SlowKey is a cutting-edge Key Derivation Function (KDF) tool designed to enhance cryptographic security in various applications, from securing sensitive data to protecting user passwords. At its core, SlowKey leverages the power of three renowned cryptographic algorithms: Scrypt, Argon2, SHA2, and SHA3, each selected for its unique strengths in ensuring data integrity and security.
SlowKey incorporates Scrypt, a memory-hard KDF that is specifically engineered to make brute-force attacks prohibitively expensive. By requiring significant amounts of memory and processing power to compute the hash functions, Scrypt ensures that the cost and time to perform large-scale custom hardware attacks are beyond the reach of most attackers, offering robust protection against rainbow table and brute-force attacks.
SlowKey integrates Argon2, an advanced, memory-hard Key Derivation Function (KDF) designed to effectively thwart brute-force and side-channel attacks. As the winner of the Password Hashing Competition, Argon2 is tailored to ensure that the computation of hash functions demands substantial memory and processing resources, making it exceedingly difficult for attackers to mount large-scale custom hardware attacks. This requirement for significant computational effort not only increases the security against brute-force and rainbow table attacks but also provides a customizable framework that can be tuned for specific defense needs, ensuring an adaptable and formidable barrier against unauthorized access attempts.
Alongside Scrypt, and Argon2, SlowKey utilizes SHA2 and SHA3 for their exceptional hash functions, providing an additional layer of security. SHA2, a member of the Secure Hash Algorithm family, offers a high level of resistance against hash collision attacks, making it an excellent choice for secure hashing needs. SHA3, the latest member of the Secure Hash Algorithm family, further strengthens SlowKey's cryptographic capabilities with its resistance to various attack vectors, including those that may affect earlier SHA versions.
A cornerstone of SlowKey's design philosophy is its commitment to resilience through diversity. By integrating Scrypt, SHA2, and SHA3 within its cryptographic framework, SlowKey not only capitalizes on the unique strengths of each algorithm but also ensures a level of security redundancy that is critical in the face of evolving cyber threats. This strategic mixture means that even if one of these algorithms were to be compromised or "broken" due to unforeseen vulnerabilities, the overall security scheme of SlowKey would remain robust and intact, safeguarded by the uncompromised integrity of the remaining algorithms. This approach mirrors the principle of layered security in cybersecurity, where multiple defensive strategies are employed to protect against a single point of failure. Consequently, SlowKey offers an advanced, forward-thinking solution that anticipates and mitigates the potential impact of future cryptographic breakthroughs or advancements in quantum computing that could threaten individual hash functions. Through this multi-algorithm strategy, SlowKey provides a safeguard against the entire spectrum of cryptographic attacks, ensuring long-term security for its users in a landscape where the only constant is change.
The SlowKey Key Derivation Scheme is defined as follows:
Concatenate(data1, data2, data3): Function to concatenatedata1,data2, anddata3.SHA2(data): Function to compute SHA2 (SHA512) hash ofdata.SHA3(data): Function to compute SHA3 (Keccak512) hash ofdata.Scrypt(data, salt): Function to derive a key using Scrypt KDF withdataandsalt.Argon2id(data, salt): Function to derive a key using Argon2id KDF withdataandsalt.
password: User's password.salt: Unique salt for hashing. Please note that the salt must be16bytes long, therefore shorter/longer salts will be SHA512 hashed and then truncated to16bytes.iterations: Number of iterations the process should be repeated.
finalKey: Derived key after all iterations.
