Skip to main content

Security

User private keys

All user key pairs are always randomly generated. Before users' private keys are uploaded to blindnet servers, they are encrypted with a symmetric key derived from user passwords. This allows users to benefit from private data transfers using any browser or device, while protecting their private keys and ensuring the data transfer between any two users is end-to-end encrypted.

User passwords

note

To allow your users to use only one password for both your application and blindnet, you must first split their passwords (i.e., you must use user password to derive two secrets, one for your application and one for blindnet).

To provide seamless user experience in your application while preserving the highest level of data privacy for your users, your users can still input only one password for both authenticating on your application and securing blindnet private keys. However, it is important that under the hood you split this password into two secrets by using blindnet client SDK. This is needed because using the same secret in both your application and blindnet would give you access to user private keys.

See our documentation to see how to easily split user passwords with our SDKs.