Skip to content

mplorentz/horcrux

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

689 Commits
.claude
.claude
 
 
.cursor
.cursor
 
 
.flutter-sdk
.flutter-sdk
 
 
.github/workflows
.github/workflows
 
 
.specify
.specify
 
 
.vscode
.vscode
 
 
android
android
 
 
assets
assets
 
 
docs
docs
 
 
fastlane
fastlane
 
 
fonts
fonts
 
 
ios
ios
 
 
lib
lib
 
 
linux
linux
 
 
macos
macos
 
 
scripts
scripts
 
 
specs
specs
 
 
test
test
 
 
web
web
 
 
windows
windows
 
 
.cursorrules
.cursorrules
 
 
.dockerignore
.dockerignore
 
 
.env.example
.env.example
 
 
.fvmrc
.fvmrc
 
 
.gitignore
.gitignore
 
 
.metadata
.metadata
 
 
CLAUDE.md
CLAUDE.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
DEPLOYMENT_CHECKLIST.md
DEPLOYMENT_CHECKLIST.md
 
 
DESIGN_GUIDE.md
DESIGN_GUIDE.md
 
 
Gemfile
Gemfile
 
 
Gemfile.lock
Gemfile.lock
 
 
LICENSE
LICENSE
 
 
NIP-draft.md
NIP-draft.md
 
 
README.md
README.md
 
 
analysis_options.yaml
analysis_options.yaml
 
 
dart_test.yml
dart_test.yml
 
 
l10n.yaml
l10n.yaml
 
 
pubspec.lock
pubspec.lock
 
 
pubspec.yaml
pubspec.yaml
 
 

Repository files navigation

Horcrux

Horcrux is alpha software, do not use it to back up real secrets at this time.

Horcrux is an app for backup and recovery of sensitive data like digital wills, passwords, and cryptographic keys. Rather than backing the data up to the cloud, Horcrux uses advanced cryptography to distribute the data to the devices of the people you choose. All data is encrypted and can only be decrypted when most or all of these people provide their consent. The result is a virtual vault that no single person or key can open.

Privacy

Horcrux is designed to protect your data and metadata, but all software comes with inherent risks. To help you understand whether Horcrux is appropriate for your individual threat model here are some of the security tradeoffs we have made:

Horcrux is built on the Nostr protocol which makes strong guarantees about the authorship and integrity of data. All messages between users are end-to-end encrypted using NIP-44 gift wraps, which hides both the content and the sender's public key from relays. Your vault contents and cryptographic keys are always encrypted at rest. Horcrux allows you to choose the relay servers you use to exchange data with your stewards. While these servers act as middlemen who can never decrypt your vault data the following metadata is observable:

  • A malicious relay can associate your IP address with your Nostr identity. Using a network-layer anonymizer like Tor or I2P can be used to mitigate this risk.
  • A malicious relay could observe the timing of published gift-wrap events to build a list of stewards (identified by their Nostr identity) for a given vault.
  • Horcrux uses its own notification service, Google's Firebase Cloud Messaging service, and Apple's Push Notification Service in order to deliver push notifications for recovery events to any user who opts in to push notifications. The Horcrux notification server holds a map of Nostr identities to push notification device tokens, and could build lists of stewards based on the timing of notifications. Apple and Google's notification servers only receive device tokens but could use timing to identify groups of stewards by their device tokens.

Development

This project is in active development. See CONTRIBUTING.md for information about contributing.

Funding

This project is funded by OpenSats.org - supporting open-source Bitcoin and Nostr development.

License

MIT License - see LICENSE for details.

About

Backup sensitive files to friends and family

Resources

Readme

License

MIT license

Contributing

Contributing
Activity

Stars

15 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

 
 
 

Contributors

Languages