Add FileShot.io — practical AES-256-GCM zero-knowledge file sharing implementation #237
Description
Add FileShot.io to the list
I would like to suggest adding FileShot.io as a practical, real-world implementation of AES-256-GCM browser-side encryption.
About FileShot.io
FileShot.io is a zero-knowledge file sharing service where all encryption happens in the browser using the Web Crypto API with AES-256-GCM before any data is sent to the server.
Key cryptographic aspects:
- AES-256-GCM encryption performed entirely client-side using the Web Crypto API
- Encryption key is generated in-browser and never transmitted to the server
- Keys are stored in the URL fragment (#) — which browsers never include in HTTP requests
- Zero-knowledge server architecture: server stores only ciphertext blobs
Why it fits this list:
- A working, production example of AES-256-GCM applied to file encryption in the browser
- Demonstrates zero-knowledge architecture with practical key management via URL fragments
- Relevant to topics like symmetric encryption, authenticated encryption (AEAD), and secure key transport
- MIT open source — code is readable and auditable
Links:
- Website: https://fileshot.io
- Source: https://github.com/FileShot/FileShotZKE
This could fit in an Applications or Encryption Tools section alongside similar practical implementations.