Multi-platform transparent client-side encryption of your files in the cloud.
Download native binaries of Cryptomator on cryptomator.org or clone and build Cryptomator using Maven (instructions below).
- Works with Dropbox, Google Drive, OneDrive, Nextcloud and any other cloud storage service which synchronizes with a local directory
- Open Source means: No backdoors, control is better than trust
- Client-side: No accounts, no data shared with any online service
- Totally transparent: Just work on the virtual drive as if it were a USB flash drive
- AES encryption with 256-bit key length
- File names get encrypted
- Folder structure gets obfuscated
- Use as many vaults in your Dropbox as you want, each having individual passwords
- 256-bit keys (unlimited strength policy bundled with native binaries)
- Scrypt key derivation
- Cryptographically secure random numbers for salts, IVs and the masterkey of course
- Sensitive data is wiped from the heap asap
- Lightweight: Complexity kills security
- HMAC over file contents to recognize changed ciphertext before decryption
- I/O operations are transactional and atomic, if the filesystems support it
- Each file contains all information needed for decryption (except for the key of course), no common metadata means no SPOF
For more information on the security details visit cryptomator.org.
- Java 8 + JCE unlimited strength policy files (needed for 256-bit keys)
- Maven 3
- Optional: OS-dependent build tools for native packaging (see Windows, OS X, Linux)
cd main
mvn clean install -Prelease
An executable jar file will be created inside main/uber-jar/target.
Please read our contribution guide, if you would like to report a bug, ask a question or help us with coding.
Help us keep Cryptomator open and inclusive. Please read and follow our Code of Conduct.
Distributed under the MIT X Consortium license. See the LICENSES/MIT-X-Consortium-License.txt file for more info.