Note: We could generate keys on the fly with server on each account creation and login requests for password protection, but for demonstrating purpose here I've used already generated keys with ...

For example, you can use RSA (Rivest-Shamir-Adleman) to encrypt your keys and tokens with your API client's public key, and then decrypt them with your private key. Hashing API keys and tokens is ...

It was originally designed to enable security keys to decrypt local storage ... to contain a per-credential, 32-byte secret key that can be used for that purpose with, for example, the WebCrypto API.

I'm trying to implement decryption ... the key on the native side of things. I ultimately use CryptDeriveKey() with a preloaded hashed data pretty much the way you'd see it in the MSDN examples ...