Security Model
How Claw-Nomad protects your assets and data.
Last updated: January 15, 2025
Security is foundational to Claw-Nomad. We use a local-first architecture that keeps your sensitive data on your device.
Core Security Principles
Local-First
Credentials, private keys, and agent memory are encrypted and stored locally. Our servers never see your sensitive data.
Zero-Knowledge
Commands are processed in a way that we can execute actions without having access to the underlying credentials.
Defense in Depth
Multiple layers of protection: encryption, permissions, limits, approvals, and audit logging.
Encryption
| Name | Type | Required | Description |
|---|---|---|---|
Algorithm | AES-256-GCM | Required | Industry-standard symmetric encryption |
Key Derivation | PBKDF2 | Required | Password-based key derivation |
Storage | Local | Required | Encrypted data stays on your device |