MeshCore Encryption Overview

This page summarizes MeshCore's encryption as verified from the official source code. The key facts: AES-128 symmetric encryption, ECDH key exchange using Ed25519 keys transposed to X25519, and HMAC-SHA256 for message authentication.

Verified Encryption Summary

Component	Algorithm	Notes
Symmetric cipher	AES-128 ECB	16-byte key; zero-padding on final block
Message authentication	HMAC-SHA256 (2-byte truncated MAC)	Encrypt-then-MAC scheme
Key exchange	ECDH via X25519	Ed25519 keys converted to X25519 for DH
Identity keys	Ed25519	32-byte public key, 64-byte private key
Advertisement signing	Ed25519 signature	Prevents node identity spoofing

Common Misconceptions

Not AES-256: MeshCore uses AES-128, not AES-256. Both are considered secure for this application; the choice of 128-bit keys keeps packet overhead minimal.
Not CTR mode: The implementation uses ECB mode with zero-padding, not CTR or GCM mode.
The official MeshCore website states "AES-128 encryption" - this matches the source code.

Source: Official MeshCore repository source code. Verified 2026-05-03.

MeshCore Protocol Overview

MeshCore Firmware Types

MeshCore Setup Guide

Deploying a MeshCore Repeater

Path Discovery and Route Learning

Why MeshCore Scales Better Than Flooding

Connecting to Your Device

Full Command Reference

Key Repeater Settings

Common Issues and Fixes

EasySkyMesh: Third-Party Power-Optimized MeshCore Fork

MeshCore Governance and Community

MeshCore Python API

MeshCore CLI Configuration

MeshCore Security and Encryption

MeshCore CLI Commands Reference

nRF52 Power Management

MeshCore QR Code Formats

MeshCore KISS Modem Protocol

MeshCore Packet Format Reference

MeshCore Payload Format Reference

MeshCore Companion Protocol (BLE API)

MeshCore Stats Binary Frames

MeshCore Protocol Number Allocations

MeshCore Routing Architecture

MeshCore Packet Format and Encryption

MeshCore Network Topology Best Practices

Protocol Comparison Reference

Getting Started with the MeshCore App

MeshCore App: Messaging and Contacts

MeshCore App: Radio Settings and Position

Supported Hardware for MeshCore

Choosing Hardware for MeshCore vs Meshtastic

RAK WisBlock System for MeshCore

MeshCore Firmware Variants Explained

Flashing MeshCore Firmware

Keeping MeshCore Firmware Updated

MeshCore Encryption Overview

Understanding ECDH Key Exchange in MeshCore

Channel Security and Private Networks

MeshCore Routing: Flood-First, Direct-Route-After

Optimizing MeshCore for Large Networks

MeshCore Path Discovery Deep Dive

MeshCore Network Troubleshooting Reference

MeshCore Encryption Overview

Verified Encryption Summary

Common Misconceptions