diff --git a/AES.js b/AES.js
new file mode 100644
index 0000000..ff3bb7b
--- /dev/null
+++ b/AES.js
@@ -0,0 +1,39 @@
+"use strict";var AES={cipher:{},hash:{},mode:{},misc:{},codec:{},exception:{corrupt:function(a){this.toString=function(){return"CORRUPT: "+this.message};this.message=a},invalid:function(a){this.toString=function(){return"INVALID: "+this.message};this.message=a},bug:function(a){this.toString=function(){return"BUG: "+this.message};this.message=a}}};
+AES.cipher.aes=function(a){this.h[0][0][0]||this.w();var b,c,d,e,f=this.h[0][4],g=this.h[1];b=a.length;var h=1;if(b!==4&&b!==6&&b!==8)throw new AES.exception.invalid("invalid aes key size");this.a=[d=a.slice(0),e=[]];for(a=b;a<4*b+28;a++){c=d[a-1];if(a%b===0||b===8&&a%b===4){c=f[c>>>24]<<24^f[c>>16&255]<<16^f[c>>8&255]<<8^f[c&255];if(a%b===0){c=c<<8^c>>>24^h<<24;h=h<<1^(h>>7)*283}}d[a]=d[a-b]^c}for(b=0;a;b++,a--){c=d[b&3?a:a-4];e[b]=a<=4||b<4?c:g[0][f[c>>>24]]^g[1][f[c>>16&255]]^g[2][f[c>>8&255]]^
+g[3][f[c&255]]}};
+AES.cipher.aes.prototype={encrypt:function(a){return this.H(a,0)},decrypt:function(a){return this.H(a,1)},h:[[[],[],[],[],[]],[[],[],[],[],[]]],w:function(){var a=this.h[0],b=this.h[1],c=a[4],d=b[4],e,f,g,h=[],i=[],k,j,l,m;for(e=0;e<0x100;e++)i[(h[e]=e<<1^(e>>7)*283)^e]=e;for(f=g=0;!c[f];f^=k||1,g=i[g]||1){l=g^g<<1^g<<2^g<<3^g<<4;l=l>>8^l&255^99;c[f]=l;d[l]=f;j=h[e=h[k=h[f]]];m=j*0x1010101^e*0x10001^k*0x101^f*0x1010100;j=h[l]*0x101^l*0x1010100;for(e=0;e<4;e++){a[e][f]=j=j<<24^j>>>8;b[e][l]=m=m<<24^m>>>8}}for(e=
+0;e<5;e++){a[e]=a[e].slice(0);b[e]=b[e].slice(0)}},H:function(a,b){if(a.length!==4)throw new AES.exception.invalid("invalid aes block size");var c=this.a[b],d=a[0]^c[0],e=a[b?3:1]^c[1],f=a[2]^c[2];a=a[b?1:3]^c[3];var g,h,i,k=c.length/4-2,j,l=4,m=[0,0,0,0];g=this.h[b];var n=g[0],o=g[1],p=g[2],q=g[3],r=g[4];for(j=0;j<k;j++){g=n[d>>>24]^o[e>>16&255]^p[f>>8&255]^q[a&255]^c[l];h=n[e>>>24]^o[f>>16&255]^p[a>>8&255]^q[d&255]^c[l+1];i=n[f>>>24]^o[a>>16&255]^p[d>>8&255]^q[e&255]^c[l+2];a=n[a>>>24]^o[d>>16&
+255]^p[e>>8&255]^q[f&255]^c[l+3];l+=4;d=g;e=h;f=i}for(j=0;j<4;j++){m[b?3&-j:j]=r[d>>>24]<<24^r[e>>16&255]<<16^r[f>>8&255]<<8^r[a&255]^c[l++];g=d;d=e;e=f;f=a;a=g}return m}};
+AES.bitArray={bitSlice:function(a,b,c){a=AES.bitArray.P(a.slice(b/32),32-(b&31)).slice(1);return c===undefined?a:AES.bitArray.clamp(a,c-b)},concat:function(a,b){if(a.length===0||b.length===0)return a.concat(b);var c=a[a.length-1],d=AES.bitArray.getPartial(c);return d===32?a.concat(b):AES.bitArray.P(b,d,c|0,a.slice(0,a.length-1))},bitLength:function(a){var b=a.length;if(b===0)return 0;return(b-1)*32+AES.bitArray.getPartial(a[b-1])},clamp:function(a,b){if(a.length*32<b)return a;a=a.slice(0,Math.ceil(b/
+32));var c=a.length;b&=31;if(c>0&&b)a[c-1]=AES.bitArray.partial(b,a[c-1]&2147483648>>b-1,1);return a},partial:function(a,b,c){if(a===32)return b;return(c?b|0:b<<32-a)+a*0x10000000000},getPartial:function(a){return Math.round(a/0x10000000000)||32},equal:function(a,b){if(AES.bitArray.bitLength(a)!==AES.bitArray.bitLength(b))return false;var c=0,d;for(d=0;d<a.length;d++)c|=a[d]^b[d];return c===0},P:function(a,b,c,d){var e;e=0;if(d===undefined)d=[];for(;b>=32;b-=32){d.push(c);c=0}if(b===0)return d.concat(a);
+for(e=0;e<a.length;e++){d.push(c|a[e]>>>b);c=a[e]<<32-b}e=a.length?a[a.length-1]:0;a=AES.bitArray.getPartial(e);d.push(AES.bitArray.partial(b+a&31,b+a>32?c:d.pop(),1));return d},k:function(a,b){return[a[0]^b[0],a[1]^b[1],a[2]^b[2],a[3]^b[3]]}};
+AES.codec.utf8String={fromBits:function(a){var b="",c=AES.bitArray.bitLength(a),d,e;for(d=0;d<c/8;d++){if((d&3)===0)e=a[d/4];b+=String.fromCharCode(e>>>24);e<<=8}return decodeURIComponent(escape(b))},toBits:function(a){a=unescape(encodeURIComponent(a));var b=[],c,d=0;for(c=0;c<a.length;c++){d=d<<8|a.charCodeAt(c);if((c&3)===3){b.push(d);d=0}}c&3&&b.push(AES.bitArray.partial(8*(c&3),d));return b}};
+AES.codec.hex={fromBits:function(a){var b="",c;for(c=0;c<a.length;c++)b+=((a[c]|0)+0xf00000000000).toString(16).substr(4);return b.substr(0,AES.bitArray.bitLength(a)/4)},toBits:function(a){var b,c=[],d;a=a.replace(/\s|0x/g,"");d=a.length;a+="00000000";for(b=0;b<a.length;b+=8)c.push(parseInt(a.substr(b,8),16)^0);return AES.bitArray.clamp(c,d*4)}};
