Standard Notes — End-to-End Encrypted Notes with Longevity

Introduction

Standard Notes is a simple, encrypted note-taking app designed to last 100 years. Every note is end-to-end encrypted before it leaves your device, meaning not even the server operator can read your content. The self-hostable server gives you full control over where your encrypted data lives.

What Standard Notes Does

• Encrypts all notes end-to-end with AES-256 and Argon2-derived keys before sync
• Syncs across desktop (Windows, macOS, Linux), mobile (iOS, Android), and web
• Supports rich editors including Markdown, code, spreadsheets, and task lists via extensions
• Provides tag-based organization with nested tags and smart filters
• Offers a self-hostable sync server for teams and privacy-conscious individuals

Architecture Overview

The Standard Notes ecosystem has three parts: client apps, a sync server, and an encryption protocol (SNJS). The sync server is a Node.js application backed by MySQL that stores only encrypted payloads. Decryption happens exclusively on the client. The web and desktop apps are built with React and share a common core library for encryption and sync logic.

Self-Hosting & Configuration

• Clone the server repo and run docker compose up -d to start all services
• The stack includes the API server, a MySQL database, and a file uploads service
• Set AUTH_JWT_SECRET and other secrets in the .env file before first run
• Configure your client apps to point to your server URL in account settings
• Place behind a reverse proxy with HTTPS since the API transmits encrypted blobs

Key Features

• Zero-knowledge encryption where the server never has access to plaintext
• 100-year longevity philosophy with simple, durable data formats
• Extensible editor system with Markdown, rich text, code, and spreadsheet editors
• Note history with version snapshots for reverting accidental changes
• Two-factor authentication and account recovery via encrypted backup keys

Comparison with Similar Tools

• Joplin — open-source and supports E2EE but relies on third-party sync backends; Standard Notes bundles its own encrypted sync server
• Obsidian — powerful for knowledge graphs but not fully open-source; Standard Notes is open-source with native encryption
• Notesnook — similar encryption focus; Standard Notes has a longer track record and self-hosting option
• Apple Notes — convenient but locked to iCloud; Standard Notes is cross-platform and self-hostable

FAQ

Q: Can anyone read my notes on the server? A: No. Notes are encrypted on your device before sync. The server stores only encrypted blobs that are unreadable without your password-derived keys.

Q: Is the self-hosted server free? A: Yes. The server and all core apps are open source. Some premium editor extensions require a subscription on the hosted service but work with self-hosted servers if you build them yourself.

Q: How does the 100-year longevity promise work? A: Standard Notes commits to simple, stable data formats and long-term maintenance. Notes are stored as plain encrypted JSON, making them future-proof regardless of app availability.

Q: Can I import notes from other apps? A: Yes. Standard Notes supports importing from Evernote, Google Keep, Simplenote, and plain text or JSON files.

Sources

• https://github.com/standardnotes/app
• https://docs.standardnotes.com/