Project Name: DecVault
Name of the organization or individual submitting the proposal: Hani
⸻
- Summary of Previous Work
Over two completed Sia Foundation grants, DecVault (formerly SecureSphere) has evolved from a prototype into a robust decentralized security platform.
Small Grant - Completed
Delivered a fully functional MVP including:
• Encrypted password manager
• Breach monitoring
• Mobile application
• Browser extension
• Sia-based encrypted backups
• Full client-side encryption
Standard Grant - Completed
Delivered:
• Major upgrade of the mobile application
• macOS and Windows desktop applications
• Encrypted file vault foundation
• QR-based authentication
• Cross-platform encryption consistency
• Self-hosted Sia node support
• Institutional interest from universities evaluating DecVault for student use
This new proposal builds directly on a fully working multi-platform base and focuses on delivering the web application, enterprise features, and a public API for integrations.
⸻
- Project Description
DecVault is becoming a complete decentralized security suite that enables users and organizations to securely store, share, and manage sensitive data using decentralized storage on the Sia network. It combines password management, encrypted file storage, secure sharing, and enterprise identity into one unified ecosystem.
This grant focuses on three major expansions:
A. Encrypted File Vault and Sharing System
A full secure vault where users and organizations can upload, download, preview, manage, and share encrypted files stored on the Sia network.
B. DecVault Web Application
A browser-based portal enabling individuals, teams, and enterprises to manage their vaults, users, permissions, and activity logs.
C. Public API for ERP/CRM/Internal System Integration
A complete API layer that allows companies to integrate DecVault directly into their internal software stacks (ERP, CRM, HR systems, university platforms, financial systems, etc.).
This transforms DecVault into an enterprise-ready decentralized security platform.
These components are natural extensions of the current DecVault platform and were the most requested features during the previous development cycle.
⸻
- Who Benefits From the Project
Individuals
Gain full ownership and control of their sensitive data through encrypted vaults and decentralized storage.
Organizations and Enterprises
Receive a secure file-sharing system, team vaults, permission management, and the ability to integrate secure storage into internal systems through the API.
Universities and Institutions
Can deploy DecVault internally for students and staff, enabling secure document distribution and encrypted collaboration.
Developers
Gain access to a complete API and documentation for building their own decentralized applications using Sia.
⸻
Why This Project Is Needed
The next stage of DecVault focuses on three essential components that respond to clear, general needs in secure data management.
- Encrypted File Vault and Sharing System
Users increasingly require a secure way to store and share sensitive documents without relying on centralized cloud providers. A decentralized, end-to-end encrypted file vault ensures full data ownership, eliminates third-party access, and provides a privacy-focused alternative for managing and sharing files across devices.
- DecVault Web Application
Many users operate primarily on desktop environments and need access to their vault directly through the browser. A web application provides universal accessibility, cross-platform consistency, and a central interface for managing files, passwords, permissions, and security settings without installing additional software.
- Public API for ERP/CRM/Internal System Integration
Modern workflows often require programmatic access to secure storage. A public API enables organizations and developers to integrate DecVault’s encrypted vault into internal tools, automate secure file distribution, sync sensitive data, and extend decentralized storage into existing systems. This significantly increases the practicality and ecosystem value of DecVault.
⸻
Request Origin and Relevancy
During the development of the previous grants, several groups expressed interest in the next phase of DecVault. These include individuals who manage sensitive data across multiple devices, organizations needing secure internal document workflows, university departments seeking safer distribution of digital materials, and businesses operating desktop-based environments that require a web-accessible vault with controlled permissions. Developers working with internal systems also requested an API to integrate encrypted storage directly into their own tools.
These inquiries highlighted the real demand for a decentralized file vault, web portal, and API features that form the core of this proposal.
⸻
- Alignment With the Sia Foundation Mission
DecVault directly supports the Foundation’s mission of advancing user-owned data systems:
• All files, passwords, identifiers, and metadata are encrypted client-side.
