Back to projects
Nothing Vault
A secure photo vault app for Android that lets you hide photos behind PIN-protected folders. Each folder has its own PIN — enter the right one to access your vault, enter the wrong one and you're redirected to a decoy screen. Photos are encrypted with AES-256-GCM using Android KeyStore, with PBKDF2 PIN hashing and Android BiometricPrompt integration.
KotlinJetpack ComposeAndroidAES Encryption
Challenges
- 1Implementing AES-256-GCM encryption with Android KeyStore for secure photo storage and decryption on-the-fly
- 2Designing a dual-purpose lock screen that authenticates to real vault folders or redirects to a decoy screen on wrong PIN
- 3Building a glassmorphic UI from scratch that matches Nothing's minimalist dot-matrix aesthetic
- 4Managing photo caching and pre-decryption for smooth scrolling in the gallery grid
What I Learned
- ✓Android KeyStore and hardware-backed cryptographic key generation with AES/GCM/NoPadding
- ✓Jetpack Compose navigation with multi-route argument passing and animated transitions
- ✓BiometricPrompt API integration for fingerprint-based folder unlock
- ✓PBKDF2WithHmacSHA256 PIN hashing with per-folder salt for folder-level security
- ✓Building custom Compose UI components — glassmorphic cards, PIN pads, liquid glass backgrounds