Find out how Edelmetall Vault protects your data - explained clearly without getting too technical.
Zero-knowledge principle
The Zero-knowledge principle means:
The server saves your data, but it cannot read it. It knows „zero“ about the content.
How it works
- You enter your password - only in your browser
- Your browser creates a key - from the password
- Data is encrypted - in the browser, before uploading
- Encrypted data only reach the server
- When retrieving - Decryption in the browser again
AES-256-GCM
The encryption uses AES-256-GCM:
- AES - Advanced Encryption Standard (industry standard)
- 256 - 256-bit key (extremely secure)
- GCM - Galois/counter mode (protects against manipulation)
How safe is that?
AES-256 is used by:
- 🏛️ US Government (for TOP SECRET documents)
- 🏦 Banks worldwide
- 📱 Signal, WhatsApp (for messages)
- Apple (for iCloud)
A brute-force attack on AES-256 would be impossible with today's technology. Billions of years last.
PBKDF2 - Password for key
Your password is not used directly as a key. Instead:
- 600,000 Calculations are carried out
- With a unique „salt“ combined
- This results in the actual encryption key
Why so complicated?
This makes it extremely difficult for attackers:
| Without PBKDF2: | Millions of passwords/second testable |
| With PBKDF2: | Only a few passwords/second |
What happens during a hack?
Even if someone gets access to our servers:
- ❌ It only sees encrypted data blocks
- ❌ It can't decrypt anything without your password
- ❌ Your password is not saved on the server
- ✅ Your data remains secure!
💡 To summarize:
The only weak point is yourself. Choose a strong password and keep it secret!
The only weak point is yourself. Choose a strong password and keep it secret!