How StarMultiPass works — and why only you can read your vault
StarMultiPass is your own private password vault aboard TimeTrader — like LastPass or Proton Pass, but built right into the ship. It safely keeps the logins, passwords, and notes you don't want to lose, all in one place that only you can open.
Zero-knowledge: only you can read it
Everything you save is locked with your master password before it ever leaves your browser. The encryption happens right here on your device. What gets sent to the ship is a scrambled blob that's useless without your key — the ship literally cannot read it. Not the server, not StarClaude, not the Captain. That's what "zero-knowledge" means: we hold your vault, but we can never see inside it.
How the master password works
Your master password is the one key to your whole vault. When you type it, your browser uses it (with strong, standard cryptography — PBKDF2 with 210,000 rounds, then AES-256-GCM) to turn your vault into ciphertext on save, and back into plaintext only after you unlock. The master password itself is never stored and never sent anywhere.
If you forget your master password
Because only you hold the key, a forgotten master password cannot be recovered — by anyone. There is no "reset" that can reach inside your vault, because no one but you ever could. This is the trade for real privacy. Pick a master password that's strong and memorable, and consider keeping a safe backup of it somewhere only you can reach.
What this is (and isn't)
- It is a private, encrypted place to store your own passwords and secrets.
- It is tied to your TimeTrader account — you must be signed in, and you can only ever open your own vault.
- It isn't readable by anyone else, ever — that's the whole point.
A note on "StarKeys"
The ship keeps its own service keys in an internal vault called StarKeys. StarMultiPass brings that same idea to you: your own personal StarKeys — a private vault that's yours alone, where only your master password opens the door.