Cryptography

Nalix ships several cryptography primitives in Nalix.Shared.Security, but they are easier to read as separate topics than as one long page.

Source mapping

• src/Nalix.Shared/Security/Asymmetric/*
• src/Nalix.Shared/Security/Hashing/*
• src/Nalix.Shared/Security/Symmetric/*
• src/Nalix.Shared/Security/Aead/*
• src/Nalix.Shared/Security/Engine/*
• src/Nalix.Shared/Security/Credentials/*
• src/Nalix.Shared/Security/EnvelopeCipher.cs

What is in this package

Topic	Main types	Read next
Key agreement	X25519	Key Agreement
Hashing and MAC	Keccak256, Poly1305	Hashing and MAC
AEAD and envelope encryption	ChaCha20Poly1305, Salsa20Poly1305, EnvelopeCipher	AEAD and Envelope
Credential hashing and legacy surface	Pbkdf2, PBKDF2_I, Ed25519	Credentials and Legacy

Quick guidance

• use X25519 for session key agreement
• use Keccak256 only when you explicitly want Keccak, not FIPS SHA3
• use EnvelopeCipher when you want the high-level transport-facing encryption entry point
• use Pbkdf2 for credential hashing helpers
• treat Ed25519 as legacy because it is marked obsolete in source

Related APIs

• Key Agreement
• Hashing and MAC
• AEAD and Envelope
• Credentials and Legacy
• SDK Extensions
• UDP Auth Flow