Frequently Asked Questions
What is Blindflare?
Blindflare is a zero-trust encrypted web system. All encryption, authentication, and validation are performed on your device. The server never sees your secrets.
How is Blindflare different from traditional web apps?
Traditional apps trust the server with your data and passwords. Blindflare never sends plaintext passwords or data to the server. All cryptography is client-side, so the server only stores encrypted blobs.
What is ztStorage?
ztStorage (zero-trust storage) is a model where all data is encrypted on your device before being sent to the server. The server cannot decrypt or understand your data.
How does authentication work?
Authentication is key-based. Clients generate ECC keypairs. Passwords are never transmitted. The server only sees a hash of your private key and your public key.
What happens if the server is compromised?
Attackers gain nothing useful. All data is encrypted and signed client-side. No passwords, plaintext, or private keys are ever stored or transmitted to the server.
Can Cloudflare or reverse proxies see my data?
No. All sensitive data is encrypted above the transport layer. Even if TLS is terminated at a proxy, the payload remains unreadable.
How do I recover my account?
If you use a password-derived key, you can recover your account with your password and salt. If you use a random key, you must back up your private key or mnemonic.
Is Blindflare open source?
Yes. Visit blindflare.org for source code and documentation.