Security

End-to-end encryption

End-to-end encryption

MakeSends uses end-to-end encryption to protect your files. All files are encrypted inside your browser before they leave your computer, and decrypted only on the computer of the receiver. Files are never decrypted along this path, leaving no possibility for hackers or surveillance agencies to obtain a copy of your original file.

This is significantly more secure than using HTTPS┬╣ and/or server side encryption, which decrypt your files along the way and thereby potentially expose your original (unencrypted) files.

The vast majority of services on the internet — such as common email, DropBox, Google Drive, Box, Microsoft OneDrive, Apple iCloud, weTransfer, or HighTail — are based on HTTPS, and therefore inherently weak. Alongside with only a handful other services, MakeSends offers substantially higher data security to protect your privacy or intellectual property.

Password

Your files are encrypted using the password you provide. This same password is required to decrypt the files. To obtain high security, choose a long password that is hard to guess.

Password strength vs. length Lowercase
letters
Letters, digits
and symbols
Words
(autocorrect-friendly)
Low security
Seconds to crack (~ 30 bits)
6
e.g. cclpzr
5
e.g. 4fQ7*
3
e.g. manner center honey
Medium security
Minutes to crack (~ 40 bits)
9
e.g. cclpzrkqe
7
e.g. 4fQ7*%r
4
e.g. manner center honey useful
High security
Months to crack (~ 60 bits)
13
e.g. cclpzrkqehumjidav
10
e.g. 4fQ7*%rLE&
6
e.g. manner center honey useful look cat
Very high security
Centuries to crack (~ 100 bits)
21
e.g. cclpzrkqehumjidavcfzr
16
e.g. 4fQ7*%rLE&bPq?Bg
10
e.g. manner center honey useful look
cat annually miracle kiss documentary
Since files are encrypted before they leave your computer, our server does not need to know your password – isn't that great?

Note that your password is not transmitted to the server. Hence, we cannot recover your password (or your files) in case you forget it.

Please transmit that password in a secure way to your friend. You could tell him when you meet, or call him. Sending a text message is pretty good as well. Do not send the password to the same email address as the secure document, however.

Encryption algorithm

MakeSends relies on industry-standard AES 256. AES is widely used, and has been tested thoroughly by cryptographers all over the world.

Location

The makesends.com website and all of MakeSends's servers are located in Switzerland, and operated under Swiss law. Switzerland is a safe place with a healthy attitude towards privacy and civil rights.

  1. The encryption algorithms used in properly configured HTTPS connections offer high security. However, by the nature of HTTPS, files are decrypted on the server receiving them, where they are exposed to surveillance agencies and hackers. In addition, surveillance agencies can easily intercept HTTPS traffic using forged certificates. Other TLS-based protocols, such as FTPS or IMAPS, suffer from the same weaknesses.