function deriveKey(password, salt, iterations):
previousResult = ""
for iteration from 1 to iterations:
step1 = SHA2(concatenate(previousResult, salt, password, iteration))
step2 = SHA3(concatenate(step1, salt, password, iteration))
step3 = Scrypt(concatenate(step2, salt, password, iteration), salt)
step4 = SHA2(concatenate(step3, salt, password, iteration))
step5 = SHA3(concatenate(step4, salt, password, iteration))
step6 = Argon2id(concatenate(step5, salt, password, iteration), salt)
previousResult = step6
finalKey = truncate(previousResult, keySize)
return finalKey
Usage: slowkey [COMMAND]
Commands:
derive Derive a key using using Scrypt, Argon2, SHA2, and SHA3
show-checkpoint Decrypt and print a checkpoint
show-output Decrypt and print an output file
test Print test vectors
Options:
-h, --help Print help
-V, --version Print versionDerive a key using using Scrypt, Argon2, SHA2, and SHA3
Usage: slowkey derive [OPTIONS]
Options:
-i, --iterations <ITERATIONS>
Number of iterations (must be greater than 1 and lesser than or equal to 4294967295) [default: 100]
-l, --length <LENGTH>
Length of the derived result (must be greater than 9 and lesser than or equal to 64) [default: 32]
--base64
Show the result in Base64 (in addition to hex)
--base58
Show the result in Base58 (in addition to hex)
--output <OUTPUT>
Optional path for storing the encrypted output
--scrypt-log-n <SCRYPT_LOG_N>
Scrypt CPU/memory cost parameter (must be lesser than 64) [default: 20]
--scrypt-r <SCRYPT_R>
Scrypt block size parameter, which fine-tunes sequential memory read size and performance (must be greater than 0 and lesser than or equal to 4294967295) [default: 8]
--scrypt-p <SCRYPT_P>
Scrypt parallelization parameter (must be greater than 0 and lesser than 4294967295) [default: 1]
--argon2-m-cost <ARGON2_M_COST>
Argon2 number of 1 KiB memory block (must be greater than 8 and lesser than 4294967295) [default: 2097152]
--argon2-t-cost <ARGON2_T_COST>
Argon2 number of iterations (must be greater than 1 and lesser than 4294967295) [default: 2]
--argon2-p-cost <ARGON2_P_COST>
Argon2 Degree of parallelism (must be greater than 1 and lesser than 16777215) [default: 1]
--checkpoint-dir <CHECKPOINT_DIR>
Optional directory for storing encrypted checkpoints, each appended with an iteration-specific suffix. For each iteration i, the corresponding checkpoint file is named "checkpoint.i", indicating the iteration number at which the checkpoint was created
--checkpoint-interval <CHECKPOINT_INTERVAL>
Frequency of saving encrypted checkpoints to disk, specified as the number of iterations between each save
--max-checkpoints-to-keep <MAX_CHECKPOINTS_TO_KEEP>
Specifies the number of most recent checkpoints to keep, while automatically deleting older ones [default: 1]
--restore-from-checkpoint <RESTORE_FROM_CHECKPOINT>
Path to an existing checkpoint from which to resume the derivation process
-h, --help
Print helpPrint test vectors
Usage: slowkey test
Options:
-h, --help Print helpgit clone https://github.com/lbeder/slowkey
cd slowkey
cargo build --releaseDepending on whether you are using x64 or arm64, you might need to add either the x86_64-apple-darwin or the aarch64-apple-darwin target accordingly:
rustup target add x86_64-apple-darwin
rustup target add aarch64-apple-darwinIn order to get stuff working later, use the nightly branch of Rust:
rustup override set nightlyInstall a standard Linux target on a Mac (note, that the opposite is currently impossible):
rustup target add x86_64-unknown-linux-muslUse homebrew to install a community-provided macOS cross-compiler toolchains:
brew tap messense/macos-cross-toolchains
brew install x86_64-unknown-linux-muslNow you can build it:
export CC_x86_64_unknown_linux_musl=x86_64-unknown-linux-musl-gcc
export CXX_x86_64_unknown_linux_musl=x86_64-unknown-linux-musl-g++
export AR_x86_64_unknown_linux_musl=x86_64-unknown-linux-musl-ar
export CARGO_TARGET_X86_64_UNKNOWN_LINUX_MUSL_LINKER=x86_64-unknown-linux-musl-gcc
CROSS_COMPILE=x86_64-linux-musl- cargo build --target=x86_64-unknown-linux-musl
cargo build --target=x86_64-unknown-linux-muslIn order to get stuff working later, use the nightly branch of Rust:
rustup override set nightlyInstall the standard Windows target on a Mac (note, that the opposite is currently impossible):
rustup target add x86_64-pc-windows-gnuUse homebrew to install mingw-w64:
brew install mingw-w64Now you can build it:
cargo build --release --target=x86_64-pc-windows-gnuIn this tool, the input provided by the user is first evaluated to determine its format. If the input string begins with 0x, it is interpreted as a hexadecimal representation of a byte array. The tool will then parse this hexadecimal string into its corresponding byte sequence, allowing for hexadecimal data to be input directly in a recognizable format. Conversely, if the input does not start with 0x, it is treated as raw data and used as is, without any conversion. This dual functionality enables flexibility, allowing users to input either hexadecimal or raw data based on their needs.
