +
  1. AES
    2. +
  2. ChaCha20*
    3. +
  3. Twofish
    4. +

+

S3

+

Intended access: Authorised users of s3 or lower security levels

+

Encryption: Enforced

+

Signing: Enforced

+

Permitted symmetrical encryption ciphers (order of preference): +

    +
  1. AES
    2. +
  2. ChaCha20*
    3. +

+

S4

+

Intended access: Authorised users of s4 or lower security levels

+

Encryption: Enforced

+

Signing: Enforced

+

Permitted symmetrical encryption ciphers (order of preference): +

    +
  1. AES
    2. +
  2. ChaCha20*
    3. +

+

*Preferred when hardware-accelerated AES is unavailable.

+ +