+AES.codec.base64={D:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/",fromBits:function(a,b){var c="",d,e=0,f=AES.codec.base64.D,g=0,h=AES.bitArray.bitLength(a);for(d=0;c.length*6<h;){c+=f.charAt((g^a[d]>>>e)>>>26);if(e<6){g=a[d]<<6-e;e+=26;d++}else{g<<=6;e-=6}}for(;c.length&3&&!b;)c+="=";return c},toBits:function(a){a=a.replace(/\s|=/g,"");var b=[],c,d=0,e=AES.codec.base64.D,f=0,g;for(c=0;c<a.length;c++){g=e.indexOf(a.charAt(c));if(g<0)throw new AES.exception.invalid("this isn't base64!");
+if(d>26){d-=26;b.push(f^g>>>d);f=g<<32-d}else{d+=6;f^=g<<32-d}}d&56&&b.push(AES.bitArray.partial(d&56,f,1));return b}};AES.hash.sha256=function(a){this.a[0]||this.w();if(a){this.n=a.n.slice(0);this.i=a.i.slice(0);this.e=a.e}else this.reset()};AES.hash.sha256.hash=function(a){return(new AES.hash.sha256).update(a).finalize()};
+AES.hash.sha256.prototype={blockSize:512,reset:function(){this.n=this.N.slice(0);this.i=[];this.e=0;return this},update:function(a){if(typeof a==="string")a=AES.codec.utf8String.toBits(a);var b,c=this.i=AES.bitArray.concat(this.i,a);b=this.e;a=this.e=b+AES.bitArray.bitLength(a);for(b=512+b&-512;b<=a;b+=512)this.C(c.splice(0,16));return this},finalize:function(){var a,b=this.i,c=this.n;b=AES.bitArray.concat(b,[AES.bitArray.partial(1,1)]);for(a=b.length+2;a&15;a++)b.push(0);b.push(Math.floor(this.e/
+4294967296));for(b.push(this.e|0);b.length;)this.C(b.splice(0,16));this.reset();return c},N:[],a:[],w:function(){function a(e){return(e-Math.floor(e))*0x100000000|0}var b=0,c=2,d;a:for(;b<64;c++){for(d=2;d*d<=c;d++)if(c%d===0)continue a;if(b<8)this.N[b]=a(Math.pow(c,0.5));this.a[b]=a(Math.pow(c,1/3));b++}},C:function(a){var b,c,d=a.slice(0),e=this.n,f=this.a,g=e[0],h=e[1],i=e[2],k=e[3],j=e[4],l=e[5],m=e[6],n=e[7];for(a=0;a<64;a++){if(a<16)b=d[a];else{b=d[a+1&15];c=d[a+14&15];b=d[a&15]=(b>>>7^b>>>18^
+b>>>3^b<<25^b<<14)+(c>>>17^c>>>19^c>>>10^c<<15^c<<13)+d[a&15]+d[a+9&15]|0}b=b+n+(j>>>6^j>>>11^j>>>25^j<<26^j<<21^j<<7)+(m^j&(l^m))+f[a];n=m;m=l;l=j;j=k+b|0;k=i;i=h;h=g;g=b+(h&i^k&(h^i))+(h>>>2^h>>>13^h>>>22^h<<30^h<<19^h<<10)|0}e[0]=e[0]+g|0;e[1]=e[1]+h|0;e[2]=e[2]+i|0;e[3]=e[3]+k|0;e[4]=e[4]+j|0;e[5]=e[5]+l|0;e[6]=e[6]+m|0;e[7]=e[7]+n|0}};
+AES.mode.ccm={name:"ccm",encrypt:function(a,b,c,d,e){var f,g=b.slice(0),h=AES.bitArray,i=h.bitLength(c)/8,k=h.bitLength(g)/8;e=e||64;d=d||[];if(i<7)throw new AES.exception.invalid("ccm: iv must be at least 7 bytes");for(f=2;f<4&&k>>>8*f;f++);if(f<15-i)f=15-i;c=h.clamp(c,8*(15-f));b=AES.mode.ccm.G(a,b,c,d,e,f);g=AES.mode.ccm.I(a,g,c,b,e,f);return h.concat(g.data,g.tag)},decrypt:function(a,b,c,d,e){e=e||64;d=d||[];var f=AES.bitArray,g=f.bitLength(c)/8,h=f.bitLength(b),i=f.clamp(b,h-e),k=f.bitSlice(b,
+h-e);h=(h-e)/8;if(g<7)throw new AES.exception.invalid("ccm: iv must be at least 7 bytes");for(b=2;b<4&&h>>>8*b;b++);if(b<15-g)b=15-g;c=f.clamp(c,8*(15-b));i=AES.mode.ccm.I(a,i,c,k,e,b);a=AES.mode.ccm.G(a,i.data,c,d,e,b);if(!f.equal(i.tag,a))throw new AES.exception.corrupt("ccm: tag doesn't match");return i.data},G:function(a,b,c,d,e,f){var g=[],h=AES.bitArray,i=h.k;e/=8;if(e%2||e<4||e>16)throw new AES.exception.invalid("ccm: invalid tag length");if(d.length>0xffffffff||b.length>0xffffffff)throw new AES.exception.bug("ccm: can't deal with 4GiB or more data");
+f=[h.partial(8,(d.length?64:0)|e-2<<2|f-1)];f=h.concat(f,c);f[3]|=h.bitLength(b)/8;f=a.encrypt(f);if(d.length){c=h.bitLength(d)/8;if(c<=65279)g=[h.partial(16,c)];else if(c<=0xffffffff)g=h.concat([h.partial(16,65534)],[c]);g=h.concat(g,d);for(d=0;d<g.length;d+=4)f=a.encrypt(i(f,g.slice(d,d+4)))}for(d=0;d<b.length;d+=4)f=a.encrypt(i(f,b.slice(d,d+4)));return h.clamp(f,e*8)},I:function(a,b,c,d,e,f){var g,h=AES.bitArray;g=h.k;var i=b.length,k=h.bitLength(b);c=h.concat([h.partial(8,f-1)],c).concat([0,
+0,0]).slice(0,4);d=h.bitSlice(g(d,a.encrypt(c)),0,e);if(!i)return{tag:d,data:[]};for(g=0;g<i;g+=4){c[3]++;e=a.encrypt(c);b[g]^=e[0];b[g+1]^=e[1];b[g+2]^=e[2];b[g+3]^=e[3]}return{tag:d,data:h.clamp(b,k)}}};
