TaskNote

What is an Encryption Key?

TL;DR:

In TaskNote, your Encryption Key is a distinct secret separate from your password. While your Account Password lets you log in to the app, only your Encryption Key can decrypt your notes. You must save this key safely; if you lose it, your data remains locked forever.

🔑 The Two-Lock Analogy

To understand TaskNote's security, imagine a bank vault.

  • The Bank Entrance (Account Password): You show your ID to the guard to get into the building. This is your login password. The bank knows who you are and lets you in.
  • The Safety Deposit Box (Encryption Key): Inside the vault, there is a box with your valuables. The guard does not have the key. You brought the key from home. Even though you are in the bank, you cannot open the box without that physical key.
Key Derivation: The Password Potion

⚙️ How It Works (The "Key File")

Unlike other apps that mathematically mix your password to create a key, TaskNote keeps them separate for higher security.

  1. Generation: When you sign up, your device generates a cryptographically secure, random Encryption Key.
  2. Saving: You are asked to save this key (often as a Key File or a recovery string) to your device or password manager. TaskNote does not save a copy.
  3. Decryption: When you log in on a new device, you will see your encrypted notes as "locked." To read them, you must load your Encryption Key into the app.
Encryption Key Loading Diagram

This separation means that changing your account password has no effect on your encrypted data, which is great for security hygiene.

⚠️ The Real Danger: Losing the Key

Because the key is not derived from your password, knowing your password is not enough to recover your data on a new device.

  • Scenario A: You forget your Account Password.
    • Result: You reset the password via email. You log in. You load your saved Encryption Key. Data is safe.
  • Scenario B: You lose your Encryption Key file.
    • Result: You can log in, but you will only see encrypted gibberish. Since we don't have the key, and your password can't recreate it, data is lost forever.

Rule #1 of TaskNote: Treat your Encryption Key like a physical object. Keep it safe.

🛡️ Why "Client-Side" Matters

Where the key lives changes everything.

  • Server-Side (Standard Apps): The key lives in the cloud. You log in, and the cloud unlocks your data. If the cloud is hacked, your data is open.
  • Client-Side (TaskNote): The key lives in your hands (on your USB drive, disk, or password manager). The server never touches it. It is only loaded into the browser's memory temporarily while you read your notes.
Backup Your Key Now

❓ Frequently Asked Questions (FAQ)

Can I change my Encryption Key?

Technically, yes, but it is a complex process called "Key Rotation." You would need to decrypt all data with the old key and re-encrypt it with a new one. For most users, we recommend keeping the original key safe.

Do I need to enter the key every time?

No. On your trusted devices, the app can securely store the key in the browser's local encrypted storage so you don't have to upload the file every time you open the tab. But you will need it for a new phone or laptop.

What does the key look like?

It is usually a long string of random characters or a downloadable file ending in .key or .json. It is impossible to guess or memorize.

Your ideas belong to you, not a server.

Stop trusting corporations with your private data. Switch to TaskNote today.

Get TaskNote Free