Back to Documentation

Security Suite Documentation

MockLock Security Suite Documentation

Overview

The MockLock Security Suite provides a set of powerful security tools designed for developers and end-users. The suite includes essential tools for password management, file encryption, secure data sharing, and temporary email services.

Features

The Security Suite consists of four main tools:

  1. Password Generator
  2. File Encryption
  3. One-Time Secret
  4. Temporary Email

Password Generator

Purpose

Generate strong, secure passwords customized to your specific requirements.

Features

  • Adjustable password length (8-32 characters)
  • Character type selection (uppercase, lowercase, numbers, special characters)
  • Password strength indicator
  • Copy to clipboard functionality
  • Password randomization
  • Visual strength meter

How to Use

  1. Adjust the password length using the slider
  2. Select which character types to include
  3. Click "Generate Password" to create a new password
  4. Use "Copy" to copy the password to clipboard
  5. Use "Randomize" to quickly change settings

Implementation Details

The password generator uses a cryptographically secure random number generation approach. It ensures at least one character from each selected type appears in the generated password, and the order is randomized before returning to ensure unpredictability.

"hljs-keyword">class="hljs-comment">// Character sets used "hljs-keyword">for generation
"hljs-keyword">const charset = {
  uppercase: "ABCDEFGHIJKLMNOPQRSTUVWXYZ",
  lowercase: "abcdefghijklmnopqrstuvwxyz",
  numbers: "0123456789",
  special: "!@#$%^&*()_-+={}[]|:;<>,.?/~"
};

File Encryption

Purpose

Securely encrypt files with AES-GCM encryption before storing or sharing them. Decrypt encrypted files when needed.

Features

  • End-to-end encryption
  • AES-GCM encryption algorithm
  • Password-based encryption
  • Original file format preservation
  • Toggle between encryption and decryption modes
  • Local processing (files never leave your device)

How to Use

Encrypting Files:

  1. Select "Encrypt" mode
  2. Choose the file you want to encrypt
  3. Enter a strong password
  4. Click "Encrypt File"
  5. Download the encrypted file

Decrypting Files:

  1. Select "Decrypt" mode
  2. Upload the encrypted file
  3. Enter the password used for encryption
  4. Click "Decrypt File"
  5. Download the decrypted file

Security Notes

  • The encryption runs entirely in your browser
  • Files are never uploaded to any server
  • AES-GCM provides both confidentiality and integrity
  • Your password is never stored
  • The encryption includes the original file type for proper decryption

One-Time Secret

Purpose

Share sensitive information (passwords, API keys, etc.) via a secure link that automatically expires after a single view.

Features

  • Self-destructing links
  • Password protection option
  • Expiration options (5 minutes, 1 hour, 1 day, or 1 week)
  • No sensitive data stored in plaintext
  • Copy link to clipboard functionality

How to Use

  1. Enter the secret information you want to share
  2. Optionally add a password for additional security
  3. Select an expiration time
  4. Click "Create Secret Link"
  5. Share the generated link with the recipient
  6. The recipient views the secret and it's automatically destroyed

Security Notes

  • Once a secret is viewed, it's permanently deleted
  • All secrets are encrypted before storage
  • If a password is set, the recipient must enter it to view the secret
  • Expired secrets are automatically purged from the system

Temporary Email

Purpose

Create disposable email addresses to protect your primary email from spam and security risks when signing up for services.

Features

  • Instantly generated disposable email addresses
  • Real-time inbox viewing
  • No registration required
  • Email forwarding options
  • Automatic expiration

How to Use

  1. Generate a random email address or customize your own
  2. Use this email when signing up for services
  3. View incoming messages in real-time
  4. Copy or forward important information
  5. Discard the email when finished

Security Notes

  • Temporary emails should not be used for important accounts
  • All emails are automatically deleted after expiration
  • Do not share sensitive information through temporary emails
  • The service is designed for testing and temporary use only

Best Practices

  1. Password Generator

- Always use the maximum length practical for your password

- Include all character types when possible

- Never reuse passwords across different services

- Consider storing passwords in a dedicated password manager

  1. File Encryption

- Use strong, unique passwords for your encrypted files

- Store the password securely (not in the same location as the encrypted file)

- Back up your files before encryption

- Remember that lost passwords cannot be recovered

  1. One-Time Secret

- Set passwords for especially sensitive information

- Use the shortest practical expiration time

- Communicate the password through a different channel than the link

- Confirm with recipients when they've viewed the secret

  1. Temporary Email

- Don't use for accounts you'll need long-term access to

- Check emails promptly before they expire

- Don't share personal information through temporary emails

- Consider using a dedicated email service for more permanent needs

Technical Implementation

The Security Suite is implemented using modern web technologies:

  • Next.js React framework
  • Client-side encryption using Web Crypto API
  • LocalStorage for temporary data storage
  • Responsive design for all devices
  • Modern UI components

All security operations are performed client-side for maximum privacy and security. No sensitive data is transmitted to our servers unencrypted.