diff --git a/README.md b/README.md index 04f86c4..0ec999b 100644 --- a/README.md +++ b/README.md @@ -32,6 +32,7 @@ Drop encrypted stuff you received, then decrypt locally and download result: ## Features (free) * A keypair is automatically generated locally and stored in the browser's IndexedDB +* The private key is created with [```{ extractable: false }```](src/ts/whisper-crypto.ts) and cannot be [exported by the application](https://www.w3.org/TR/WebCryptoAPI/#cryptokey-interface-members). * The public part of the keypair can be copied and distributed to those who want to send you sensitive data * The private part remains local and is the only way to decrypt data addressed to you * Use the hosted version (the good stuff happens locally anyway) or self host and modify it diff --git a/src/index.html b/src/index.html index 9221036..ba7435c 100644 --- a/src/index.html +++ b/src/index.html @@ -306,7 +306,7 @@
+
Please note, that if you clear your browser data for this site, existing keys will be lost and new keys will be generated. This is by design, so please ensure that senders have your latest Whisper! public key file.
-+
Before downloading and distributing your key, please provide some info on who you might be, like Name or E-Mail to help senders using it.