Let's try to derive the key for the password password, using the salt saltsaltsaltsalt:
slowkey derive -i 10
Please input all data either in raw or hex format starting with the 0x prefix
SlowKey Parameters:
Iterations: 10
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
✔ Enter your salt · ********
✔ Enter your password · ********
████████░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░ 1/10 10% (54s)Final result:
✔ Enter your salt · ********
✔ Enter your password · ********
████████████████████████████████████████████████████████████████████████████████ 10/10 100% (0s)
Key is (please highlight to see): 0xad9aa031287b42f45c40a5caf3b3ed47f795d9315d22ab50a25652b3f2a6b716
Start time: 2024-09-18 18:57:34
End time: 2024-09-18 18:58:26
Total running time: 52sPlease note that salt must be 16 bytes long, therefore shorter/longer salts will be SHA512 hashed and then truncated to 16 bytes:
In order to hide the output from prying eyes, we set both the background and foreground colors of text to black in a terminal, so that text becomes "hidden" because it blends into the background. However, in some terminals, highlighting this text with the cursor won't reveal it because the highlight color itself might be configured in a way that doesn't provide sufficient contrast against the black text. This occurs because terminals use default color sets for text, background, and highlights, which can vary based on the terminal and its settings.
To work around the issue of invisible text during selection in the terminal, you can change the highlight color in the terminal's settings to ensure it contrasts with the black text and background. Typically, this involves accessing the settings or preferences menu of your terminal, navigating to the color scheme or appearance settings, and choosing a new color for selections or highlights. By setting the highlight color to white or another light shade, you can make the black text visible when selected, ensuring better usability and accessibility in your terminal sessions.
Despite the text being invisible, it's important to note that the text remains present in the terminal's buffer. This means that even if you cannot see the text, you can still copy it by selecting the area where the text is located and pasting it into a different application or a different part of the terminal that uses visible colors. The pasted text will appear in the default colors of the destination, revealing the hidden content.
✔ Enter your salt · ********
Salt's size 4 is shorter than 16 and will be SHA512 hashed and then truncated to 16 bytes. Do you want to continue? [y/n]✔ Enter your salt · ********
Salt's size 20 is longer than 16 and will be SHA512 hashed and then truncated to 16 bytes. Do you want to continue? [y/n]Decrypt and print a checkpoint
Usage: slowkey show-checkpoint [OPTIONS] --checkpoint <CHECKPOINT>
Options:
--checkpoint <CHECKPOINT> Path to an existing checkpoint
--verify Verify that the password and salt match the checkpoint
--base64 Show the result in Base64 (in addition to hex)
--base58 Show the result in Base58 (in addition to hex)
-h, --help Print helpThe tool also supports the creation of periodic checkpoints, which are securely encrypted and stored on the disk. Each checkpoint captures all parameters and the output from the last iteration, enabling you to resume computation from a previously established checkpoint. Additionally, the tool allows for the retention of multiple checkpoints.