• All storage uses the Sia network through renterd.
• No central server, vendor lock-in, or third-party data exposure.
• Code is open-source, enabling developers to integrate decentralized storage.
• Enterprise adoption increases network usage and promotes Sia as a foundation for secure applications.
DecVault serves as a real-world example of how Sia can power decentralized, secure, enterprise-grade systems.
⸻
- Grant Amount Requested and Budget Breakdown
Total Requested Amount: $48,080
This reflects a full 8-month development cycle with expanded scope to support the Web App and Public API.
Budget Breakdown
• 8 months × 192 hours/month × $30/hour = $46,080 (full-time development)
• Infrastructure and hosting = $2,000
Total: $48,080
⸻
- Timeline and Milestones (8 Months)
Each milestone covers one month of work.
Month 1 Authentication and Organization Accounts
• QR login across mobile, web, and desktop
• Organizations seed-based identity model
• Organization account creation flow
• Initial admin panel
• User and role management structure
• Encrypted audit log model
Month 2 Team Vaults and Multi-User Encryption
• Multi-user encrypted vaults
• Shared passwords and files with client-side encryption
• Team folders with role-based permissions
• Shared vault synchronization
• Organization activity logs (client-side encrypted)
• Cross-platform UI support
Month 3 Encrypted File Vault and Sharing System (Part 1)
• Sia-powered file upload and download
• Encrypted metadata and folder structure
• File versioning support
• Basic sharing system (user, team, secure link)
• Permission model: view, download
Month 4 Encrypted File Vault and Sharing System (Part 2)
• File previews for common types
• Encrypted activity logs for files
• Advanced sharing management
• Performance optimization for renterd integration
• Compliance features (encrypted access records)
Month 5 DecVault Web Application (Part 1)
• Web login (seed and QR)
• Password vault interface
• File vault interface
• Team vault interface
• Organization dashboard structure
• Storage analytics
• Security center and navigation system
Month 6 DecVault Web Application (Part 2) and Start of Public API
Web App Deliverables:
• Sharing management center
• Team management pages
• Admin controls (invite users, assign roles)
API Deliverables (Initial Phase):
• API authentication model
• REST API architecture
• Core file vault endpoints (upload, download, list)
• Organization/user API foundations
Month 7 Public API and Developer Portal (Part 2)
• Password vault API
• Sharing API
• Webhooks for events (file actions, breach alerts)
• API rate limiting and usage metrics
• API key management dashboard
• Integration examples (JS, Python, PHP, Flutter)
• Interactive API documentation portal
Month 8 Public API (Part 3),Internal Security Audit, and Production Launch
• Final API endpoints
• Completed API documentation
• Load testing and performance validation
• Internal security review and system hardening
• Public production release across platforms
⸻
- Risks and Mitigation
API Security Complexity
Mitigation: Strong encryption model, internal security review, and strict token authentication.
Multi-User Encryption Challenges
Mitigation: Extend proven vault encryption from existing apps.
High Load From Enterprise Users
Mitigation: Optimization of renterd usage, performance testing under load.
Web App Compatibility
Mitigation: Fully client-side encryption and modular architecture.
⸻
- Development Information
Will all of the project’s code be open-source?
Yes. All main modules, libraries, and integrations will be open-source.
Where will the code be accessible?
GitHub repositories will be created under:
Monthly progress reports
Yes.
⸻
- Conclusion
This grant will allow DecVault to mature into a complete decentralized security platform, offering:
• A full encrypted file-sharing system
• A business-ready web application
• Enterprise identity and team vaults
• A complete public API and developer ecosystem
• A practical real-world use case for Sia’s decentralized storage
With multi-platform coverage, institutional interest, API availability, and web-based management tools, DecVault will significantly expand the adoption of the Sia network and provide a powerful example of user-owned, decentralized security infrastructure.