File Encryption: No Uploads, No Records — How to Password-Protect Any File in Your Browser

#sideprojects #security #showdev #startup

A 100% Private, Client-Side File Encryptor (No Servers, No Logs).

Stop Uploading Sensitive Files to Random Servers

Most "free online converters" or "file lockers" require an upload to a remote server. This creates a massive security loophole where sensitive data could be intercepted, logged, or stored. The solution? Client-side encryption.

This tool utilizes the Web Crypto API to ensure that your files never leave your device. Whether it is a PDF, a photo, or a database backup, the transformation happens entirely within the browser's memory.

Why This Tool Matters

Zero-Knowledge Privacy: Processing happens locally. Even the person hosting the tool cannot see the files or the passwords.

Local Data Storage: Files are not "stored" online; they are modified locally and handed back for download.

No Installation Required: Works in any modern browser without needing Python, Java, or third-party software.

No Registration: No email addresses, no accounts, and no tracking. Complete anonymity.

Military-Grade Security: Uses the AES-GCM algorithm with a 256-bit key length and PBKDF2 key derivation—industry standards for robust protection.

How It Works

The application follows a strict security workflow to ensure data integrity:

Salt & IV Generation: Every time a file is encrypted, a unique random Salt and Initialization Vector (IV) are created.

Key Derivation: The user password is run through 100,000 iterations of the SHA-256 hash to prevent brute-force attacks.

Local Processing: The crypto.subtle.encrypt method processes the file buffer in the browser.

Instant Download: The browser generates a Blob URL for immediate download.