Please note that even if the last checkpoint is done at the final iteration (in the case that the number of iterations divides by the check-pointing interval), the checkpoint still won't have the actual output until you complete the recovery process.
Each checkpoint, except for the one that coincides with the first iteration, also includes the output of the previous iteration. This allows the system to verify that the password and salt match the checkpoint by attempting to derive the checkpoint's iteration data from the previous iteration's data.
Please exercise caution when using this feature. Resuming computation from a compromised checkpoint may undermine your expectations regarding the duration of the key stretching process.
Please note that encryption key must be 32 bytes long, therefore shorter/longer will be first SHA512 hashed and then truncated to 32 bytes:
For instance, to elaborate on the previous example, suppose we want to create a checkpoint every 5 iterations forcefully terminate the execution at the 8th iteration:
slowkey derive -i 10 --checkpoint-interval 5 --max-checkpoints-to-keep 2 --checkpoint-dir ~/checkpoints
Please input all data either in raw or hex format starting with the 0x prefix
✔ Enter your checkpoint/output encryption key · ********
Checkpoint will be created every 5 iterations and saved to the "~/checkpoints" checkpoints directory
SlowKey Parameters:
Iterations: 10
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
✔ Enter your salt · ********
✔ Enter your password · ********
████████████████████████████████████████████████████████████████░░░░░░░░░░░░░░░░ 5/10 80% (10s)
Created checkpoint #5 with data hash (salted) 0x1d63a329b6bd1ab1199ee8d72b65e38e30cb129001436cc8ec8645329b0176dcWe can see that the checkpoint.05.1d63a329b6bd1ab1199ee8d72b65e38e30cb129001436cc8ec8645329b0176dc was retained in the ~/checkpoints directory. Please note that file name contains iteration the checkpoint was taken at and a salted hash of the data.
Let's use the show-checkpoint command to decrypt its contents and verify the parameters:
slowkey show-checkpoint --checkpoint ~/checkpoints/checkpoint.05.1d63a329b6bd1ab1199ee8d72b65e38e30cb129001436cc8ec8645329b0176dc
Please input all data either in raw or hex format starting with the 0x prefix
✔ Enter your checkpoint/output encryption key · ********
Checkpoint:
Version: 1:
Iteration: 5:
Data (please highlight to see): 0x394097ab2a70d59caf6f4f950830ba86fe7593b762a763705631b9752341d879
Previous Iteration's Data (please highlight to see): 0xf4d0306c5e72f644526e8d663b4b62209287238cce22fab0868e96acdaa9b8a1
SlowKey Parameters:
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)We can also verify that the password and salt match the checkpoint by passing the optional --verify flag:
slowkey show-checkpoint --checkpoint ~/checkpoints/checkpoint.05.1d63a329b6bd1ab1199ee8d72b65e38e30cb129001436cc8ec8645329b0176dc --verify
Please input all data either in raw or hex format starting with the 0x prefix
✔ Enter your checkpoint/output encryption key · ********
Checkpoint:
Version: 1:
Iterations: 5:
Data (please highlight to see): 0x394097ab2a70d59caf6f4f950830ba86fe7593b762a763705631b9752341d879
Previous Iteration's Data (please highlight to see): 0xf4d0306c5e72f644526e8d663b4b62209287238cce22fab0868e96acdaa9b8a1
SlowKey Parameters:
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
✔ Enter your salt · ********
✔ Enter your password · ********
Verifying the checkpoint...
