Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/aidin36/simpletextcrypt

An Android app which encrypts a plain text using AES256 algorithm.
https://github.com/aidin36/simpletextcrypt

android cryptography encrypts

Last synced: 2 months ago
JSON representation

An Android app which encrypts a plain text using AES256 algorithm.

Awesome Lists containing this project

README 

          
# Simple Text Crypt



It's an Android app that encrypts plain texts.

This app does not claim any permissions, so you can trust that it cannot send

any of your private data to anyone.



## Can You Trust it?



Messages produced by this app are secure and, for example, can be

confidently sent over a network. It uses

[AES](https://en.wikipedia.org/wiki/Advanced_Encryption_Standard)

in GCM mode with no padding for encryption. It uses

[Argon2](https://en.wikipedia.org/wiki/Argon2) and a random Salt

to derive a secure key from the entered passphrase.

This is a very powerful encryption. It also encrypts its

settings before storing them on the device.



However, the app might be vulnerable to some attacks. Although it is secure

enough to stand attacks from non-expert crackers, e.g. normal users,

should not be used for serious data encryption.



## Why Should You Encrypt?



It's a big subject to discuss. I recommend reading these two articles:



1. [Why do you need PGP?](http://www.pgpi.org/doc/whypgp/en/)

   In this article, Phil Zimmermann compares the encryption of emails to putting

   letters in an envelope: if you don't have anything to hide, why do you hide

   your messages in envelopes?



2. [Why we encrypt?](https://www.schneier.com/blog/archives/2015/06/why_we_encrypt.html)

   This article tells us that we should encrypt everything, not just to protect our

   privacy, but also to protect those activists whose lives depend on encryption.



## Installation



It is recommended to install the app from

[F-Droid](https://f-droid.org/repository/browse/?fdid=com.aidinhut.simpletextcrypt).



You can also directly download the APK from F-Droid if you don't want to install the F-Droid app.



## Upgrading from 4.x to 5.x



The encryption of the settings is changed. The app should be able to detect the

old settings and upgrade them with the new encryption algorithm. However, it's

a good idea to **back-up your passphrase**. (Well, it's generally a good idea to

back-up encryption keys and passwords in a secure place).



If the app didn't work after upgrade, uninstall and install it again.



## Decrypting with Other Apps



Because Simple Text Crypt uses standard algorithms, you can decrypt your data with any other apps

too. Follow these steps.



The first `16` characters of the encrypted string is the IV. It's encoded with Base64. Extract that

from the string and decode it from Base64 to bytes.



You need use Argon2 algorithm to derive a key from your passphrase. With the following arguments:



```

Mode: ARGON2_ID

Salt: The IV you extracted in the previous step

Cost In Iterations: 5

Cost In Memory: 64 * 1024

```



Remove the first `16` characters (IV) from the encrypted string. Pass the rest to your AES

decryption function. The AES arguments are as follows:



```

Algorithm: AES

Transformation: GCM

Padding: No padding

Tag size: 128

```



## Development



Open the directory with Android Studio.



From command line, to run the tests, start an emulator (or connect a physical phone) and execute:

`./gradlew app:connectedAndroidTest`



To install the debug build: `./gradlew installDebug`



To build release APKs for testing on phone, open `build.gradle` file and uncomment the

`signingConfig` line. Then call `./gradlew assembleRelease`.



## Copyright



Copyright (c) 2015-2026 Aidin Gharibnavaz



SimpleTextCrypt is free software: you can redistribute it and/or modify

it under the terms of the GNU General Public License as published by

the Free Software Foundation, either version 3 of the License, or

(at your option) any later version.



SimpleTextCrypt is distributed in the hope that it will be useful,

but WITHOUT ANY WARRANTY; without even the implied warranty of

MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

GNU General Public License for more details.



You should have received a copy of the GNU General Public License

along with SimpleTextCrypt. If not, see .