When we say NitroIDE is a "Zero-Knowledge" platform, we mean it mathematically. We encrypt your local files (OPFS), your WebRTC video streams, and your remote collaborative syncs. However, requiring a user to manage and paste 3 different 256-bit AES keys is terrible UX. Users just want to type a single password.
We solve this by utilizing the Web Crypto API to implement an advanced cryptographic pipeline combining PBKDF2 (Password-Based Key Derivation Function 2) and HKDF (HMAC-based Extract-and-Expand Key Derivation Function).
When you enter your master password, we first run it through 100,000 rounds of PBKDF2 with a high-entropy salt to protect against brute-force dictionary attacks. This produces a "Master Key Material." We then feed this material into HKDF to mathematically "expand" it into distinct, mathematically isolated sub-keys.
Cryptographic Isolation: The beauty of HKDF is isolation. If a highly sophisticated attacker somehow manages to compromise your syncKey via a WebRTC side-channel attack, they cannot mathematically reverse-engineer the masterKeyMaterial, nor can they deduce the fileKey to read your local hard drive.
This entire process executes strictly within the V8 engine on your local machine. The server never receives your password, your master key, or your sub-keys. We mathematically cannot read your data, even if served a subpoena.
Set a master password and experience true Zero-Knowledge engineering.
Launch Secure IDE