🍌 ·
Banana Split Banana Split makes your paper backups more resilient and secure using Shamir’s secret sharing.
It splits your secret (e.g., paper backup) into N
pieces, but only requires a majority of those pieces (N/2+1
) to recover your secret.
Why Banana Split?
There’s a few problems with normal paper backups: If you have the whole paper backup somewhere, you’re vulnerable to someone finding it and stealing it—without you ever knowing they did (e.g., they can just take a photo of it). If you split your paper backup into two, what happens if one of those pieces goes missing?
For example:
You use Banana Split to split your paper backup into 5 pieces. You then give 5 friends a piece. It only takes 3 of those friends to come together to retrieve the paper backup. If 2 of your friends end up losing their piece, it’s okay. And if 2 of your friends collude and try to retrieve your backup, they won’t be able to. That is to say:
Any 3 friends will know everything; any 2 friends will know nothing.
Usage
How do you make a Banana Split?
- Save the Banana Split HTML page and open it in offline mode.
- Type your secret into Banana Split. Your secret will be encrypted with an auto-generated passphrase and split it into the number of QR codes you specify.
- Print out your QR codes.
- Write the passphrase by hand on every sheet. Doing this by hand protects against an attacker intercepting things you’re sending to the printer.
How do you retrieve a Banana Split?
Recovery can be done on any device with a webcam.
- Save the Banana Split HTML page and open it in offline mode.
- Using your webcam, scan in a majority of your QR code printouts (e.g., if you had 7 printouts, you’ll need 4).
- Enter your passphrase.
- Viola! Your secret is restored.
⚠️ Important
Work local and offline
Banana Split is a self-contained HTML page. To ensure your precious data is never sent outside, it only works when opened from your local hard drive while your browser is in Offline mode.
Without the passphrase, you won’t be able to retrieve your secret
To retrieve your secret, you’ll need to have a majority of the printouts and know the passphrase. This is why it is critical for you to write the passphrase on every printout.
Keep the HTML document
This HTML page is a fully self-contained application under GPLv3 license. Please feel free to copy and share it with anyone you want to use it. The more copies out there, the less likely it will be compromised or taken down.
Development
Project setup
yarn install
Compiles and hot-reloads for development
yarn run serve
Compiles and minifies for production
yarn run build
Run unit tests
yarn run test:unit
Run end-to-end UI tests
yarn run test:e2e
Lints and fixes files
yarn run lint