Skill

data-encryption

Implements strong encryption using AES, RSA, TLS, and key management for data at rest, in transit, and end-to-end. Guides for Node.js, Python, PostgreSQL.

Javascript

Python

PostgreSQL

security

database

Install

npx claudepluginhub joshuarweaver/cascade-code-languages-misc-1 --plugin aj-geddes-useful-ai-prompts-4

Tool Access

This skill uses the workspace's default tool permissions.

Preview

- [Overview](#overview)

Supporting Assets

references/database-encryption-postgresql.mdreferences/nodejs-encryption-library.mdreferences/python-cryptography-implementation.mdreferences/tlsssl-configuration.mdscripts/security-checklist.sh

SKILL.md

Similar Skills

skill-lookup

Searches, retrieves, and installs Agent Skills from prompts.chat registry using MCP tools like search_skills and get_skill. Activates for finding skills, browsing catalogs, or extending Claude.

prompts.chat

159.9k

prompt-lookup

Searches prompts.chat for AI prompt templates by keyword or category, retrieves by ID with variable handling, and improves prompts via AI. Use for discovering or enhancing prompts.

prompts.chat

159.9k

next-compile

1 file

Checks Next.js compilation errors using a running Turbopack dev server after code edits. Fixes actionable issues before reporting complete. Replaces `next build`.

vercel-next-js-2

139.2k

Stats

Stars180

Forks28

Last CommitMar 3, 2026

Actions

View Source View Plugin View on GitHub View README

Tags

crypto-best-practices

Data Encryption

Table of Contents

Overview

Implement robust encryption strategies for protecting sensitive data at rest and in transit using industry-standard cryptographic algorithms and key management practices.

When to Use

Sensitive data storage

Database encryption

File encryption

Communication security

Compliance requirements (GDPR, HIPAA, PCI-DSS)

Password storage

End-to-end encryption

Quick Start

Minimal working example:

// encryption-service.js const crypto = require("crypto"); const fs = require("fs").promises; class EncryptionService { constructor() { // AES-256-GCM for symmetric encryption this.algorithm = "aes-256-gcm"; this.keyLength = 32; // 256 bits this.ivLength = 16; // 128 bits this.saltLength = 64; this.tagLength = 16; } /** * Generate a cryptographically secure random key */ generateKey() { return crypto.randomBytes(this.keyLength); } /** * Derive a key from a password using PBKDF2 */ async deriveKey(password, salt = null) { // ... (see reference guides for full implementation)

Reference Guides

Detailed implementations in the references/ directory:

Guide

Contents

Node.js Encryption Library

Python Cryptography Implementation

Database Encryption (PostgreSQL)

TLS/SSL Configuration

Best Practices

✅ DO

Use AES-256-GCM for symmetric encryption

Use RSA-4096 or ECC for asymmetric encryption

Implement proper key rotation

Use secure key storage (HSM, KMS)

Salt and hash passwords

Use TLS 1.2+ for transit encryption

Implement key derivation (PBKDF2, Argon2)

Use authenticated encryption

❌ DON'T

Roll your own crypto

Store keys in code

Use ECB mode

Use MD5 or SHA1

Reuse IVs/nonces

Use weak key lengths

Skip authentication tags