BLINDFLARE
Blindflare is a zero-trust encrypted web system. All encryption, authentication, and validation are performed on your device. The server never sees your secrets.
Blindflare: A Zero-Trust Encrypted Web System
How It Works:
- Client-side ECC key generation: Your device creates a secure elliptic curve keypair. Private keys never leave your device.
- Zero-trust encrypted storage (ztStorage): All data is encrypted before upload. The server only stores encrypted blobs, never plaintext.
- Key-based authentication: No passwords are ever sent to the server. Authentication uses public key cryptography and cryptographic hashes.
- End-to-end encryption above the transport layer: Even if TLS is terminated at a proxy, your data remains encrypted and unreadable.
- Resistant to reverse proxy and backend compromise: If the server is breached, attackers gain nothing but encrypted data and public keys.
Technical Summary:
- Uses secp256k1 ECC for keypairs and signatures
- All encryption and decryption is performed locally
- ztStorage blobs are signed and verified client-side
- API requests and responses are encrypted with ECDH-derived symmetric keys
- No metadata, passwords, or secrets are ever exposed to the server
Whitepaper |
FAQ |
Legal
The user owns the keys. The client owns the logic. The server is just a courier.