HN Showcase
Back to browse
GitHub Repository

Simple, flexible file-by-file encryption for secure storage.

4 starsJava

LockFS is a flexible file-by-file encryption for secure storage

by 0xGhostInAJar·Feb 16, 2026·1 point·0 comments
Visit ProjectView on HN

AI Analysis

MidShip ItNiche Gem
The Take

Encrypts files one-by-one from a single runnable JAR, which is nice for cross-platform use and managing many small vaults without re-archiving. The README clearly explains usage, but there’s no visible discussion of algorithms, key management, integrity guarantees, or threat model — that omission keeps this from standing out in a space already served by mature tools like age/gocryptfs.

Category
Security
Target Audience

Privacy-conscious individuals, sysadmins and power users managing multiple storage devices, developers needing per-file encrypted storage

Post Description

It is currently in its early development phase. However, the core implementations are ready for testing and ready for feedback but it's not yet feature complete yet.

If this fits your workflow, feel free to use it and stress-test it. Questions, suggestions, and contributions are welcome to help make LockFS better.

Similar Projects

SecurityMid

LockFS

The idea is pleasantly pragmatic: encrypt each file independently so you never have to rewrite a giant container when adding or moving data — that genuinely simplifies backups across mixed storage. The repo feels like an MVP: a runnable jar and clear UX goals, but it omits crucial cryptography details (cipher choices, key derivation, filename/metadata leakage, threat model) and usage examples, so it’s useful in concept but needs more security documentation and benchmarks before I’d trust it with sensitive data.

Niche GemShip It
0xGhostInAJar
343mo ago
Security●●Solid

LockFS Is Now Stable

Per-file encryption beats vault bundling for expandable encrypted storage.

Niche GemCozy
0xGhostInAJar
112mo ago
Security●●Solid

Secure Storage – An offline encrypted vault for iOS

Tidy, privacy-first vault that keeps everything on-device and uses Argon2id + AES-256 with per-field encryption — not just marketing buzz: the copy lists concrete choices like 64 MB memory hardness and biometric key storage in the secure enclave. Features such as camera card scanning, per-vault isolation, and on-demand file decryption are useful for single-device users, but the offline-only stance also limits appeal compared with cross-device managers like 1Password or Bitwarden.

Niche GemSlick
sbis04
113mo ago