Documentation

About Keyvault

keyvault is a not-for-profit, blockchain-based password manager that prioritizes security, decentralization, and user control. Unlike traditional password managers that rely on centralized servers, keyvault removes middlemen by storing encrypted credentials directly on the blockchain.

Currently, keyvault operates on the Astar EVM Mainnet, but future expansions to other blockchains are planned.

Security & Encryption

keyvault encrypts all credentials using 256-bit AES-GCM, a highly secure, quantum-resistant encryption standard. Importantly, you alone hold your encryption key—keyvault never has access to it. This ensures total security, but also means that if you lose your encryption key, you will lose access to your credentials permanently.

256-bit AES-GCM is trusted by governments and security professionals worldwide. Even with quantum computing advancements, brute-forcing a 256-bit encryption key remains infeasible.

Getting Started

keyvault is currently accessible via the Chrome and Brave desktop browsers. Install the extension from the Chrome Web Store.

The open-source code for keyvault can be found on Github.

Key Features

• Decentralized and blockchain-based, ensuring no reliance on third parties.
• Securely encrypt and store credentials using 256-bit AES-GCM.
• Access credentials anywhere, as long as the blockchain remains operational.
• Supports message encryption using OpenPGP.js.
• Allows exporting credentials in an encrypted JSON format for backup purposes.

Encrypting Messages with keyvault

keyvault allows users to encrypt and decrypt messages securely. Users can generate and publish a public key to the keyvault smart contract. If User A wants to send a private message to User B,keyvault will encrypt the message in such a way that only User B can decrypt it.

Exporting & Importing Credentials

keyvault allows users to export their credentials in an encrypted JSON file. This ensures that your credentials remain safe during transfer or backup.

To import your credentials back into keyvault, simply upload the encrypted JSON file, and decrypt it using your original encryption key.

Video Guides

Watch these screencasts to see keyvault in action:

1. 1. Initializing the keyvault extension
2. 2. Adding a new credential
3. 3. Syncing your credentials to the smart contract
4. 4. Importing encryption key
5. 5. Generating and publishing an encryption keypair
6. 6. Encrypting a message that only your friend can read
7. 7. Decrypting a message
8. 8. Exporting and importing credentials

Future Plans

More features are in development, including support for additional blockchains, expanded browser compatibility, and mobile app support.