Encryptsy is an easy-to-use server/client encryption service whose app utilizes the AES (Advanced Encryption Standard) 256-bit GCM mode algorithm. Encryptsy is not just another encryption app; it's an encryption service for those who want the highest protection possible without all the complexity.

Encryptsy was inspired by UC Davis Ph.D researcher Phillip Rogaway based on his February 2011 research paper Evaluation of Some Blockcipher Modes of Operation where he provides an in-depth analysis of various modes of AES particularly ECB CBC CFB OFB XTS CCM and GCM. His findings as well as those of government-funded institutions throughout the world conclude that GCM is the highest performing AES mode both in terms of speed and securing highly confidential data. The use of AES-GCM can be found within Intel's Xeon processors is referred to by Cisco Systems as being "Next Generation Encryption" and is the only AES mode present and recommended by the NSA's Suite B Cryptography standard.

(http://web.cs.ucdavis.edu/~rogaway/papers/modes.pdf)

[+] AES-GCM 256-bit encryption with 128-bit IV.

[+] File directory and nested directories encryption and decryption.

[+] File chooser for interactively selecting multiple files and/or multiple directories.

[+] Each file is encrypted with its own securely generated encryption key.

[+] File thumbnail images are removed from the cache after encryption and re-added after decryption (almost all encryption apps do not do this).

[+] Creating an Encryptsy account places an encrypted vault on your device which stores file encryption keys. The vault only stores MD5 hashes of encrypted files and their corresponding encryption keys; no other information is stored and no list is maintained as to what files have been encrypted and the account they were encrypted by as this convenience only presents security concerns; it is the responsibility of the user to keep track of what files they've encrypted and where they're located. Each account creates its own vault.

[+] Upon creating an account your vault's key is encrypted on your device via AES-GCM with a randomly generated companion encryption key that resides with your vault before being sent to Encryptsy's servers for storage safe from prying eyes. Upon signing in the encrypted key is retrieved decrypted with the vault's companion key on your device then the decrypted key decrypts the vault. You may now encrypt/descrypt files! The vault is updated after each file is encrypted.

[+] Set a decoy password whereupon using it to log in will delete your account from Encryptsy's servers in the event that you are forced to relinquish your credentials thereby making your vault virtually impossible to open (a simple 'error logging in' message is displayed and your device is unaffected by this operation).

[+] Your account (and vault) is essentially bound to your device; there will be no feature to migrate your account (and vault) to another device as this presents security concerns.

[+] No account password reset or retrieval. This is done to stem incidences of unauthorized access account theft and account lockout attacks.

[+] If you want to migrate to another device or if you feel that your credentials have been compromised then you must decrypt your files and re-encrypt them under a new account.

[+] Encryptsy's servers only store your AES-GCM encrypted vault decryption key and Bcrypt-hashed username password and decoy password in its database; nothing in the database is stored in plain text.

[+] Encryptsy's servers do not store cookies or maintain login sessions nor does the app; signing into your account is just a simple database lookup via Bcrypt hash comparison.

[+] encrypt/decrypt as much as you want without any limitations and create as many accounts as you want.

Terms of Use: I am in no way responsible for any damages as a result of using Encryptsy. Use Encryptsy at your own risk.