Einenlum.

Client-side encryption for web apps (4/4): Possible improvements and conclusion

Sun Jan 19 2025

There are still many things we could do to improve the security of our app, but we learned a lot.

Client-side encryption for web apps (3/4): Key Encryption Key (KEK)

Sat Jan 18 2025

Here comes a new challenger: the Key Encryption Key. We'll see how it can help us solve the issue of changing a user's password without losing their data.

Client-side encryption for web apps (2/4): Storing the salt and DEK, and encrypting/decrypting data

Fri Jan 17 2025

We need to store the salt on the backend. We also need to store the DEK client-side. We will then encrypt and decrypt data.

Client-side encryption for web apps (1/4): PBKDF2, DEK and CryptoJS

Thu Jan 16 2025

In this series of articles, I document my journey to learning client-side encryption. We will cover how to derive a key from a password in the browser.

The beauty of goofy diagrams

Wed Jan 15 2025

Looking serious is not always the best way to teach things.