Security you can verify, not just trust
IronVault is built zero-knowledge: your data is encrypted with AES-256-GCM on your device using a key derived from your master password, which never leaves your device. Even we cannot read your vault.
- Zero-knowledge, end-to-end encryption — keys derived client-side
- AES-256-GCM authenticated encryption for every item
- Two-stage authentication: account login + vault master password
- Built-in TOTP 2FA and biometric unlock (Face ID / Touch ID / fingerprint)
- Encrypted cloud sync — the server only ever stores ciphertext
Back to IronVault home · Security — Zero-Knowledge AES-256 Encryption | IronVault