Sovereign Encryption POST-QUANTUM BUILD 071

LOCAL POST-QUANTUM MESSAGING

Private Messaging

Encrypt in this browser with no accounts, servers, or middlemen.
Swap public keys once, then send freely.

Self-test running...

Build verification

Run local checks for the embedded primitives and the 10,000-word Amulet passphrase pool.

ReadyChecks run entirely in this browser.

identityML-KEM keypair, armor, fingerprint.

messageTS4 v6 text encrypt/decrypt.

fileTS4F v6 file envelope.

verifyRNG, SHA-3, AES-GCM, HKDF, ML-KEM, Argon2.

STEP 1

Your Sovereign identity

Generate a keypair once. Keep the private key offline; share only the public key on the right.

Identity ready (no identity loaded) ML-KEM-768 OK AES-GCM OK

PRIVATE KEY — NEVER SHARE

This is your .se.key (private). Anyone with it can read every message sent to you.

Encrypt with a passphrase

8 Amulet words is about 106 bits. The die fills both fields.

Forget the passphrase, lose your identity. No recovery.

No identity loaded.

PUBLIC KEY — SAFE TO SHARE

Share with anyone who wants to send to you. Safe to post anywhere.

IDENTITY FINGERPRINT

(no identity loaded) SHA-256/8 OF YOUR PUBLIC KEY

YOUR PUBLIC KEY

STEP 2

Send to a recipient

Paste their public key. Encrypt a message or a file.

Recipient ready (no recipient loaded)

Address book

No saved recipients yet.

Stored locally in this browser only.

RECIPIENT'S PUBLIC KEY

Upload a public key file directly instead of opening it and copying by hand.

RECIPIENT FINGERPRINT

(paste or upload a public key to see its fingerprint)

Let the recipient reply to meAdds your public key to the message so they can answer back.

SEND TEXT MESSAGE ENCRYPTED — PASTE TO ANY MESSENGER

SEND FILE FILE TO ENCRYPT .LOCKED FILE (AUTO-DOWNLOADED)

ReadEncryptArmorSave

STEP 3

Read what was sent to you

Uses the secret key from Step 1.

RECEIVE TEXT

Decrypt Message from Correspondent

Paste the ciphertext blob someone sent you here. This is the main place to read incoming messages.

PASTE RECEIVED CIPHERTEXT Detected ML-KEM/AES-GCM ciphertext PLAINTEXT

RECEIVE FILE UPLOAD .LOCKED, OR PASTE THE ARMORED TEXT

ParseDecapDecryptSave

TimeSeed v3

TimeSeed -> LockIt passkeys

Derive reproducible LockIt passkeys from a single TimeSeed and date.

TimeSeed (50 characters)

Saved TimeSeeds

Pepper (optional extra secret) Date Time (UTC, optional)

Private Messaging

Your Sovereign identity

Send to a recipient

Read what was sent to you

Decrypt Message from Correspondent

Warning: iOS not supported

TimeSeed -> LockIt passkeys

Saved TimeSeeds

Daily Key

Long-term Key

LockIt passkey

Text Mode

File Mode

Private Messaging

Your Sovereign identity

Send to a recipient

Read what was sent to you

Decrypt Message from Correspondent

Warning: iOS not supported

Welcome to Sovereign Encryption

Create your identity

Send and read

TimeSeed -> LockIt passkeys

Saved TimeSeeds

Daily Key

Long-term Key

LockIt passkey

Text Mode

File Mode

Saved TimeSeeds