安全与技术设计
Security depends on both the cryptographic design and how the user protects the inputs. This page documents Kardix’s intended model and limitations.
浏览器本地处理
Kardix is designed to process the passphrase, PIN, and label inside the browser. Those values are not intentionally submitted to a Kardix account or online credential vault. The bundled Argon2 library is hosted with the site so the core derivation does not need a third-party API.
Local processing reduces one class of exposure, but it does not make the browser trusted by default. A compromised operating system, malicious extension, modified website deployment, or injected script can still observe inputs.
为什么使用 Argon2id
Argon2id is a memory-hard password derivation function. Its purpose is to make each password guess more expensive than a fast hash would be. That slows attackers who obtain enough information to test guesses offline. It cannot turn a weak, predictable passphrase into a strong secret.
规范化与精确输入
Deterministic tools must define how spaces, capitalization, Unicode characters, labels, and empty fields are handled. Otherwise visually similar inputs may unexpectedly produce different results. Kardix users should treat inputs as exact and test recreation before adoption.
威胁模型
| Threat | What Kardix can do | What it cannot do |
|---|---|---|
| Cloud vault breach | Avoid storing generated credentials in a Kardix cloud account. | Protect credentials saved elsewhere. |
| Weak master input | Use memory-hard derivation. | Prevent guessing of common phrases. |
| Malware or keylogger | Nothing reliable inside the same compromised device. | Hide keystrokes from the operating system. |
| Forgotten inputs | Provide repeatability when inputs are known. | Recover secrets that were never stored. |
操作防护措施
- Serve the site over HTTPS.
- Keep dependencies minimal and locally hosted where possible.
- Use a strict Content Security Policy when deployment allows it.
- Version the generator and publish material changes.
- Avoid logging form values or adding analytics around secret fields.
- Encourage passkeys and multi-factor authentication for important accounts.
负责任披露
Security reports should include the affected page, reproduction steps, browser, expected behavior, and observed behavior. Do not include real passwords, passphrases, PINs, or account data. Contact details are listed on the support page.
Try Kardix locally
Generate account-specific login details from your private phrase, optional PIN, and a consistent label. Nothing is saved to a Kardix account.
打开 Kardix 生成器 →