SolCipher_Kiro

Privacy-first encrypted file sharing on Hedera + IPFS, powered by Kiro (KILT) decentralized identities & verifiable credentials for revocable, zero-knowledge access control.

Comment

Inspiration

Sensitive files (legal docs, medical records, NDAs) are still shared via email or centralized cloud drives that can be hacked, subpoenaed, or silently revoked. We wanted a solution where you truly own your data, encryption never leaves your device, and access can be granted or revoked instantly — without trusting any third party.

What it does

SolCipher CrossTrack lets anyone securely share encrypted files using only Hedera wallet addresses. Files are AES-256-GCM encrypted client-side, pinned to IPFS, and access is controlled through Kiro (KILT) verifiable credentials & decentralized identifiers (DIDs). Recipients prove their identity (or attributes) in zero-knowledge and decrypt only if their credential is still valid. Revoke anytime — instantly and on-chain.

How we built it

  • Frontend: Next.js 14 + Tailwind
  • Encryption: Web Crypto API + Argon2id key derivation (client-side only)
  • Storage: Web3.Storage (IPFS) for permanent, decentralized hosting
  • Identity & Access: Kiro (KILT Protocol) SDK for DIDs and revocable verifiable credentials
  • Optional Logging: Hedera Consensus Service (HCS) for immutable share/revoke events
  • Wallet: HashPack / Blade SDK integration

All keys stay in the browser — no backend, no database, no honeypot.

Challenges we ran into

  • Seamlessly combining Kiro’s DID authentication flow with Hedera wallet connect
  • Streaming large file encryption/decryption efficiently in the browser
  • Designing a UX that hides blockchain complexity while keeping everything trustless
  • Managing credential revocation lists efficiently without a central server

Accomplishments that we're proud of

  • Fully functional end-to-end encrypted file sharing in < 48 hours
  • True instant revocation using Kiro’s on-chain attestation revocation
  • Zero-knowledge access possible (e.g., “prove you’re a licensed EU lawyer” without revealing identity)
  • No seed phrases or private keys ever leave the user’s device

What we learned

  • Kiro’s verifiable credentials are a game-changer for Web3 access control
  • Client-side Argon2 + Web Crypto can securely handle multi-gigabyte files
  • Combining Hedera’s speed + low cost with Kiro’s identity layer creates an insanely powerful stack

What’s next for SolCipher CrossTrack

  • Mobile apps (React Native)
  • Group sharing with threshold credentials
  • Integration with Hedera Token Service for paid/timed access
  • Self-sovereign “data vaults” where users store their entire encrypted history
  • Enterprise version with audit trails and KYC/KYB credential templates

Privacy shouldn’t be a luxury. SolCipher CrossTrack makes it default.

Built With

  • argon2
  • blade-wallet-sdk
  • hardhat
  • hashpack-wallet
  • hedera-consensus-service-(hcs)
  • hedera-hashgraph
  • ipfs-(web3.storage)
  • kiro-(kilt-protocol)
  • next.js
  • react
  • solidity
  • tailwind-css
  • typescript
  • web-crypto-api
Share this project:

Updates