Guide
Hosted Encryption Tools vs. Offline Encryption Apps
Browser-based tools, hosted services, and installed applications each place trust differently. How to choose the right kind of encryption tool for your situation.
Encryption tools come in three broad shapes: hosted services that encrypt your data on their servers, installed applications that run entirely on your machine, and browser-based tools that run locally in a web page. Each shape answers the same question differently: who do you have to trust, and when?
There is no universally correct answer. The right choice depends on how sensitive the data is, how often you encrypt, who you share with, and how much software you can install and maintain.
Server-side hosted services
Some services encrypt your data after you upload it, holding the keys themselves so they can offer password resets, sharing, search, and recovery. This is the most convenient model and the weakest privacy model: the provider, anyone who breaches the provider, and anyone who can compel the provider can access your plaintext. It can be a reasonable trade for low-sensitivity data where recoverability matters more than confidentiality.
Installed offline applications
Desktop encryption software runs entirely on your machine with no network dependency. Mature options are well studied, handle very large data sets efficiently, and can encrypt whole disks, which no browser tool can do. The costs are practical: you must install software on every device you use, keep it updated yourself, and, when sharing, ensure every recipient installs a compatible tool. On locked-down work or public machines, installation may simply be impossible.
Browser-based local encryption
Browser-based tools like SecretPNG's aim at a middle point: the privacy model of local processing with the reach of the web. Files are encrypted in the page using the browser's native Web Crypto API and are never uploaded; there is no account and nothing to install. The core tools can be installed as a PWA and used offline, and the .svault container format is documented so the data is not tied to the website's existence.
The characteristic trade-off is code delivery: a website's code arrives fresh each visit, so you trust the site's integrity each time you load it, whereas an installed app changes only when updated. Public source code, published formats, and offline installation narrow this gap without eliminating it.
Choosing in practice
A few rules of thumb cover most situations well.
- Occasional encryption of documents to store or share, without installing software: a local browser-based tool is a strong fit.
- Whole-disk encryption or very large recurring backup jobs: use your operating system's or a dedicated installed tool.
- Highest-stakes threat models, where you cannot accept web code delivery: prefer an audited installed application on a hardened machine, used offline.
- Any tool, in any shape: verify what it claims by checking its documented algorithms, what leaves your device, and whether the format is documented.
The question that cuts through
Whatever the shape, ask one question: at any point, does the provider ever have both my data and the means to decrypt it? For server-side services the answer is yes by design. For installed apps the answer is no, with trust placed at install time. For local browser tools like SecretPNG the answer is also no, with trust placed at page-load time. Once you see where trust sits, comparing tools becomes far less confusing.
Limitations to keep in mind
- This comparison describes architectures, not specific products; individual tools in every category vary widely in quality.
- Browser-based tools cannot perform whole-disk encryption and are less suited to very large recurring backup workloads.
- SecretPNG is in beta and not independently audited; users with high-stakes threat models should weigh that in their choice.