Skip to content
This repository was archived by the owner on Mar 26, 2026. It is now read-only.

oqullcan/albus

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
.github/workflows
.github/workflows
 
 
crates
crates
 
 
docs
docs
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
rust-toolchain.toml
rust-toolchain.toml
 
 

Repository files navigation

Albus

Albus is a local-first TOTP vault written in Rust.

It is for people who want OTP secrets to stay in an encrypted local file, off cloud platforms, and outside browser extensions.

Principles

  • offline by default
  • no sync
  • no cloud account
  • no telemetry
  • no browser integration
  • conservative security claims

Privacy

Secrets stay on the machine. Vaults and backups are encrypted at rest, codes are generated locally, and the project keeps its scope intentionally narrow.

Security

Albus is built to protect:

  • locked vault files
  • locked backup files
  • passphrase-derived file keys
  • routine local state with private filesystem permissions
  • optional per-user OS-native device binding

Current crypto profile:

  • argon2id for passphrase hardening
  • hkdf-sha256 key separation for new vault and backup file keys
  • xchacha20poly1305 for authenticated encryption
  • stronger new-passphrase floor at 16 non-whitespace characters
  • upward-only Argon2 tuning for interactive app-created vaults

Current host binding options:

  • Windows: DPAPI
  • macOS: Keychain
  • Linux: Secret Service

The app also applies best-effort local hardening such as private file permissions, anti-symlink path checks, rollback trust anchors, and process dump/crash-report reduction where the platform allows it.

Limits

Albus does not claim protection against:

  • malware on an unlocked host
  • keylogging or screen capture
  • a machine that is already compromised
  • account recovery mistakes
  • secure deletion guarantees

Status

  • pre-1.0
  • no external audit yet
  • conservative scope and claims

Direction

Albus should aim to become the best local-first desktop authenticator in the category: trustworthy, portable, auditable, and easy to migrate into without expanding into sync, browser integration, or password management.

The current product roadmap lives in docs/roadmap.md.

Features

  • encrypted local vault
  • encrypted backup and restore
  • manual entry and otpauth:// import
  • local code generation
  • passphrase rotation
  • idle auto-lock
  • rollback detection
  • optional OS-native device binding

Run

cargo test --workspace
cargo run -p albus-tui --bin albus

Rust 1.94.0 is pinned in rust-toolchain.toml.

Docs

Release notes can live in GitHub Releases.

License

AGPL-3.0-only

About

A privacy-first, offline authenticator with an encrypted vault architecture.

Topics

rust security cryptography privacy offline-first vault totp authenticator

Resources

Readme

License

AGPL-3.0 license

Security policy

Security policy
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Contributors

Languages