Rethinking Privacy: Introducing Zero-Trust Tasks
I’m excited to share a project I’ve been working on: Zero-Trust Tasks.
In an era where data breaches are common and cloud providers often have “too much” access to our personal lives, I wanted to build a task manager that follows a simple rule: “Never Trust, Always Verify.”
What makes it “Zero-Trust”?
Unlike traditional apps, Zero-Trust Tasks assumes the storage environment (including Google Drive) is compromised.
Zero-Knowledge Architecture: Your tasks are encrypted locally on your device using AES-256-GCM.
Hardened Key Derivation: We use PBKDF2 (100,000+ iterations) to derive encryption keys from your master password. Your password is never stored; only you hold the key.
Hardware-Backed Security: We leverage the iOS Keychain and Android Keystore to protect cryptographic salts and metadata.
Authenticated Encryption: If even one bit of your data is tampered with in storage, the app detects it and refuses to decrypt, protecting your data integrity.
Feature Roadmap
The app is currently in active development. While the core encryption engine is rock solid, I am currently working on expanding the ecosystem:
AES-256-GCM Local Encryption.
Task & Sub-task Management with Priority levels.
Import / Export Features: [Under Development] — I am currently finalizing the “Migration Package” logic to allow seamless, secure transfers between devices.
Google Drive Sync: [Under Development] — Implementing a “Least Privilege” sync that keeps Google blind to your data.
Open Source & Community Driven
Privacy should be transparent. This is a 100% open-source project, and I welcome security audits, contributions, and feedback from the community.
Check out the code here: 
GitHub - EdoSag/Zero-Trust-Tasks
[once I upload to google store, I will post the link here]
I’d love your feedback!