AES Encryption Explained: Encrypt Text with a Password

Q: What encryption does this tool use?

AES-256 in GCM mode, an authenticated cipher that both encrypts and detects tampering. The key is derived from your password with PBKDF2-SHA256 over 250,000 iterations and a random salt, and a fresh random IV is used for every message.

Q: How do I share an encrypted message?

Encrypt the text, send the resulting Base64 to the recipient, and share the password through a separate channel (for example, send the ciphertext by email and the password by a messaging app). They paste both into the tool and choose Decrypt.

Q: Can you recover my text if I forget the password?

No. The encryption has no backdoor and nothing is stored anywhere, so a forgotten password means the ciphertext is unrecoverable. Store the password in a password manager.

What this tool does

The AES Text Encryption tool turns readable text into an encrypted block of Base64 that only someone with the password can turn back into the original. It's handy for sending a secret note, a recovery code or a short credential to someone over an otherwise insecure channel. All of it happens in your browser — nothing is uploaded.

What is AES?

AES (Advanced Encryption Standard) is the symmetric cipher used almost everywhere to protect data, from disk encryption to HTTPS. Symmetric means the same secret both locks and unlocks the data. This tool uses AES-256 (a 256-bit key) in GCM mode, which is authenticated: as well as encrypting, it adds a tag that detects if the ciphertext was altered, so tampering or a wrong password fails cleanly instead of returning garbage.

From password to key: PBKDF2

A password isn't a good encryption key on its own, so the tool stretches it into one with PBKDF2-SHA256 over 250,000 iterations, mixed with a random salt. The salt means the same password produces a different key every time, and the many iterations make brute-forcing the password far slower. The salt and a random initialisation vector (IV) are stored alongside the ciphertext so decryption can reproduce the key — they aren't secret, but the password is.

How to encrypt and share a message

Keep the mode on Encrypt, paste your text and enter a strong password.
Press Encrypt and copy the Base64 result.
Send the ciphertext to the recipient, and send the password separately — a different app or channel.
They switch the tool to Decrypt, paste the ciphertext and password, and read the message.

Choosing a password

The encryption is only as strong as the password protecting it. Use a long, random one — the Password Generator makes good ones, and the Password Strength Checker shows how it measures up. There is no recovery if you lose it.

What it is not for

This is great for sharing small secrets, but it isn't a replacement for end-to-end encrypted messengers, full-disk encryption, or a password manager for everyday credential storage. For files and large data, use purpose-built tools.

Your data stays private

Encryption and decryption run locally with the Web Crypto API. Your text and password never leave your device, and nothing is stored.

FAQ

What encryption does this tool use?

AES-256-GCM with a PBKDF2-SHA256 key (250,000 iterations, random salt and IV per message).

How do I share an encrypted message?

Send the Base64 ciphertext one way and the password another, then the recipient decrypts with both.

Can you recover my text if I forget the password?

No — there's no backdoor and nothing is stored, so a lost password means the text is unrecoverable.

Ready to try it? Open the AES Text Encryption tool →

AES encryption, explained