Developer builds zero-knowledge encrypted cloud storage app with client-side crypto
A developer named Rajath Ramesh has spent two years building Silvora, a zero-knowledge cloud storage application where the server stores only ciphertext and holds no decryption capability. The app derives encryption keys on-device using Argon2id, assigns each file its own key via HKDF-SHA256, and encrypts all data with XChaCha20-Poly1305 AEAD — meaning the server never sees plaintext. Password recovery is handled entirely client-side through a BIP39 24-word mnemonic phrase generated at registration, since the server cannot reset credentials it never knew. File integrity is enforced via encrypted per-file manifests containing SHA-256 chunk hashes, allowing tampering to be detected on every download. Silvora is currently in Google Play closed testing, with the backend built on Django REST Framework and the mobile client developed in Flutter.
This is an AI-generated summary. ShortSingh links to the original source for the complete article.
Discussion (0)
Log in to join the discussion and vote.
Log in