Logo
Cairnify

Zero-Knowledge Secrets

Overview

The asterisk command (*) is Cairnify’s zero-knowledge secret sharing feature. It allows you to create encrypted, password-protected links for sharing sensitive information securely. The content is encrypted client-side, meaning even Cairnify’s servers never see your unencrypted data.

How It Works

* your secret message here

Creates an encrypted link containing your secret that can only be decrypted with a password

Examples

* API_KEY=sk_live_1234567890abcdef

Creates a secure link to share an API key with a team member

* Database Password: MySecureP@ssw0rd123

Generates an encrypted link for sharing database credentials

* SSH Key: -----BEGIN RSA PRIVATE KEY-----...

Securely shares SSH private keys or certificates

* Recovery codes: A1B2C3, D4E5F6, G7H8I9

Shares 2FA backup codes or recovery information securely

Common Use Cases

  • 🔐 API Keys: Share API keys and tokens with team members securely
  • 🗝️ Passwords: Send passwords for shared accounts or services
  • 📜 Private Keys: Transfer SSH keys, SSL certificates, or encryption keys
  • 💳 Financial Info: Share credit card details or banking information safely
  • 📱 2FA Codes: Send backup codes or recovery keys for two-factor authentication
  • 🎫 License Keys: Share software licenses or activation codes

Security Features

Zero-Knowledge Architecture

  • Client-Side Encryption: Your secret is encrypted in your browser before being sent
  • No Server Access: Cairnify servers never see your unencrypted data
  • Password Protected: Only someone with the password can decrypt the content
  • Secure Link Generation: Creates a unique, unguessable URL for each secret
  • Auto-Expiration: Links can be set to expire after a certain time or number of views

Tips & Best Practices

  • • Use strong, unique passwords for each secret you create
  • • Share the password through a different channel than the link (e.g., link via email, password via text)
  • • Set expiration times for highly sensitive information
  • • Never include the password in the same message as the secret link
  • • Consider using passphrases instead of passwords for easier verbal sharing
  • • Verify the recipient before sharing sensitive information
  • • Use the view limit feature to ensure secrets are accessed only once

How to Share

Step 1: Create the Secret

Type * followed by your secret message

Cairnify generates an encrypted link and prompts for a password

Step 2: Set a Password

Choose a strong password that the recipient will use to decrypt

Optionally set expiration time or view limits

Step 3: Share Securely

Send the link and password through separate communication channels

Example: Link via Slack, password via SMS

Pro Tip: Cairnify’s zero-knowledge architecture ensures your secrets remain private. Even we can’t see your data - it’s encrypted in your browser before being sent to our servers, and only the password holder can decrypt it.