Guides/Cryptography

Why WebCrypto is the boring, correct place to encrypt files

The safest cryptography is the one nobody has to write twice. WebCrypto is the standard, audited encryption library built into every modern browser — hardware-accelerated, side-channel-resistant, and reviewed by the people who ship the browsers themselves.

What Elba does not do

Elba does not include its own AES implementation. It does not include its own random-number generator. It does not include its own key-derivation code. Every one of those calls goes to the browser's SubtleCrypto API.

What we take responsibility for

We take responsibility for calling those primitives correctly, choosing a sane mode (AES-256-GCM), a sane derivation (PBKDF2 with per-vault salt), and never persisting the key. That code is inside the HTML file for you to read.

Questions people actually ask

Which browsers count?
Chromium-family browsers (Chrome, Edge, Brave, Arc) and Firefox all ship a full WebCrypto. Elba targets Chromium for the file-system access it needs.
Is WebCrypto really as good as a native library?
For AES-GCM it is a thin wrapper over the same primitives OpenSSL uses. It's the same crypto, in a smaller box.

Take the island

Elba is one HTML file. It runs locally in a Chromium browser, seals a folder with AES-256-GCM, never phones home, and becomes open source on 1 January 2030.

  1. €49MMXXVI· now ·
  2. €39MMXXVII2027
  3. €29MMXXVIII2028
  4. €19MMXXIX2029
  5. FreeMMXXX2030

the price falls each year · free to all 1 jan 2030

pay once · no account · nothing leaves

Related guides