How encryption works
Leet Service uses industry-leading encryption to protect your data. Here is how it works:
Our encryption stack:
- AES-256 encryption: Your vault data is encrypted with Advanced Encryption Standard (256-bit), the same standard used by governments and banks.
- PBKDF2 key derivation: Your master password goes through 100,000+ rounds of hashing before being used to encrypt your data.
- End-to-end encryption: Data is encrypted on your device before being sent to our servers. We never see your unencrypted data.
- TLS 1.3: All communication between your devices and our servers is protected with the latest transport layer security.
Did you know? AES-256 is considered unbreakable by current technology. It would take billions of years to crack using brute force.
Two-factor authentication setup
Add an extra layer of security to your account with two-factor authentication (2FA):
- 1Go to Settings > Security in your dashboard.
- 2Click Enable Two-Factor Authentication.
- 3Download an authenticator app (Google Authenticator, Authy, or Microsoft Authenticator).
- 4Scan the QR code with your authenticator app.
- 5Enter the 6-digit code from your app to verify setup.
- 6Important: Save your backup codes in a secure location.
Warning: Store your backup codes securely. If you lose access to your authenticator app, these codes are the only way to recover your account.
Security best practices
Follow these recommendations to maximize your security:
Use a strong master password
Create a unique passphrase with at least 4 random words, or a complex password with 12+ characters including symbols.
Enable two-factor authentication
Add 2FA to protect your account even if your master password is compromised.
Generate unique passwords
Use our password generator to create unique, strong passwords for every account.
Review active sessions regularly
Check your active sessions and revoke access from unknown devices.
Keep software updated
Always use the latest version of our browser extension and apps for security patches.
Understanding zero-knowledge
Zero-knowledge architecture means we never have access to your unencrypted data:
What zero-knowledge means for you:
- Your master password never leaves your device: We only receive a hashed version that cannot be reversed.
- Encryption happens locally: All your data is encrypted on your device before being transmitted.
- We cannot read your passwords: Even our employees cannot access your vault contents.
- Server breach protection: Even if our servers were compromised, your data remains encrypted and useless to attackers.
The trade-off: Because we cannot access your data, we cannot reset your master password. Make sure to set up recovery options.
Checking for compromised passwords
Leet Service can check if your passwords have appeared in known data breaches:
- 1Navigate to the Security Dashboard in your account.
- 2Click Check for Breaches to scan your passwords.
- 3Review any flagged passwords that appear in breach databases.
- 4Use the built-in generator to create new, secure passwords.
- 5Update your passwords on the affected websites.
Privacy note: We use k-anonymity to check breaches. Your actual passwords are never sent to any external service - only a partial hash that cannot identify your password.