The password, salt and internal data are correctLet's continue the derivation process from this checkpoint and verify that we arrive at the same final result as before. Please make sure to specify the correct number of iterations, as the checkpoint does not store the original iteration count.
slowkey derive -i 10 --restore-from-checkpoint ~/checkpoints/checkpoint.05.1d63a329b6bd1ab1199ee8d72b65e38e30cb129001436cc8ec8645329b0176dc
Please input all data either in raw or hex format starting with the 0x prefix
✔ Enter your checkpoint/output encryption key · ********
Checkpoint:
Version: 1:
Iterations: 5:
Data (please highlight to see): 0x394097ab2a70d59caf6f4f950830ba86fe7593b762a763705631b9752341d879
Previous Iteration's Data (please highlight to see): 0xf4d0306c5e72f644526e8d663b4b62209287238cce22fab0868e96acdaa9b8a1
SlowKey Parameters:
Iterations: 10
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
✔ Enter your salt · ********
✔ Enter your password · ********
Verifying the checkpoint...
The password, salt and internal data are correct
████████████████████████████████████████░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░ 0/5 0% (4s)
Final result:
████████████████████████████████████████████████████████████████████████████████ 5/10 100% (0s)
Key is (please highlight to see): 0xad9aa031287b42f45c40a5caf3b3ed47f795d9315d22ab50a25652b3f2a6b716
Start time: 2024-09-18 19:00:59
End time: 2024-09-18 19:01:25
Total running time: 25sIn addition to the above, you can use a checkpoint while specifying a larger iteration count. For example, if you originally ran 10,000 iterations and want to continue from checkpoint 9,000, you can set a higher iteration count, such as 100,000, when restoring from this checkpoint:
slowkey derive -i 20 --restore-from-checkpoint ~/checkpoints/checkpoint.05.1d63a329b6bd1ab1199ee8d72b65e38e30cb129001436cc8ec8645329b0176dc
Please input all data either in raw or hex format starting with the 0x prefix
✔ Enter your checkpoint/output encryption key · ********
Checkpoint:
Version: 1:
Iterations: 5:
Data (please highlight to see): 0x394097ab2a70d59caf6f4f950830ba86fe7593b762a763705631b9752341d879
Previous Iteration's Data (please highlight to see): 0xf4d0306c5e72f644526e8d663b4b62209287238cce22fab0868e96acdaa9b8a1
SlowKey Parameters:
Iterations: 20
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
✔ Enter your salt · ********
✔ Enter your password · ********
Verifying the checkpoint...
The password, salt and internal data are correct
████████████████████████████████████████░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░ 0/15 0% (56s)Final result:
████████████████████████████████████████████████████████████████████████████████ 20/20 100% (0s)
Key is (please highlight to see): 0x07eee820a3f92c5577dedd07e7d325dc58bb1064f9ae05af30be9863ec6e7354
Start time: 2024-09-18 19:00:59
End time: 2024-09-18 19:01:25
Total running time: 25sBy default, the tool outputs they key in a hexadecimal format, but the tool also supports both Base64 and Base58 formats optionally:
slowkey derive -i 10 --base64 --base58
Please input all data either in raw or hex format starting with the 0x prefix
SlowKey Parameters:
Iterations: 10
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
✔ Enter your salt · ********
✔ Enter your password · ********
████████████████████████████████████████████████████████████████████████████████ 10/10 100% (0s)
Key is (please highlight to see): 0xad9aa031287b42f45c40a5caf3b3ed47f795d9315d22ab50a25652b3f2a6b716
Key (base64) is (please highlight to see): rZqgMSh7QvRcQKXK87PtR/eV2TFdIqtQolZSs/KmtxY+W4
Key (base58) is (please highlight to see): CggHSjC3rpDdCGcbL2uB28qpFeBsWVsUMph1iGpbnDGy
Start time: 2024-09-18 18:57:34
End time: 2024-09-18 18:58:26
