Zum Inhalt springen
Encipher.Me

Login

Access to your secure area

🔑 Forgot password?

Don't have an account yet? Register

FAQ & Help

Frequently asked questions about Zero-Knowledge encryption

15 questions answered
Zero-Knowledge Security
Instant Search
Zero-Knowledge means that the server can never see your unencrypted data or encryption keys. Your messages are encrypted directly in your browser before being sent to the server. Only encrypted data leaves your computer.
We use AES-256-GCM encryption with randomly generated keys. The encryption key is transmitted in the URL fragment (after the #) and never appears in server logs or monitoring protocols.
Self-destructing messages significantly increase security. After the set access limit or after 30 days, messages are automatically and irreversibly deleted. This prevents long-term data storage and reduces risks.
No, this is an important security feature. Once a message has reached its access limit or has been deleted, it is irretrievably lost. Save important information separately before sharing the link.
The key is only stored in the URL after the #. Browsers never send URL fragments to servers, so our server doesn't know your key. Without the complete link, no one can decrypt your message.
We use proven encryption standards and Zero-Knowledge architecture. Even if our server is compromised, your messages are protected because we don't know the keys. For maximum security, only share links through secure channels.
Registration is optional! Anonymous use is always possible. An account only allows you to track your own messages and add comments. Zero-Knowledge encryption remains intact even for registered users.
Optionally protect your messages with an additional password. The recipient must then know both the link and the password. The password is hashed using ARGON2ID and provides protection even if the decryption link is compromised.
All modern browsers with Web Crypto API support: Chrome 37+, Firefox 34+, Safari 11+, Edge 12+. Very old browsers may not be able to use the encryption functions.
QR codes contain the complete encrypted link including the key. They are convenient for mobile devices, but only share them with trusted people. The QR code is as secure as the direct link.
Yes, but within limits! Recommended are up to 25 pages of normal text (about 50,000 characters). Larger texts can make the URL very long or cause problems. For full files (PDF, images, Office documents), the internal area provides the attachment feature up to 5 MB - see next question.
Yes - registered users can attach a file up to 5 MB in addition to the message in the internal area (New Message) since May 2026. The file is encrypted exclusively in the browser with AES-256-GCM before reaching our servers - so Zero-Knowledge applies to attachments as well. Use drag-and-drop or file picker. On retrieval, a download button appears. Self-destruction applies to the attachment too. All file types are supported: PDF, images, Office documents, archives. Larger files (>5 MB) put too much strain on browser memory - for those, continue using specialized tools like VeraCrypt.
For browser errors or connection problems, try a different browser or try again later. Make sure JavaScript is enabled. For persistent problems, contact our support.
No! We cannot decrypt, analyze, or sell your encrypted messages. We only store encrypted data blocks. For all users, we store IP addresses during suspicious activities (spam protection). For registered users, we additionally store security data (browser info, sessions) for account security - never for advertising or sales.
For all users, we store IP addresses during security violations (automatic ban after 5 failed attempts). For registered users, we additionally store browser information and session data for a maximum of 30 days. This data serves exclusively for security and is visible for registered users in the security dashboard.

Need more help?

If you couldn't find your question here, we're happy to help.

Test message Register Contact us

Download

Nutzen Sie Encipher.Me als Desktop-Anwendung für Windows. Die App greift direkt auf unsere Webseite zu — Ihre Daten werden wie gewohnt verschlüsselt und sicher übertragen.

Encipher.Me Desktop (Windows) ZIP-Archiv (~2 MB) — Benötigt Windows 10/11 mit WebView2

Hinweis zur Windows-Sicherheitswarnung: Da die Anwendung nicht mit einem kostenpflichtigen Code-Signing-Zertifikat signiert ist, zeigt Windows SmartScreen beim ersten Start eine Warnung an. Klicken Sie auf „Weitere Informationen" und dann auf „Trotzdem ausführen". Die App ist sicher — sie öffnet lediglich unsere Webseite in einem eigenen Fenster.