+AES.mode.ocb2={name:"ocb2",encrypt:function(a,b,c,d,e,f){if(AES.bitArray.bitLength(c)!==128)throw new AES.exception.invalid("ocb iv must be 128 bits");var g,h=AES.mode.ocb2.A,i=AES.bitArray,k=i.k,j=[0,0,0,0];c=h(a.encrypt(c));var l,m=[];d=d||[];e=e||64;for(g=0;g+4<b.length;g+=4){l=b.slice(g,g+4);j=k(j,l);m=m.concat(k(c,a.encrypt(k(c,l))));c=h(c)}l=b.slice(g);b=i.bitLength(l);g=a.encrypt(k(c,[0,0,0,b]));l=i.clamp(k(l,g),b);j=k(j,k(l,g));j=a.encrypt(k(j,k(c,h(c))));if(d.length)j=k(j,f?d:AES.mode.ocb2.pmac(a,
+d));return m.concat(i.concat(l,i.clamp(j,e)))},decrypt:function(a,b,c,d,e,f){if(AES.bitArray.bitLength(c)!==128)throw new AES.exception.invalid("ocb iv must be 128 bits");e=e||64;var g=AES.mode.ocb2.A,h=AES.bitArray,i=h.k,k=[0,0,0,0],j=g(a.encrypt(c)),l,m,n=AES.bitArray.bitLength(b)-e,o=[];d=d||[];for(c=0;c+4<n/32;c+=4){l=i(j,a.decrypt(i(j,b.slice(c,c+4))));k=i(k,l);o=o.concat(l);j=g(j)}m=n-c*32;l=a.encrypt(i(j,[0,0,0,m]));l=i(l,h.clamp(b.slice(c),m));k=i(k,l);k=a.encrypt(i(k,i(j,g(j))));if(d.length)k=
+i(k,f?d:AES.mode.ocb2.pmac(a,d));if(!h.equal(h.clamp(k,e),h.bitSlice(b,n)))throw new AES.exception.corrupt("ocb: tag doesn't match");return o.concat(h.clamp(l,m))},pmac:function(a,b){var c,d=AES.mode.ocb2.A,e=AES.bitArray,f=e.k,g=[0,0,0,0],h=a.encrypt([0,0,0,0]);h=f(h,d(d(h)));for(c=0;c+4<b.length;c+=4){h=d(h);g=f(g,a.encrypt(f(h,b.slice(c,c+4))))}b=b.slice(c);if(e.bitLength(b)<128){h=f(h,d(h));b=e.concat(b,[2147483648|0])}g=f(g,b);return a.encrypt(f(d(f(h,d(h))),g))},A:function(a){return[a[0]<<
+1^a[1]>>>31,a[1]<<1^a[2]>>>31,a[2]<<1^a[3]>>>31,a[3]<<1^(a[0]>>>31)*135]}};AES.misc.hmac=function(a,b){this.M=b=b||AES.hash.sha256;var c=[[],[]],d=b.prototype.blockSize/32;this.l=[new b,new b];if(a.length>d)a=b.hash(a);for(b=0;b<d;b++){c[0][b]=a[b]^909522486;c[1][b]=a[b]^1549556828}this.l[0].update(c[0]);this.l[1].update(c[1])};AES.misc.hmac.prototype.encrypt=AES.misc.hmac.prototype.mac=function(a,b){a=(new this.M(this.l[0])).update(a,b).finalize();return(new this.M(this.l[1])).update(a).finalize()};
+AES.misc.pbkdf2=function(a,b,c,d,e){c=c||1E3;if(d<0||c<0)throw AES.exception.invalid("invalid params to pbkdf2");if(typeof a==="string")a=AES.codec.utf8String.toBits(a);e=e||AES.misc.hmac;a=new e(a);var f,g,h,i,k=[],j=AES.bitArray;for(i=1;32*k.length<(d||1);i++){e=f=a.encrypt(j.concat(b,[i]));for(g=1;g<c;g++){f=a.encrypt(f);for(h=0;h<f.length;h++)e[h]^=f[h]}k=k.concat(e)}if(d)k=j.clamp(k,d);return k};
+AES.random={randomWords:function(a,b){var c=[];b=this.isReady(b);var d;if(b===0)throw new AES.exception.notready("generator isn't seeded");else b&2&&this.U(!(b&1));for(b=0;b<a;b+=4){(b+1)%0x10000===0&&this.L();d=this.u();c.push(d[0],d[1],d[2],d[3])}this.L();return c.slice(0,a)},setDefaultParanoia:function(a){this.t=a},addEntropy:function(a,b,c){c=c||"user";var d,e,f=(new Date).valueOf(),g=this.q[c],h=this.isReady();d=this.F[c];if(d===undefined)d=this.F[c]=this.R++;if(g===undefined)g=this.q[c]=0;this.q[c]=
+(this.q[c]+1)%this.b.length;switch(typeof a){case "number":break;case "object":if(b===undefined)for(c=b=0;c<a.length;c++)for(e=a[c];e>0;){b++;e>>>=1}this.b[g].update([d,this.J++,2,b,f,a.length].concat(a));break;case "string":if(b===undefined)b=a.length;this.b[g].update([d,this.J++,3,b,f,a.length]);this.b[g].update(a);break;default:throw new AES.exception.bug("random: addEntropy only supports number, array or string");}this.j[g]+=b;this.f+=b;if(h===0){this.isReady()!==0&&this.K("seeded",Math.max(this.g,
+this.f));this.K("progress",this.getProgress())}},isReady:function(a){a=this.B[a!==undefined?a:this.t];return this.g&&this.g>=a?this.j[0]>80&&(new Date).valueOf()>this.O?3:1:this.f>=a?2:0},getProgress:function(a){a=this.B[a?a:this.t];return this.g>=a?1["0"]:this.f>a?1["0"]:this.f/a},startCollectors:function(){if(!this.m){if(window.addEventListener){window.addEventListener("load",this.o,false);window.addEventListener("mousemove",this.p,false)}else if(document.attachEvent){document.attachEvent("onload",
+this.o);document.attachEvent("onmousemove",this.p)}else throw new AES.exception.bug("can't attach event");this.m=true}},stopCollectors:function(){if(this.m){if(window.removeEventListener){window.removeEventListener("load",this.o);window.removeEventListener("mousemove",this.p)}else if(window.detachEvent){window.detachEvent("onload",this.o);window.detachEvent("onmousemove",this.p)}this.m=false}},addEventListener:function(a,b){this.r[a][this.Q++]=b},removeEventListener:function(a,b){var c;a=this.r[a];
