PK Pixel Kinetics

Zero-knowledge distributed secret sharing.

Status: Active Development Type: Serverless Secret Sharding Protocol: Shamir's Secret Sharing

Shard Your Secrets. Trust Your Guardians.

Dashsalt allows you to securely store and recover sensitive credentials, master passwords, or private keys without relying on a centralized authority. By splitting your decryption keys into cryptographic shards distributed among trusted friends, family, or devices, your secrets remain safe even if individual shards are compromised.

Cryptographic Lifecycle

01 Create Keystone Step

Create Keystone

Secrets are encrypted in-browser via AES-256-GCM, producing an opaque, encrypted keystone blob.

02 Guardian Handshake Step

Shard & Handshake

The key is split via Shamir's Secret Sharing. Shards are routed to Guardians using secure Argon2id and X25519 handshakes.

03 Recovery Flow Step

Secure Recovery

Reconstruct your secret in-browser once the predefined threshold of Guardians approve your recovery request.

Architectural Integrity

  • Zero Server Knowledge

    The relay API acts as a mailbox. It stores only opaque encrypted envelopes and routes shards. The server never imports key derivation or decryption functions.

  • Native Web Cryptography

    Built directly on the browser's native Web Crypto API. Third-party packages are pinned and limited strictly to Shamir and Argon2 WebAssembly modules.

  • Web Worker Isolation

    All intensive cryptographic computations, key derivations, and sharding processes run in isolated Web Workers, maintaining UI responsiveness.

Security Specs

  • Flexible Thresholds

    Define custom rules for recovery (e.g., any 3 out of 5 guardians, or 2 out of 3). Shards are mathematically useless on their own.

  • Decentralized Auth

    Guardians verify requests asynchronously, authorizing key release via an encrypted handshake. No account credentials are stored in plaintext.

  • Exportable Keys

    Securely backup shards offline as paper-based QR codes, hardware keys, or encrypted files for complete contingency control.

Select Your Plan

Deploy local-first cryptographic vaults suited to your recovery scale.

Free Vault

$0 / forever
  • 1 Active Keystone
  • Up to 3 Guardians
  • Manual Recovery Cycles
  • Web Interface Access
Deploy Free

Pro Vault

$12 / month
  • Unlimited Keystones
  • Up to 10 Guardians per Secret
  • Automatic Integrity Checks
  • Priority Guard Notifications
  • CLI Tool Integration
Deploy Pro