Be extra careful when using kn Secrets while being connected to the Internet, that is to say, in online mode.
Using kn Secrets in online mode is ok
only when not really using it in earnest — for example, when you have directed your browser to the knsecrets.online website just
to obtain a first impression of kn Secrets.
Then you must use
non-secrets
to learn how kn secrets works. You could use something like "Trying out Secure Secret Sharing" as free-text input, for instance.
Otherwise, be aware that
using kn Secrets in earnest requires putting secrets on screen by filling in input fields on your browser page.
Also, your browser page will have to display Secure Shares for you to be able to note them down.
User interaction of this kind
always increases the
risk that hackers with access to your computer might steal the secret or, equivalently,
Secure Shares that you have generated.
For this reason, please follow the guidelines that are stated below whenever you use kn Secrets
to transform any real secret into Secure Shares, or the other way round.
We cannot absolutely guarantee that
they will prevent hackers from obtaining secrets or Secure Shares — nothing ever will, unfortunately — but they
should go some way towards reducing the hacker risk.
-
Use an open-source browser and
make sure to have updated your browser to the newest version.
-
Preferably, run your browser on an open-source operating system.
-
Download the .zip archive that contains the offline version of kn Secrets.
Unzip it and find the file whose file name is "index.html". Double-click it
to start kn Secrets in offline mode.
-
Disconnect your computer physically from the Internet while using kn Secrets offline. Depending on how your Internet connection is set up,
turn off your wifi router, at the very least turn off wifi on your computer, and disconnect any Ethernet cable that might be plugged into your
computer.
-
Disconnect all unnecessary external devices from your computer.
-
Close all tabs in your browser that are not from kn Secrets.
-
It is recommended to store Secure Shares by noting them down manually with pen and paper.
-
If, despite the previous point, you decide to print Secure Shares,
then you must take care to avoid Secure Shares being stored in files on your system. Open a text editor and
copy-and-paste Secure Shares into the editor one after the other using the `copy` button displayed on each Secure Share, each time using the editor's print function followed
by deleting the Secure Share from the editing pane. Under all circumstances, you must avoid Secure Shares ending up
as files on your system. Do not use the editor's `Save`or `Save as` functions and, also, make sure that the editor does not generate
any backup files automatically. Analogously to using an open-source operating system and an open-source browser, your best bet is to use an open-source
editor where you have made sure that that does not happen.
-
kn Secrets uses input elements that are not usually subject to browsers remembering any input provided. This kind
of functionality is commonly known as "browser caching."
If you do worry about browser caching, then you need to clear out your browser's cache whenever you have finished
using kn Secrets. To this end, close all browser tabs and the browser itself, then restart the browser and
go to the privacy and security section in its settings menu. Clearing out browser caches should be available in this section.
Once browser caches have been cleared,
you still have to apply a secure sweep to every disk drive that belongs to your system
given that you take the — entirely theoretical —
caching risk seriously. Modern solid-state drives (SSD),
the kind of disk storage used on practically all computers nowadays, require special procedures if a disk sweep is to be
carried out. You will probably have to visit the website of your SSD's manufacturer to learn how.
Never apply any traditional "file shredding" to an SSD as that will most
probably damage it or may even render it inoperable. Even with proper procedures being applied, an SSD disk sweep may lead to
your whole system having to be re-installed.
-
Never use any mobile device or tablet to work with kn Secrets in earnest.
-
Keep the offline version on secure, backed-up storage to be able to recover secrets in case knsecrets.online goes down at any time.
-
Read the FAQ to learn more.