Total running time: 52sIn addition to the above, the tool also supports saving the output to be encrypted and stored to the disk:
slowkey derive -i 10 --output ~/output.enc
Please input all data either in raw or hex format starting with the 0x prefix
✔ Enter your checkpoint/output encryption key · ********
✔ Enter your salt · ********
✔ Enter your password · ********
SlowKey Parameters:
Iterations: 10
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
████████████████████████████████████████████████████████████████████████████████ 10/10 100% (0s)
Key is (please highlight to see): 0xad9aa031287b42f45c40a5caf3b3ed47f795d9315d22ab50a25652b3f2a6b716
Saved encrypted output to "~/output.enc"
Start time: 2024-09-18 18:57:34
End time: 2024-09-18 18:58:26
Total running time: 52sLet's use the show-output command to decrypt its contents:
Decrypt and print an output file
Usage: slowkey show-output [OPTIONS] --output <OUTPUT>
Options:
--output <OUTPUT> Path to an existing output
--verify Verify that the password and salt match the output
--base64 Show the result in Base64 (in addition to hex)
--base58 Show the result in Base58 (in addition to hex)
-h, --help Print helpslowkey show-output --output ~/output.enc
Output:
Iterations: 10
Data (please highlight to see): 0xad9aa031287b42f45c40a5caf3b3ed47f795d9315d22ab50a25652b3f2a6b716
Previous Iteration's Data (please highlight to see): 0x2645534232e84c83989d6dae3d93be851771c7c47852301b413147780215bd08
SlowKey Parameters:
Iterations: 10
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)The output file checkpoint, except for the one that coincides with the first iteration, also includes the output of the previous iteration. This allows the system to verify that the password and salt match the output by attempting to derive the output's data from the previous iteration's data. This verification is optional and requires the --verify flag:
slowkey show-output --output ~/output.enc --verify
Please input all data either in raw or hex format starting with the 0x prefix
✔ Enter your checkpoint/output encryption key · ********
Output:
Iterations: 10
Data (please highlight to see): 0xad9aa031287b42f45c40a5caf3b3ed47f795d9315d22ab50a25652b3f2a6b716
Previous Iteration's Data (please highlight to see): 0x2645534232e84c83989d6dae3d93be851771c7c47852301b413147780215bd08
SlowKey Parameters:
Iterations: 10
Length: 32
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
✔ Enter your salt · ********
✔ Enter your password · ********
Verifying the output...
The password, salt and internal data are correctIn order to verify the validity of the Scrypt calculation, you can run the test command:
slowkey test
Test vectors:
- Password: "" (the empty string)
- Salt: "SlowKeySlowKey16"
- Iterations: 1
- Length: 64
- Scrypt Parameters:
- n: 1048576
- r: 8
- p: 1
- Argon2id Parameters:
- version: 19
- m_cost: 2097152
- t_cost: 2
- p: 1
- Password: "Hello World"
- Salt: "SlowKeySlowKey16"
- Iterations: 3
- Length: 64
- Scrypt Parameters:
- n: 1048576
- r: 8
- p: 1
- Argon2id Parameters:
- version: 19
- m_cost: 2097152
- t_cost: 2
- p: 1
Results should be:
Salt: "SlowKeySlowKey16"
Password: ""
SlowKey Parameters:
Iterations: 1
Length: 64
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
Derived key: 0xb2c1bcd2674c0c96473e61b17d6e30d6e8a46ac258f730075b476a732284c64e36df041f7bd50260d68128b62e6cffac03e4ff585025d18b04d41dda4633b800
Salt: "SlowKeySlowKey16"
Password: "Hello World"
SlowKey Parameters:
Iterations: 3
Length: 64
Scrypt: (log_n: 20, r: 8, p: 1)
Argon2id: (version: 19, m_cost: 2097152, t_cost: 2, p_cost: 1)
Derived key: 0xe24c16e6912d2348e8be84977d22bd229382b72b65b501afe0066a32d6771df57f3557de0719070bbafb8faf1d0649562be693e3bf33c6e0a107d0af712030efMIT License
Copyright (c) 2024 Leonid Beder
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.