Since NitroShare is often used on a private network, transfers are not encrypted by default. However, it is possible to encrypt transfers between devices using TLS. The process for doing this is described below using two different methods:
[TODO]
First, generate a key and root CA certificate:
openssl genrsa -out root.key 2048
openssl req -x509 -new -nodes -key root.key -sha256 -days 3650 -out root.crt
You will be asked a few questions about the CA and it is important you do not leave any fields blank since this causes problems verifying the certificates later. Next, you will need to generate a key, CRL, and signed certificate for each device:
openssl genrsa -out device01.key 2048
openssl req -new -key device01.key -out device01.csr
openssl x509 -req -in device01.csr -CA root.crt -CAkey root.key -CAcreateserial -out device01.crt -days 3650 -sha256
All devices will use the same CA certificate (root.crt) and each will have its own private key and signed certificate. Open the settings dialog and provide the paths to the appropriate file and enable TLS:
Once TLS is enabled for each device, you are good to go! All transfers will be done over encrypted connections.