{"id":693,"date":"2026-01-12T12:33:32","date_gmt":"2026-01-12T11:33:32","guid":{"rendered":"https:\/\/gold-portfolio.com\/?post_type=docs&#038;p=693"},"modified":"2026-01-28T12:25:22","modified_gmt":"2026-01-28T11:25:22","slug":"zero-knowledge-principle","status":"publish","type":"docs","link":"https:\/\/gold-portfolio.com\/en\/dokumentation\/zero-knowledge-prinzip\/","title":{"rendered":"Zero-knowledge principle"},"content":{"rendered":"<p><!-- weDocs: Sicherheit > Verschl\u00fcsselung erkl\u00e4rt --><\/p>\n<p class=\"intro\">Find out how Edelmetall Vault protects your data - explained clearly without getting too technical.<\/p>\n<h2>Zero-knowledge principle<\/h2>\n<p>The <strong>Zero-knowledge principle<\/strong> means:<\/p>\n<blockquote style=\"background: #f0fdf4; border-left: 4px solid #22c55e; padding: 15px 20px; margin: 20px 0; font-style: italic;\"><p>The server saves your data, but it cannot read it. It knows \u201ezero\u201c about the content.<\/p><\/blockquote>\n<h3>How it works<\/h3>\n<ol>\n<li><strong>You enter your password<\/strong> - only in your browser<\/li>\n<li><strong>Your browser creates a key<\/strong> - from the password<\/li>\n<li><strong>Data is encrypted<\/strong> - in the browser, before uploading<\/li>\n<li><strong>Encrypted data only<\/strong> reach the server<\/li>\n<li><strong>When retrieving<\/strong> - Decryption in the browser again<\/li>\n<\/ol>\n<h2>AES-256-GCM<\/h2>\n<p>The encryption uses <strong>AES-256-GCM<\/strong>:<\/p>\n<ul>\n<li><strong>AES<\/strong> - Advanced Encryption Standard (industry standard)<\/li>\n<li><strong>256<\/strong> - 256-bit key (extremely secure)<\/li>\n<li><strong>GCM<\/strong> - Galois\/counter mode (protects against manipulation)<\/li>\n<\/ul>\n<h3>How safe is that?<\/h3>\n<p>AES-256 is used by:<\/p>\n<ul>\n<li>\ud83c\udfdb\ufe0f US Government (for TOP SECRET documents)<\/li>\n<li>\ud83c\udfe6 Banks worldwide<\/li>\n<li>\ud83d\udcf1 Signal, WhatsApp (for messages)<\/li>\n<li>Apple (for iCloud)<\/li>\n<\/ul>\n<p>A brute-force attack on AES-256 would be impossible with today's technology. <strong>Billions of years<\/strong> last.<\/p>\n<h2>PBKDF2 - Password for key<\/h2>\n<p>Your password is not used directly as a key. Instead:<\/p>\n<ol>\n<li><strong>600,000 Calculations<\/strong> are carried out<\/li>\n<li><strong>With a unique \u201esalt\u201c<\/strong> combined<\/li>\n<li><strong>This results in<\/strong> the actual encryption key<\/li>\n<\/ol>\n<h3>Why so complicated?<\/h3>\n<p>This makes it extremely difficult for attackers:<\/p>\n<table style=\"width: 100%; border-collapse: collapse; margin: 20px 0;\">\n<tbody>\n<tr>\n<td style=\"padding: 12px; border-bottom: 1px solid #e5e7eb;\">Without PBKDF2:<\/td>\n<td style=\"padding: 12px; border-bottom: 1px solid #e5e7eb;\">Millions of passwords\/second testable<\/td>\n<\/tr>\n<tr>\n<td style=\"padding: 12px; border-bottom: 1px solid #e5e7eb;\">With PBKDF2:<\/td>\n<td style=\"padding: 12px; border-bottom: 1px solid #e5e7eb;\">Only a few passwords\/second<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>What happens during a hack?<\/h2>\n<p>Even if someone gets access to our servers:<\/p>\n<ul>\n<li>\u274c It only sees encrypted data blocks<\/li>\n<li>\u274c It can't decrypt anything without your password<\/li>\n<li>\u274c Your password is not saved on the server<\/li>\n<li>\u2705 Your data remains secure!<\/li>\n<\/ul>\n<div class=\"info-box\" style=\"background: #f0f9ff; border-left: 4px solid #3b82f6; padding: 15px 20px; margin: 20px 0; border-radius: 0 8px 8px 0;\"><strong>\ud83d\udca1 To summarize:<\/strong><br \/>\nThe only weak point is <strong>yourself<\/strong>. Choose a strong password and keep it secret!<\/div>","protected":false},"excerpt":{"rendered":"<p>Erfahre, wie Edelmetall-Vault deine Daten sch\u00fctzt \u2013 verst\u00e4ndlich erkl\u00e4rt, ohne zu technisch zu werden. Zero-Knowledge-Prinzip Das Zero-Knowledge-Prinzip bedeutet: Der Server speichert deine Daten, aber er kann sie nicht lesen. Er wei\u00df &#8222;null&#8220; (zero) \u00fcber den Inhalt. So funktioniert es Du gibst dein Passwort ein \u2013 nur in deinem Browser Dein Browser erstellt einen Schl\u00fcssel \u2013 [&hellip;]<\/p>\n","protected":false},"featured_media":847,"parent":0,"menu_order":16,"comment_status":"open","ping_status":"closed","template":"","meta":{"pmpro_default_level":""},"docs_category":[16],"class_list":["post-693","docs","type-docs","status-publish","has-post-thumbnail","hentry","docs_category-sicherheit","pmpro-has-access"],"blocksy_meta":[],"_links":{"self":[{"href":"https:\/\/gold-portfolio.com\/en\/wp-json\/wp\/v2\/docs\/693","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/gold-portfolio.com\/en\/wp-json\/wp\/v2\/docs"}],"about":[{"href":"https:\/\/gold-portfolio.com\/en\/wp-json\/wp\/v2\/types\/docs"}],"replies":[{"embeddable":true,"href":"https:\/\/gold-portfolio.com\/en\/wp-json\/wp\/v2\/comments?post=693"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/gold-portfolio.com\/en\/wp-json\/wp\/v2\/media\/847"}],"wp:attachment":[{"href":"https:\/\/gold-portfolio.com\/en\/wp-json\/wp\/v2\/media?parent=693"}],"wp:term":[{"taxonomy":"docs_category","embeddable":true,"href":"https:\/\/gold-portfolio.com\/en\/wp-json\/wp\/v2\/docs_category?post=693"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}