+var d=[];for(c in a)a.hasOwnProperty[c]&&a[c]===b&&d.push(c);for(b=0;b<d.length;b++){c=d[b];delete a[c]}},b:[new AES.hash.sha256],j:[0],z:0,q:{},J:0,F:{},R:0,g:0,f:0,O:0,a:[0,0,0,0,0,0,0,0],d:[0,0,0,0],s:undefined,t:6,m:false,r:{progress:{},seeded:{}},Q:0,B:[0,48,64,96,128,192,0x100,384,512,768,1024],u:function(){for(var a=0;a<4;a++){this.d[a]=this.d[a]+1|0;if(this.d[a])break}return this.s.encrypt(this.d)},L:function(){this.a=this.u().concat(this.u());this.s=new AES.cipher.aes(this.a)},T:function(a){this.a=
+AES.hash.sha256.hash(this.a.concat(a));this.s=new AES.cipher.aes(this.a);for(a=0;a<4;a++){this.d[a]=this.d[a]+1|0;if(this.d[a])break}},U:function(a){var b=[],c=0,d;this.O=b[0]=(new Date).valueOf()+3E4;for(d=0;d<16;d++)b.push(Math.random()*0x100000000|0);for(d=0;d<this.b.length;d++){b=b.concat(this.b[d].finalize());c+=this.j[d];this.j[d]=0;if(!a&&this.z&1<<d)break}if(this.z>=1<<this.b.length){this.b.push(new AES.hash.sha256);this.j.push(0)}this.f-=c;if(c>this.g)this.g=c;this.z++;this.T(b)},p:function(a){AES.random.addEntropy([a.x||
+a.clientX||a.offsetX,a.y||a.clientY||a.offsetY],2,"mouse")},o:function(){AES.random.addEntropy(new Date,2,"loadtime")},K:function(a,b){var c;a=AES.random.r[a];var d=[];for(c in a)a.hasOwnProperty(c)&&d.push(a[c]);for(c=0;c<d.length;c++)d[c](b)}};
+AES.json={defaults:{v:1,iter:1E3,ks:128,ts:64,mode:"ccm",adata:"",cipher:"aes"},encrypt:function(a,b,c,d){c=c||{};d=d||{};var e=AES.json,f=e.c({iv:AES.random.randomWords(4,0)},e.defaults);e.c(f,c);if(typeof f.salt==="string")f.salt=AES.codec.base64.toBits(f.salt);if(typeof f.iv==="string")f.iv=AES.codec.base64.toBits(f.iv);if(!AES.mode[f.mode]||!AES.cipher[f.cipher]||typeof a==="string"&&f.iter<=100||f.ts!==64&&f.ts!==96&&f.ts!==128||f.ks!==128&&f.ks!==192&&f.ks!==0x100||f.iv.length<2||f.iv.length>
+4)throw new AES.exception.invalid("json encrypt: invalid parameters");if(typeof a==="string"){c=AES.misc.cachedPbkdf2(a,f);a=c.key.slice(0,f.ks/32);f.salt=c.salt}if(typeof b==="string")b=AES.codec.utf8String.toBits(b);c=new AES.cipher[f.cipher](a);e.c(d,f);d.key=a;f.ct=AES.mode[f.mode].encrypt(c,b,f.iv,f.adata,f.tag);return e.encode(e.V(f,e.defaults))},decrypt:function(a,b,c,d){c=c||{};d=d||{};var e=AES.json;b=e.c(e.c(e.c({},e.defaults),e.decode(b)),c,true);if(typeof b.salt==="string")b.salt=
+AES.codec.base64.toBits(b.salt);if(typeof b.iv==="string")b.iv=AES.codec.base64.toBits(b.iv);if(!AES.mode[b.mode]||!AES.cipher[b.cipher]||typeof a==="string"&&b.iter<=100||b.ts!==64&&b.ts!==96&&b.ts!==128||b.ks!==128&&b.ks!==192&&b.ks!==0x100||!b.iv||b.iv.length<2||b.iv.length>4)throw new AES.exception.invalid("json decrypt: invalid parameters");if(typeof a==="string"){c=AES.misc.cachedPbkdf2(a,b);a=c.key.slice(0,b.ks/32);b.salt=c.salt}c=new AES.cipher[b.cipher](a);c=AES.mode[b.mode].decrypt(c,
+b.ct,b.iv,b.adata,b.tag);e.c(d,b);d.key=a;return AES.codec.utf8String.fromBits(c)},encode:function(a){var b,c="{",d="";for(b in a)if(a.hasOwnProperty(b)){if(!b.match(/^[a-z0-9]+$/i))throw new AES.exception.invalid("json encode: invalid property name");c+=d+b+":";d=",";switch(typeof a[b]){case "number":case "boolean":c+=a[b];break;case "string":c+='"'+escape(a[b])+'"';break;case "object":c+='"'+AES.codec.base64.fromBits(a[b],1)+'"';break;default:throw new AES.exception.bug("json encode: unsupported type");
+}}return c+"}"},decode:function(a){a=a.replace(/\s/g,"");if(!a.match(/^\{.*\}$/))throw new AES.exception.invalid("json decode: this isn't json!");a=a.replace(/^\{|\}$/g,"").split(/,/);var b={},c,d;for(c=0;c<a.length;c++){if(!(d=a[c].match(/^([a-z][a-z0-9]*):(?:(\d+)|"([a-z0-9+\/%*_.@=\-]*)")$/i)))throw new AES.exception.invalid("json decode: this isn't json!");b[d[1]]=d[2]?parseInt(d[2],10):d[1].match(/^(ct|salt|iv)$/)?AES.codec.base64.toBits(d[3]):unescape(d[3])}return b},c:function(a,b,c){if(a===
