Educational
Encryption Explained
A guide for people who don't write cryptography for a living. Read this once and you'll understand exactly what DRIVUNO is doing — and why it matters.
1 · The two models
Most clouds use server-side encryption: the provider encrypts your files on their servers using keys they manage. It's better than nothing, but the provider holds both the lock and the key.
DRIVUNO uses client-side encryption: your device encrypts files before they leave it, with keys derived from a password only you know. The provider only ever sees scrambled bytes.
2 · What “zero-knowledge” really means
Zero-knowledge is a property of the system, not a marketing word. It means we have no technical way to read user content, even with full administrative access to our own infrastructure. Not “we promise not to look” — “we built it so we cannot look.”
3 · Why encryption before upload matters
4 · Recovery keys, and why they matter
Because we cannot read your password, we cannot reset it. To prevent permanent lockout, you can set up recovery factors: a Recovery Key (a string you write down), a secondary email, and SMS. Each factor independently wraps your master key on your device — never on our server.
5 · The cryptographic primitives
- Argon2id — turns your password into a strong key, slowly enough to defeat brute force.
- XChaCha20-Poly1305 — encrypts your file bytes and detects any tampering.
- X25519 — lets us seal a file key for a specific recipient, including future shares.
- Ed25519 — signs share manifests so a tampered link is detected, not silently followed.
- SHA-256 — fingerprints the ciphertext, so we verify before decrypting.
All standard, peer-reviewed primitives. No homebrew cryptography.
Want the implementation detail? Read the architecture page or the whitepaper.