PrivateNote was shutdown on March 31, 2021.
Overview
PrivateNote is a side project made by me, Alex L.
I built PrivateNote because I was using a mainstream note-taking application, which aren't end-to-end encrypted, and I wanted my notes to be end-to-end encrypted.
I care about end-to-end encryption for privacy reasons, in particular because of the below two scenarios:
- If the mainstream note-taking application ever got hacked, my (in some cases, very private) notes would potentially be leaked to the public.
- I don't trust mainstream note-taking applications' employees to not read my notes.
Security
PrivateNote is built with React. Password-based OpenPGP.js encryption is used to encrypt notes.
Password-based encryption works in the following way:
- A scrypt hash of your raw password is taken. This hash is used to encrypt notes.
- A scrypt hash of your first scrypt hash is taken. This second hash is used for password authentication with the PrivateNote server. Meaning, PrivateNote never knows your raw password nor the hash used to encrypt your notes.
I live in the United States of America, and PrivateNote is hosted in the United States of America.
Open Source
I would like to open-source PrivateNote, but I just haven't gotten around to it yet.
If you are hoping to read PrivateNote's source, please
contact me (my email address is in the footer).
Future Improvements
PrivateNote is in maintenance mode. I'm not actively improving it.