+undefined)a={};if(b===undefined)return a;var d;for(d in b)if(b.hasOwnProperty(d)){if(c&&a[d]!==undefined&&a[d]!==b[d])throw new AES.exception.invalid("required parameter overridden");a[d]=b[d]}return a},V:function(a,b){var c={},d;for(d in a)if(a.hasOwnProperty(d)&&a[d]!==b[d])c[d]=a[d];return c},W:function(a,b){var c={},d;for(d=0;d<b.length;d++)if(a[b[d]]!==undefined)c[b[d]]=a[b[d]];return c}};AES.encrypt=AES.json.encrypt;AES.decrypt=AES.json.decrypt;AES.misc.S={};
+AES.misc.cachedPbkdf2=function(a,b){var c=AES.misc.S,d;b=b||{};d=b.iter||1E3;c=c[a]=c[a]||{};d=c[d]=c[d]||{firstSalt:b.salt&&b.salt.length?b.salt.slice(0):AES.random.randomWords(2,0)};c=b.salt===undefined?d.firstSalt:b.salt;d[c]=d[c]||AES.misc.pbkdf2(a,c,b.iter);return{key:d[c].slice(0),salt:c.slice(0)}};
diff --git a/Base64.js b/Base64.js
new file mode 100644
index 0000000..a09184f
--- /dev/null
+++ b/Base64.js
@@ -0,0 +1,131 @@
+(function(global){
+	var _keyStr = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";
+	// private method for UTF-8 encoding
+	var _utf8_encode = function (string) {
+		string = string.replace(/\r\n/g,"\n");
+		var utftext = "";
+
+		for (var n = 0; n < string.length; n++) {
+
+			var c = string.charCodeAt(n);
+
+			if (c < 128) {
+				utftext += String.fromCharCode(c);
+			}
+			else if((c > 127) && (c < 2048)) {
+				utftext += String.fromCharCode((c >> 6) | 192);
+				utftext += String.fromCharCode((c & 63) | 128);
+			}
+			else {
+				utftext += String.fromCharCode((c >> 12) | 224);
+				utftext += String.fromCharCode(((c >> 6) & 63) | 128);
+				utftext += String.fromCharCode((c & 63) | 128);
+			}
+
+		}
+
+		return utftext;
+	};
+
+	// private method for UTF-8 decoding
+	var _utf8_decode = function (utftext) {
+		var string = "";
+		var i = 0;
+		var c = c1 = c2 = 0;
+
+		while ( i < utftext.length ) {
+
+			c = utftext.charCodeAt(i);
+
+			if (c < 128) {
+				string += String.fromCharCode(c);
+				i++;
+			}
+			else if((c > 191) && (c < 224)) {
+				c2 = utftext.charCodeAt(i+1);
+				string += String.fromCharCode(((c & 31) << 6) | (c2 & 63));
+				i += 2;
+			}
+			else {
+				c2 = utftext.charCodeAt(i+1);
+				c3 = utftext.charCodeAt(i+2);
+				string += String.fromCharCode(((c & 15) << 12) | ((c2 & 63) << 6) | (c3 & 63));
+				i += 3;
+			}
+
+		}
+
+		return string;
+	};
+
+	var Base64 = global.Base64 = {
+		// public method for encoding
+		encode : function (input) {
+			var output = "";
+			var chr1, chr2, chr3, enc1, enc2, enc3, enc4;
+			var i = 0;
+
+			input = _utf8_encode(input);
+
+			while (i < input.length) {
+
+				chr1 = input.charCodeAt(i++);
+				chr2 = input.charCodeAt(i++);
+				chr3 = input.charCodeAt(i++);
+
+				enc1 = chr1 >> 2;
+				enc2 = ((chr1 & 3) << 4) | (chr2 >> 4);
+				enc3 = ((chr2 & 15) << 2) | (chr3 >> 6);
+				enc4 = chr3 & 63;
+
+				if (isNaN(chr2)) {
+					enc3 = enc4 = 64;
+				} else if (isNaN(chr3)) {
+					enc4 = 64;
+				}
+
+				output = output +
+				_keyStr.charAt(enc1) + _keyStr.charAt(enc2) +
+				_keyStr.charAt(enc3) + _keyStr.charAt(enc4);
+
+			}
+
+			return output;
+		},
+
+		// public method for decoding
+		decode : function (input) {
+			var output = "";
+			var chr1, chr2, chr3;
+			var enc1, enc2, enc3, enc4;
+			var i = 0;
+
+			input = input.replace(/[^A-Za-z0-9\+\/\=]/g, "");
+
+			while (i < input.length) {
+
+				enc1 = _keyStr.indexOf(input.charAt(i++));
+				enc2 = _keyStr.indexOf(input.charAt(i++));
+				enc3 = _keyStr.indexOf(input.charAt(i++));
+				enc4 = _keyStr.indexOf(input.charAt(i++));
+
+				chr1 = (enc1 << 2) | (enc2 >> 4);
+				chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
+				chr3 = ((enc3 & 3) << 6) | enc4;
+
+				output = output + String.fromCharCode(chr1);
+
+				if (enc3 != 64) {
+					output = output + String.fromCharCode(chr2);
+				}
+				if (enc4 != 64) {
+					output = output + String.fromCharCode(chr3);
+				}
+
+			}
+			output = _utf8_decode(output);
+			return output;
+		}
+	}
+
+})(this)
diff --git a/options.css b/options.css
new file mode 100644
index 0000000..91bf064
--- /dev/null
+++ b/options.css
@@ -0,0 +1,74 @@
+.container {
+	width: 600px;
+	margin: 1em 2em;
+}
+fieldset {
+	border: 0;
+	border-left: 1px solid #999;
+	padding-top: 3em;
+	position: relative;
