Do not input sensitive data.


New user? Register here!


Already an user? Login here!

OPAQUE is a new cryptographic protocol that keeps you in control of your password. Your password stays on your device and is never sent (even encrypted) over the Internet.

This demo lets you explore how OPAQUE works, but please do not input any sensitive data, including your name, existing usernames or passwords, into the forms.

The demo is a proof-of-concept and therefore should not be used to secure any real systems. In particular, because a mechanism needed to extract keys from TLS does not yet exist in the browser, keys are sent over HTTPS. This means that this version of OPAQUE does not have all the security properties it will when implemented without this workaround.

You can read more about OPAQUE in this blog post, and check the code used to build it here. You can also check the core OPAQUE code here.

Created by the Cloudflare Research team.