Skip to main content

Secrets Application

·1 min

I created a secrets application to send secrets over the net and made it open to the public. A secret is allowed to be 32KB max, as it’s only intended for short-lived small secrets to be sent. The application uses PBKDF2 for key derivation and AES-GCM for encryption. Secrets are stored encrypted in a Cloudflare KV table.

As soon as the secret is retrieved, it is destroyed on the CloudFlare KV store. Otherwise, it expires after 24 hours. Only users with the given URL and password will be able to decrypt the secret. I used making this application as a reason to play around with my webcrypto wrapper library.

Encryption

Neal Fennimore
Author
Neal Fennimore
Seasoned engineer with 15+ years delivering secure, automated CI/CD pipelines, cloud-native security controls, and compliance-by-design solutions for government and enterprise environments. Proven ability to embed SAST/DAST, SIEM, and Zero-Trust architectures into large-scale platforms while driving cost-effective automation and continuous monitoring. Holds a Master’s in Cybersecurity and multiple industry certifications.
NIST SP 800 171 Rev 3 Compliance Application STIG Viewer 3 NixOS