+}
+fieldset.disabled {
+	background-color: #EEE;
+	color: #999;
+}
+fieldset.disabled * { cursor: default; }
+fieldset.disabled legend:hover label { cursor: pointer; }
+fieldset.disabled legend:hover { color: #555; }
+fieldset p {
+	margin: 0 0 0.5em;
+	clear: both;
+	position: relative;
+}
+fieldset label { cursor: pointer; }
+fieldset p label {
+	text-transform: lowercase;
+	float: left;
+	width: 8em;
+	margin-right: 0.7em;
+	text-align: right;
+	padding-top: 5px;
+	vertical-align: top;
+}
+fieldset p input[disabled] {
+	background-color: #eee;
+}
+fieldset p input[type="radio"]+label,
+fieldset p input[type="checkbox"]+label {
+	text-align: left;
+	float: none;
+	margin-left: 0.5em;
+}
+fieldset legend {
+	font-variant: small-caps;
+	text-transform: capitalize;
+	position: relative;
+	top: 1em;
+	font-size: 1.5em;
+	cursor: default;
+}
+button#reset {
+	float: right;
+}
+label acronym {
+	text-transform: uppercase;
+	vertical-align: top;
+}
+img#logo {
+	float: left;
+	margin-right: 1.2em;
+	margin-left: 0.5em;
+}
+.title {
+	padding: 0.5em;
+	vertical-align: baseline;
+}
+label[for="additional_trackers"] { width: auto; }
+#additional_trackers {
+	width: 100%;
+	height: 12em;
+	clear: left;
+}
+fieldset select { border-color: #bbb; }
+fieldset select:focus { border-color: #666; }
+#full_rpc_url { margin-left: 9em; }
diff --git a/options.html b/options.html
index bb07307..e8724f6 100644
--- a/options.html
+++ b/options.html
@@ -1,80 +1,11 @@
 <!DOCTYPE html>
 <html>
 <head>
-	<meta http-equiv="content-type" content="text/html; charset=utf-8">
-	<link rel="stylesheet" type="text/css" href="blueprint.css">
-	<style type="text/css">
-		.container {
-			width: 600px;
-			margin: 1em 2em;
-		}
-		fieldset {
-			border: 0;
-			border-left: 1px solid #999;
-			padding-top: 3em;
-		}
-		fieldset.disabled {
-			background-color: #EEE;
-			color: #999;
-		}
-		fieldset.disabled * { cursor: default; }
-		fieldset.disabled legend:hover label { cursor: pointer; }
-		fieldset.disabled legend:hover { color: #555; }
-		fieldset p {
-			margin: 0 0 0.5em;
-			clear: both;
-			position: relative;
-		}
-		fieldset label { cursor: pointer; }
-		fieldset p label {
-			text-transform: lowercase;
-			float: left;
-			width: 8em;
-			margin-right: 0.7em;
-			text-align: right;
-			padding-top: 5px;
-			vertical-align: top;
-		}
-		fieldset p input[disabled] {
-			background-color: #eee;
-		}
-		fieldset p input[type="radio"]+label,
-		fieldset p input[type="checkbox"]+label {
-			text-align: left;
-			float: none;
-			margin-left: 0.5em;
-		}
-		fieldset legend {
-			font-variant: small-caps;
-			text-transform: capitalize;
-			position: relative;
-			top: 1em;
-			font-size: 1.5em;
-			cursor: default;
-		}
-		button#reset {
-			float: right;
-		}
-		label acronym {
-			text-transform: uppercase;
-			vertical-align: top;
-		}
-		img#logo {
-			float: left;
-			margin-right: 1.2em;
-			margin-left: 0.5em;
-		}
-		.title {
-			padding: 0.5em;
-			vertical-align: baseline;
-		}
-		label[for="additional_trackers"] { width: auto; }
-		#additional_trackers {
-			width: 100%;
-			height: 12em;
-			clear: left;
-		}
-	</style>
+	<meta http-equiv="content-type" content="text/html; charset=utf-8" />
+	<link rel="stylesheet" type="text/css" href="blueprint.css" />
+	<link rel="stylesheet" type="text/css" href="options.css" />
+	<script type="text/javascript" src="AES.js"></script>
+	<script type="text/javascript" src="Base64.js"></script>
 </head>
 <body class="container">
 
@@ -84,16 +15,26 @@ <h2 class="title">Transmission Torrent Downloader</h2>
 	<fieldset>
 		<legend>server configuration</legend>
 		<p>
-			<label for="server">host / ip:</label>
-			<input type="text" id="server" value="localhost" />
+			<label for="protocol">protocol:</label>
+			<select id="protocol">
+				<option value="https">https</option>
+				<option value="http">http</option>
+			</select>
+		</p>
+		<p>
+			<label for="host">host / ip:</label>
+			<input type="text" id="host" />
 		</p>
 		<p>
 			<label for="port">port:</label>
-			<input type="text" id="port" value="9091" size="5" />
