The idea was to have the sensitive code run inside a LUA virtual machine that runs on top of Roblox’s LUA VM. All crypto functions are called from there. Granted, they can probably read anything and everything on the client, but the point is to make it so hard for them that it will either take some time to crack it, or they give up…the latter being the point
The purpose of a Crypto API is to allow crypto function inside Roblox’s LUA VM. What I’m using it for is to protect data that’s in-flight between client and server from eavesdropping by an exploiter that is using Remote Spy. That’s the sole purpose of this. I have a system already established, but it’s slow. This is in addition to other measures that are in place.
I could see crypto versions of FireServer and FireClient to do this. Hashing algorithms could also be implemented and I do know there are some use cases where you need things like SHA-256 to interface with certain web services.