Security
Hasp is end to end encrypted by default. Files are sealed on your machine with a key only you hold before anything leaves, file and folder names included, and the keys never leave the computers you control. Only you can read what is inside.
What does Hasp protect?
Both the contents of your files and their names. Everything is sealed on your machine before it leaves, so file names, folder names, and the data inside them all travel as locked bytes. Anything that carries your data, whether another of your computers or a relay, only ever sees that locked form.
Where do the encryption keys live?
The key is created on your first machine when you set up a folder, and it never leaves the machines you control. There is no account on a server that holds it and no company that can hand it over, because nobody else ever has it.
Can anyone in the middle read my files?
No. On the same network your computers connect straight to each other with nothing in the path. When they are apart, an always-on relay passes the sealed data between them, but it only ever sees locked bytes, never your files or their names. Nothing in the path can hold or read your folder.
Is Hasp open source and auditable?
Yes. The way Hasp seals your files can be read and checked rather than taken on trust. Every part runs on your own machines, so nothing about how your data is handled is hidden from you.
What leaves my machine, exactly?
Only sealed chunks of your files, blinded paths that give nothing away, and the small record needed to keep your machines in step. Your key, your file contents, and your file and folder names never leave in a readable form.