Free OpenPGP Encryption

Your keys.
Your device.
Your rules.

Encrypt messages, generate keys, verify signatures, and store private notes. All in your browser. No account. No server. Nothing ever leaves your device.

Scroll

Capabilities

What can you do?

Encrypt & Decrypt Messages

Write a message, pick who should read it, and encrypt. Vault produces standard PGP blocks compatible with GPG, Thunderbird, and ProtonMail.

Generate & Manage Keys

Create new encryption key pairs in seconds. Choose Curve25519 for modern security or RSA for compatibility. All keys saved in your encrypted vault.

Verify Signatures

Confirm messages really came from who they claim. Paste the message and signature — Vault checks every key in your keyring.

Store Encrypted Notes

Keep sensitive text — passwords, API keys, configs — in an encrypted workspace. Tag and organize. Send directly to Encrypt or Decrypt with one click.

Process

Four steps to security

Create Your Vault

Choose a master passphrase. Your vault is created and encrypted on your device.

Add Your Keys

Generate a fresh key pair or import existing PGP keys. Add contacts by importing public keys.

Encrypt & Decrypt

Switch between tabs to encrypt messages, decrypt incoming ones, or verify signatures.

Lock and Go

Close the tab. Your encryption key is wiped from memory. Data stays encrypted.

Comparison

Why Vault?

Feature	Vault	Typical Tools
Key storage	Encrypted & persistent	Gone on reload
Algorithms	5 options	RSA only
Multiple recipients	Yes	No
Auto-detect key	Yes	No
Encrypted notes	Yes	No
Auto-lock	Yes	No
Works offline	Yes	Varies

Security

Military-grade protection

Even if someone gains access to your browser storage, your data remains unreadable.

Nothing leaves your device

All encryption happens in your browser. Zero network calls.

Brute-force resistant

Argon2id with 64 MiB memory cost makes GPU attacks impractical.

AES-256-GCM encryption

Your entire vault encrypted with the current standard.

Open source

Every line of code is auditable. Don't trust — verify.

// Encryption Architecture

Your Passphrase
      |
      v
Argon2id (64 MiB, 3 iterations)
      |
      v
256-bit AES-GCM Key
      |
      v
Encrypts entire vault
      |
      v
Keys, notes, settings
      — all encrypted

FAQ

Questions answered

What is Vault?

Vault is a free, open-source encryption tool that runs entirely in your browser. It lets you generate PGP keys, encrypt and decrypt messages, verify signatures, and store encrypted notes — all without a server or account.

Is Vault free?

Yes. Completely free, no accounts, no subscriptions, no limits.

Does Vault send my data to a server?

No. There is no server. All encryption, decryption, and key generation happen locally in your browser. Your keys and messages never leave your device.

How safe is Vault against password cracking?

Vault uses Argon2id — the same password-hardening algorithm used by 1Password and Bitwarden. It requires large amounts of memory to compute, which makes brute-force attacks using GPUs impractical.

Can I use Vault on multiple devices?

Yes. Export your vault as an encrypted file from one device and import it on another. You can change the passphrase during import.

Is Vault compatible with other PGP tools?

Yes. Vault uses standard OpenPGP formats. Messages encrypted with Vault can be decrypted by GPG, Thunderbird, ProtonMail, and any compatible PGP tool.

Get started now

Create a new vault in seconds — no account, no email, no server.

Your keys.Your device.Your rules.