cipherdrop ~ $ share --encrypt --burn
send a file or note
the server cannot read
it is encrypted in your browser before it leaves. the key rides in the link fragment, which never reaches the server, so all it ever stores is scrambled bytes it cannot read.
cipherAES-GCM 256
keyin the URL #fragment
serverciphertext only
expiry1h · 1d · 7d
burndelete on first read
max100 MB
~/cipherdrop
the key lives after the # in your link and is generated on this device, never sent.
$ why cipherdrop
> the key never leaves
it is generated on this device and lives after the # in the link, which browsers never send to a server.
> the server holds gibberish
only ciphertext ever lands on disk. if it leaked tomorrow there would be nothing readable on it.
> gone when you want
set an expiry or burn on the first read. expired drops get swept off disk, not just hidden.