PostGuard

Appearance

PostGuardEncryption based on identity, not keys

Send encrypted messages and files to anyone using just their email address. No key exchange, no certificates, no hassle.

What is PostGuard?
Core Concepts
Getting Started

No key exchange needed

Encrypt data using nothing more than the recipient's email address. There are no public keys to look up and no certificates to manage.

Identity verification built in

Recipients prove they own their email address (or other attributes) before they can decrypt. Sender identity can be verified too.

Time-limited keys

Decryption keys expire automatically. Even if a key is compromised, it only works for a specific time window.

Works everywhere

The JavaScript SDK runs in browsers and Node.js. Addons exist for Thunderbird and Outlook. A CLI tool handles server-side and scripting use cases.

Quick Start

Install the SDK:

bash
npm install @e4a/pg-js

Encrypt files and send them to a recipient:

ts
import { PostGuard } from '@e4a/pg-js';

const pg = new PostGuard({
  pkgUrl: 'https://pkg.staging.yivi.app',
  cryptifyUrl: 'https://fileshare.staging.yivi.app'
});

const sealed = pg.encrypt({
  files: [file1, file2],
  recipients: [pg.recipient.email('alice@example.com')],
  sign: pg.sign.apiKey('PG-API-your-key')
});

await sealed.upload({ notify: { message: 'Here are your files' } });

Source: encryption.ts#L22-L46

Read the concepts guide to understand how this works, or jump straight to getting started.