Password Vault Lite
A zero-knowledge password vault that runs entirely in your browser. Your master passphrase derives the encryption key; we never see it. Free tier stores up to 10 entries locally. Premium unlocks unlimited entries and end-to-end encrypted cross-device sync.
Create or unlock your vault
Pick a passphrase you'll remember. We can't recover it โ if you forget it, your data is unrecoverable. That's the price of zero-knowledge encryption.
How the Vault Works
Your master passphrase is fed through PBKDF2 (250,000 SHA-256 iterations) to derive a 256-bit AES-GCM key. Every entry is encrypted with a fresh random IV. The ciphertext lives in your browser's localStorage. Sync (Premium) uploads only the encrypted blob โ our server sees ciphertext, not contents.
key = PBKDF2(passphrase, salt, 250k iter, SHA-256, 256 bit)
ciphertext = AES-GCM(key, iv, plaintext)
stored: { iv, ciphertext } โ never the passphrase
ciphertext = AES-GCM(key, iv, plaintext)
stored: { iv, ciphertext } โ never the passphrase