Encrypted File Names

Last updated 03 May 2026 14 views 🔐 Encrypted Vault

What Are Encrypted File Names?

When you upload a file to the vault, the file name is encrypted in your browser using the same AES-256-GCM key as the file content. The encrypted name is stored alongside the file metadata on our servers.

Why Does This Matter?

Most "encrypted" storage services protect file contents but store file names in plaintext. This means the provider — and anyone who gains access to their database — can see what your files are called. File names alone can reveal sensitive information: tax_return_2025.pdf, medical_results.doc, whistleblower_evidence.zip.

With encrypted file names, our database stores only encrypted blobs of metadata. We don't know what your files are called.

How It Works

This happens automatically — you don't need to enable anything. When you upload a file:

  1. Your browser encrypts the file content with AES-256-GCM.
  2. Your browser separately encrypts the file name with the same key.
  3. Both encrypted blobs are sent to the server.
  4. When you view your vault, your browser decrypts the file names for display.

The file names you see in the vault interface are decrypted locally in your browser. Our server never sees the plaintext names.

Encrypted Vault All Categories

Didn't find what you were looking for?

Our support team is happy to help.

Open a Ticket