API Reference
REST API for zero-knowledge encrypted link sharing
Overview
The CIPH4 API provides programmatic access to every feature available in the dashboard. Drop payloads are encrypted client-side (AES-256-GCM) before upload. Sensitive operational secrets are encrypted at rest. All data in transit uses TLS 1.2+ (1.3 preferred). The API uses standard HTTP methods, returns JSON responses, and authenticates via API keys or session cookies.
Zero-Knowledge
Server never sees plaintext. Client-side encryption before upload.
Hash-Chained Audit
Tamper-evident audit trail with cryptographic integrity verification.
Per-Request Auth
Every API call is authenticated and plan-gated. No ambient authority.
Need help integrating? Reach out to our engineering team.