+			<input type="text" id="port" size="5" />
+		</p>
+		<p>
+			<label for="path">rpc path:</label>
+			<input type="text" id="path" />
 		</p>
 		<p>
-			<label for="rpc_path">rpc path:</label>
-			http://<span id="server_output">localhost</span>:<span id="port_output">9091</span>/<input type="text" id="rpc_path" value="transmission/rpc" />
+			<span id="full_rpc_url"><span id="protocol_output">https</span>://<span id="server_output">localhost</span>:<span id="port_output">9091</span>/<span id="path_output">transmission/rpc</span></span>
 		</p>
 	</fieldset>
 
@@ -104,18 +45,18 @@ <h2 class="title">Transmission Torrent Downloader</h2>
 		</legend>
 		<p>
 			<label for="username">username:</label>
-			<input type="text" id="username" value="" disabled="disabled" />
+			<input type="text" id="username" value="" />
 		</p>
 		<p>
 			<label for="password">password:</label>
-			<input type="password" id="password" value="" disabled="disabled" />
+			<input type="password" id="password" value="" />
 		</p>
 		<p>
-			<input type="checkbox" id="encryption_enabled" disabled="disabled" />
+			<input type="checkbox" id="encryption_enabled" />
 			<label for="encryption_enabled">encrypt with <acronym title="Advanced Encryption Standard (Rijndael)">AES</acronym></label>
 		</p>
 		<p>
-			<label for="encryption_key">encryption key</label>
+			<label for="encryption_key">encryption key:</label>
 			<input type="password" id="encryption_key" disabled="disabled" value="" />
 		</p>
 	</fieldset>
diff --git a/options.js b/options.js
index af1d36d..a16920f 100644
--- a/options.js
+++ b/options.js
@@ -1,4 +1,17 @@
 (function($, global, undefined){
+
+	localStorage.defaultServerProtocol          = JSON.stringify('https');
+	localStorage.defaultServerHost              = JSON.stringify('localhost');
+	localStorage.defaultServerPort              = JSON.stringify(9091);
+	localStorage.defaultServerPath              = JSON.stringify('/transmission/rpc');
+	localStorage.defaultAuthenticationEnabled   = JSON.stringify(false);
+	localStorage.defaultAuthenticationEncrypted = JSON.stringify(false);
+	localStorage.defaultAuthenticationUsername  = JSON.stringify('');
+	localStorage.defaultAuthenticationPassword  = JSON.stringify('');
+	localStorage.defaultAddTrackers             = JSON.stringify(true);
+	localStorage.defaultAdditionalTrackers      = JSON.stringify([]);
+	console.log(localStorage);
+
 	var hasClass = function(klass){
 		return new RegExp('(^|\\s)'+klass+'(\\s|$)').test(this.className);
 	},
@@ -11,19 +24,61 @@
 		this.className = this.className.replace(new RegExp('(^|\\s+)'+klass+'($|\\s+)','g'),' ');
 	};
 
-	var elemEnableAuthentication = $('authentication_enabled');
-	elemEnableAuthentication.addEventListener('click',function(){
-		var state = this.checked,
-			elemAuthenticationContainer = $('authentication_container');
+	var fixAuthentication = function(){
+		var elemAuthenticationEnabled = $('authentication_enabled'),
+			state = elemAuthenticationEnabled.checked,
+			elemAuthenticationContainer = $('authentication_container'),
+			elemAuthenticationPassword = $('password'),
+			elemEncryptionEnabled = $('encryption_enabled');
 		(state ? removeClass : addClass).call(elemAuthenticationContainer,'disabled');
-		$('username').disabled = !state;
-		$('password').disabled = !state;
-		$('encryption_key').disabled = $('encryption_enabled').disabled;
-	});
+		$('username').disabled = !state || elemEncryptionEnabled.checked;
+		$('password').disabled = !state || elemEncryptionEnabled.checked;
+		$('encryption_key').disabled = !state;
+		elemEncryptionEnabled.disabled = !state;
+		elemAuthenticationPassword.type = elemEncryptionEnabled.checked ? 'text' : 'password';
+	}
 
-	var elemSaveButton = $('save');
-	elemSaveButton.addEventListener('click',function(){
-		console.log('save');
+	$('authentication_enabled').addEventListener('click',fixAuthentication);
+	$('encryption_enabled').addEventListener('click',function(){
+		var username, password,
+			elemEncryptionKey = $('encryption_key'),
+			encryptionKey = elemEncryptionKey.value,
+			elemAuthenticationUsername = $('username'),
