Text Encryption (AES-GCM)
✓ Link copiedProtect any text with a password using AES-256-GCM, the same authenticated encryption trusted by modern security standards. Type or paste your message, choose a password, and get back a compact base64 string you can safely send by email or chat; the recipient pastes it back with the same password to recover the original. Crucially, everything runs locally in your browser — your text and password are never uploaded, stored, or logged, so even sensitive notes, passwords, or visa documents stay on your device. Each encryption derives a strong key from your password with PBKDF2 (100,000 iterations) and uses a fresh random salt and nonce, so encrypting the same text twice produces different output and tampering is automatically detected on decryption. Free, fast, and fully private.
Everything happens on your device. Your text and password are never uploaded, stored, or logged — encryption runs entirely in your browser.
How to use
Choose Encrypt, paste the text you want to protect, enter a password, and press Encrypt to get a base64 string — copy it and share it however you like. To read an encrypted message, switch to Decrypt, paste the base64 string, enter the same password, and press Decrypt. Use the Show toggle to check your password as you type. The same password must be used on both sides; there is no recovery if it is lost.
Frequently asked questions
- Is my text or password sent anywhere?
- No. All encryption and decryption happen locally in your browser using the Web Crypto API. Your plaintext, your password, and the resulting ciphertext are never uploaded to a server, stored, or logged. You can even use the tool offline. That is what makes it safe for genuinely sensitive content.
- What encryption does it use?
- It uses AES-256-GCM, an authenticated encryption mode that protects both the confidentiality and the integrity of your text. The key is derived from your password with PBKDF2-HMAC-SHA-256 using 100,000 iterations and a random 16-byte salt, and each message uses a fresh random 12-byte nonce. The output packs the salt, nonce, and ciphertext together as base64, so the password is the only thing you need to remember.
- What happens if I forget the password?
- The text cannot be recovered. There is no backdoor or reset — that is the whole point of strong encryption. If decryption fails, it means the password is wrong or the encrypted text was changed; AES-GCM detects any alteration and refuses to return tampered data. Store your password somewhere safe before encrypting anything important.