proxykey API KEY VAULT

Security & threat model

You trust us with your most sensitive material — API keys. So this page is written without marketing fog: what exactly is protected, what is NOT, and the one question you'll still have to answer for yourself.

Updated: 2026-07-06 · proxykey

How the encryption works

Threat model: the honest table

ScenarioProtected?By what
Database dump leaksSecrets are encrypted, the KEK is not in the database; tokens are hashes only.
Backup theftBackups hold the same ciphertexts, without the KEK.
Log exposureLogs contain no keys, no auth headers, no query values; body previews are opt-in with secret-looking strings redacted.
A pass (vlt_…) leaksIP binding, rpm/rpd limits, one-click revocation; the original is never exposed.
An agent's MCP token leaksThe MCP surface cannot read or create secrets — it only manages passes.
Hostile custom base URL (SSRF)A guard that blocks private/metadata ranges and pins DNS resolution.
Database-only compromise (app server intact)Without the KEK from the process environment, ciphertexts are useless.
Full server compromise or a malicious operatorWhoever holds the ciphertexts, the KEK and the code can decrypt the secrets. Details below.

The most uncomfortable question

"Can you read my keys yourselves?" Technically — yes. The proxy must decrypt a key to inject it into the upstream request — that is the entire point of the service. Which means a process with full access (and therefore the server operator) is in principle able to obtain the plaintext. This is not an implementation flaw; it is an architectural property of any credential proxy: "zero-knowledge" is impossible here — unlike, say, a password manager, which never needs your secret server-side.

It is worth knowing: every hosted product in this class works the same way (secret managers, proxies, cloud key vaults). The only difference is whether they say it out loud. We do.

How to reduce even that risk

What we log

Metadata of every proxied request: method, path, HTTP status, latency, source IP, provider. Never: auth headers, key values, query strings. The full data inventory and retention terms are in the privacy policy.

Questions about the threat model?

Technical details are in the docs (Security model section). Found a weakness — tell us; that's the best contribution to everyone's security.

Try it with a scoped key →