+			elemAuthenticationPassword = $('password');
+		if(!this.checked) {
+			if(!encryptionKey) {
+				elemEncryptionKey.focus();
+				this.checked = true;
+				return;
+			}
+			username = elemAuthenticationUsername.value;
+			password = elemAuthenticationPassword.value;
+			try {
+				elemAuthenticationUsername.value = AES.decrypt(encryptionKey, Base64.decode(username));
+				elemAuthenticationPassword.value = AES.decrypt(encryptionKey, Base64.decode(password));
+				elemEncryptionKey.value = '';
+			} catch(e) {
+				this.checked = true;
+				alert('invalid decryption key')
+				elemAuthenticationUsername.value = username;
+				elemAuthenticationPassword.value = password;
+				elemEncryptionKey.value = encryptionKey;
+				elemEncryptionKey.focus();
+				return null;
+			}
+		} else {
+			if(!encryptionKey) {
+				elemEncryptionKey.focus();
+				this.checked = false;
+				return;
+			}
+			username = elemAuthenticationUsername.value;
+			elemAuthenticationUsername.value = Base64.encode(AES.encrypt(encryptionKey, username));
+			password = elemAuthenticationPassword.value;
+			elemAuthenticationPassword.value = Base64.encode(AES.encrypt(encryptionKey, password));
+			elemEncryptionKey.value = '';
+		}
+		fixAuthentication();
 	});
 
 	var elemCancelButton = $('cancel');
@@ -35,6 +90,71 @@
 	var elemResetButton = $('reset');
 	elemResetButton.addEventListener('click',function(){
 		if(!global.confirm('Are you sure you would like to reset everything to defaults?')) return;
-		console.log('reset');
+		for(var key in localStorage)
+			if(key.slice(0,3)=='opt') delete localStorage[key];
+		loadOptions();
 	});
+
+	var getOption = function(opt){
+			var def, obj;
+			if((obj=localStorage['opt'+opt])!=null) return JSON.parse(obj);
+			return (def=localStorage['default'+opt])!=null ? JSON.parse(def) : null;
+		},
+		setOption = function(opt, value){
+			localStorage['opt'+opt] = value==null ? null : JSON.stringify(value);
+		};
+
+	var loadOptions;
+	(loadOptions = function(){
+		var elemProtocol = $('protocol'),
+			elemHost = $('host'),
+			elemPort = $('port'),
+			elemPath = $('path');
+		elemProtocol.value = getOption('ServerProtocol');
+		elemHost.value = getOption('ServerHost');
+		elemPort.value = getOption('ServerPort');
+		elemPath.value = getOption('ServerPath');
+
+		var elemAuthenticationEnabled = $('authentication_enabled'),
+			elemAuthenticationUsername = $('username'),
+			elemAuthenticationPassword = $('password'),
+			elemEncryptionEnabled = $('encryption_enabled');
+		elemAuthenticationEnabled.checked = !!getOption('AuthenticationEnabled');
+		elemAuthenticationUsername.value = getOption('AuthenticationUsername');
+		elemAuthenticationPassword.value = getOption('AuthenticationPassword');
+		elemEncryptionEnabled.checked = !!getOption('AuthenticationEncrypted');
+		fixAuthentication();
+
+		var elemAddTrackers = $('add_trackers'),
+			elemAdditionalTrackers = $('additional_trackers');
+		elemAddTrackers.checked = !!getOption('AddTrackers');
+		elemAdditionalTrackers.innerText = getOption('AdditionalTrackers').join("\n");
+	})();
+
+	var saveOptions = function(){
+		setOption('ServerProtocol', $('protocol').value);
+		setOption('ServerHost', $('host').value);
+		var port = $('port').value;
+		setOption('ServerPort', port==+port ? +port : null);
+		var path = $('path').value.replace(/\/(\.\/|\/)+/g,'/');
+		setOption('ServerPath', path);
+
+		setOption('AuthenticationEnabled', !!$('authentication_enabled').checked);
+		setOption('AuthenticationUsername', $('username').value);
+		setOption('AuthenticationPassword', $('password').value);
+		setOption('AuthenticationEncrypted', !!$('encryption_enabled').checked);
+
+		setOption('AddTrackers', !!$('add_trackers').checked);
+		var trackers = $('additional_trackers').value;
+		trackers = trackers.split(/\s+/g).filter(function(_){ return !!_; });
+		setOption('AdditionalTrackers', trackers);
+
+		loadOptions();
+	}
+	var elemSaveButton = $('save');
+	elemSaveButton.addEventListener('click',function(){
+		console.log('save');
+		saveOptions();
+	});
+
 })(function(){ return document.getElementById.apply(document,arguments) }, this)