OneTimeSharing has 2 options to share secrets; OneClick sharing and PGP encrypted sharing.
-
OneClick sharing is the easiest in use yet it provides a great level of security by sharing only half of the encryption key with the server. This means your client-side encrypted secret cannot be decrypted by administrators of the OneTimeSharing solution
-
PGP encrypted sharing is a bit harder to use but it is even more secure as no information of the encryption key is shared with the server. This sharing option should be initiated by the receiver of the secret. To help in the creation of the public/private key used for encryption, a guide is made available as well as the option to let the OneTimeSharing client generate the keypair. However, we advise to generate the key yourself to avoid having the private key in the client and browser at all.
Following steps let you share a secret through OneClick sharing
Sender:
- Enter the secret you want to share
- (Optional but advised) Create a password for this secret
- Copy the generated link
- Share the link with whom you want to share it
- (Optional but advised) Share the password for this secret through another communication channel (not the same one as in step 4)
Receiver:
- Open the link
- (Optional but advised) Enter the password
- The secret is show to the receiver
Important: The link can only be used once (hence the name; OneTimeSharing)
Following steps let you share a secret through PGP Encrypted sharing
Receiver:
- Create a public/private keypair
- Share the public part of the keypair in OneTimeSharing
- Copy the generated link
- Share the link with the person that want to share a secret with you
Sender:
- Open the link
- Enter the secret you want to share
- Create the secret
Receiver:
- Open the link you shared with the sender
- Download the pgp file
- Decrypt the pgp file on your machine
Important: The link can only be used once (hence the name; OneTimeSharing)