Secrets Exchanger: Sharing Passwords Without Trusting the Server (Including Me) May 11, 2026 · 11 min read How a self-destructing-link app uses random AES keys, AWS KMS, and a URL-smuggled token to keep secrets readable only by sender and recipient. aws kms angular cdk security