I built a zero-knowledge file sharing app as a college student — here's what I learned about AES-256-GCM in the browser

About a year ago, I was in my dorm room copying a 4GB project file to a flash drive to walk across campus. It felt absurd. Every cloud service either had file size limits, showed ads, or asked me to trust them with my data. So I started building something. That project became FileShot.io — a zero-knowledge, end-to-end encrypted file sharing platform. This post isn't a product pitch. It's about the specific technical problem I had to solve: doing AES-256-GCM encryption entirely in the browser, before a single byte of data leaves the user's machine. What "zero-knowledge" actually means here Zero-knowledge architecture means the server genuinely cannot read your files. Not "we promise not to look" — the server can't look, because it never has the decryption key. The key is derived from a password on the client side, and it lives only in the URL fragment ( # ) — the part of the URL the browser never sends to the server. When someone visits a FileShot link, their browser downloads the encry

I built a zero-knowledge file sharing app as a college student — here's what I learned about AES-256-GCM in the browser

Related Articles

The Hidden Magic (and Monsters) of Go Strings: Zero-Copy Slicing & Builder Secrets

Why Watching Tutorials Won’t Make You a Good Programmer

The Code That Makes Rockets Fly

Spotify tests letting users directly customize their Taste Profile

How to Add Face Search to Your App

Related Articles

How-To
The Hidden Magic (and Monsters) of Go Strings: Zero-Copy Slicing & Builder Secrets
Medium Programming • 47m ago

How-To
Why Watching Tutorials Won’t Make You a Good Programmer
Medium Programming • 3h ago

How-To
The Code That Makes Rockets Fly
Medium Programming • 4h ago

How-To
Spotify tests letting users directly customize their Taste Profile
The Verge • 5h ago

How-To
How to Add Face Search to Your App
Dev.to Tutorial • 5h ago