← Back to Tools
WebCrypto Playground
Generate, store, and use cryptographic keys in the browser - supports all mainstream algorithms
About this tool:
Non-exportable keys
cannot be extracted from the browser - they can only be used for cryptographic operations
Keys are stored in
IndexedDB
and persist across page reloads (origin-bound)
Supports
asymmetric
(RSA, ECDSA, Ed25519) and
symmetric
(AES, HMAC) algorithms
WebCrypto enforces that each algorithm can only perform specific operations (e.g., RSA-OAEP can only encrypt/decrypt, not sign)
Key Generation
Algorithm
Parameter
Parameter
Key Usages (select at least one):
Make key non-exportable
Generate Key
Stored Keys
Loading...
Delete All Keys
Export Keys (JWK)
Encryption / Decryption
Select Key (for decryption)
-- No encryption keys --
Encrypt
Use external public key (encrypt for someone else)
External Public Key (JWK format):
Paste the recipient's public key. Only they can decrypt with their private key.
Plaintext:
Encrypt
Decrypt
Ciphertext (base64, includes IV/nonce if applicable):
Decrypt
Sign / Verify
Select Key (for signing)
-- No signing keys --
Sign
Message to sign:
Sign
Verify
Use external public key (from someone else)
External Public Key (JWK format):
Paste the public key shared by the signer. Must match the algorithm used to sign.
Original message:
Signature (base64):
Verify