API Reference
REST API for zero-knowledge encrypted link sharing
Overview
The CIPH4 API provides programmatic access to every feature available in the dashboard. Drop payloads are encrypted client-side (AES-256-GCM) before upload. Sensitive operational secrets are encrypted at rest. All data in transit uses TLS 1.3. The API uses standard HTTP methods, returns JSON responses, and authenticates via API keys or session cookies.
Zero-Knowledge
Server never sees plaintext. Client-side encryption before upload.
Hash-Chained Audit
Tamper-evident audit trail with cryptographic integrity verification.
Per-Request Auth
Every API call is authenticated and plan-gated. No ambient authority.
Need help integrating? Reach out to our engineering team.