A secure, offline peer-to-peer file sharing protocol designed for Tella applications. This protocol enables encrypted file transfers between devices without relying on external servers, prioritizing privacy and security for sensitive data exchange.
- All connections use HTTPS with per-device generated self-signed certificates
- Mandatory authentication via PIN and connect code or QR code scanning
- verification of certificate to prevent MITM attacks
HTTP/HTTPS (TCP)
- Default Port: 53317
- Alternative ports: User configurable if default is unavailable
All connections require authentication via one of these methods:
The host displays a QR code containing:
- Host's full list of local IP addresses
- Connection PIN
- port
- SHA-256 Hash of the tls certificate
QR payload:
{
ip_address: String,
port: Number,
certificate_hash: String,
pin: String
}For scenarios where QR scanning isn't possible:
Host displays:
- IP address
- 6 digit PIN
- Port number (format XXX)
After entering the information, both the sender and receiver will show a verification screen including an alphanumeric sequence (encoding the hash of the tls certificate) and will be prompted to verify if the same sequence is shown in both sides. There will be 2 buttons
- confirm and connect - Proceeds with registration if the hashes match
- discard and start over - terminates connection and returns to initial state
Example of alphanumeric sequence (SHA-256 hash):
87fd 5869 a6b3 e414 112c 1934 ca00 be77 b8e4 584c 829a 4536 490b da9a 3928 be4aSecurity Note: Hash missmatch indicate a potential man-in-the-middle attack. Users should verify they are connecting to the correct device and check network security before retrying
POST /api/v1/ping
This endpoint initiates a secure handshake between two devices during a manual connection process. It is used prior to register.
should perform instantly after the ping request
POST /api/v1/register
Request payload
{
pin: "123456",
nonce: "random-uuid-number",
}response payload
{
"sessionId": "uuid-session-identifier"
}**note: **We should implement a rate limit for the invalid, probably 3 request
errors:
| HTTP code | Message |
|---|---|
| 400 | Invalid request format |
| 401 | Invalid PIN |
| 409 | Active session already exists |
| 429 | Too many requests |
| 500 | Server error |
QR code:
- Device B scans QR code with:
- Device's A IP address
- PIN
- Port
- Certificate Hash
- Device B (sender) sends the payload to
/api/v1/register - Device A (recipient) receives payload
- Device A returns the
uuid-session-identifier
The hashes are automatically compared between the Certificate Hash provided in the QR code and the one received from the server.
Manual Method:
Initial Ping:
- Device B (sender) manually types the IP address, PIN, and PORT
- Device B (sender) sends a ping to
/api/v1/ping - Device B (sender) retrieves the Certificate Hash from server
- Device B (sender) shows the Certificate Hash to be compared
- Device A (recipient) show the Certificate Hash when receive a
/api/v1/pingrequest
Initial Registration:
- Device B (sender) confirms the Certificate Hash and sends the payload to
/api/v1/register - Device A (recipient) receives payload
- Device A (recipient) confirms the register request
- Device A (recipient) returns the
uuid-session-identifier
POST /api/v1/prepare-upload
Request Payload
{
"title": "Title of the report",
"sessionId": "uuid-session-identifier",
"files": [
{
"id": "file-uuid",
"fileName": "document.pdf",
"size": 324242,
"fileType": "application/pdf",
"sha256": "file-hash"
}
]
}Response Payload
{
"files": [
{
"id": "file-uuid",
"transmissionId": "uuid-transmission-identifier"
}
]
}errors:
| HTTP code | Message |
|---|---|
| 400 | Invalid request format |
| 401 | Invalid session ID |
| 403 | Rejected |
| 500 | Server error |
POST /api/v1/upload?sessionId=sessionId&fileId=fileId&transmissionId=transmissionId
Request payload
raw-binary-data
Response payload
{
"success": true
}errors:
| HTTP code | Message |
|---|---|
| 400 | Missing required parameters |
| 401 | Invalid session ID |
| 403 | Invalid transmission ID |
| 409 | Transfer already completed |
| 413 | File too large |
| 415 | Unsupported file type |
| 507 | Insufficient storage space |
| 500 | Server error |
POST /api/v1/close-connection
Request Payload
{
"sessionId": "uuid-session-identifier"
}Response:
{
"success": true
}errors:
| HTTP code | Message |
|---|---|
| 400 | Missing session ID |
| 401 | Invalid session ID |
| 403 | Session already closed |
| 500 | Server error |