AENC is an offline, end-to-end encryption app. It works as a security layer on top of the
apps you already use — encrypt a message, file, photo or voice note on your phone, send it through any
messenger, and only the person you chose can decrypt it.
No servers. No accounts. No tracking. Your private keys are best kept on a removable USB
drive you control (keeping them on the phone is supported but less secure). Decrypted content stays in RAM
and is wiped after use. AENC never sees your content — because there is nothing on our side to see.
No internet. AENC makes no network requests at all — the only
exception is Google Play Billing for the optional subscription.
X25519 key agreement + AES-256-GCM, Ed25519 signatures,
with an optional post-quantum mode (sntrup761). Sealed sender hides who sent it.
Removable-key
Keys are kept in an encrypted .aekey, protected by a
strong passphrase (Argon2id) — best stored on a USB drive.
Truly offline
The standard build requests no network access at all. You
share the encrypted package yourself, over whatever channel you like.
Nothing at rest
Photos/voice are encrypted straight from memory; decrypted
content is view-only and wiped on exit. Emergency wipe for sensitive files.
Post-quantum option
Turn on a hybrid post-quantum mode (sntrup761 + X25519) so
your messages stay private even against future quantum computers.
Built against forensics
AENC saves nothing in its own storage or cache. Keys stay
on a removable USB and content lives only in RAM — pull the drive and a forensic tool has practically
nothing to recover.
Why this matters
Governments and platforms keep expanding access to private messages. These moves miss AENC by
design: the channel only ever carries ciphertext — there is no server, no plaintext in transit, and nothing
at rest for anyone to reach.
Every one of these attacks targets a server or the
plaintext on a device. AENC exposes neither: your message becomes an opaque encrypted file the moment
it leaves the app, and only your recipient can turn it back into text.
Who it's for
Journalists, activists, lawyers — anyone who wants strong, self-custodial encryption without trusting
a server with their keys or their messages.