VaultSort Logo
VaultSort
HomeTouch ID Encryption
NEW IN V4 — TOUCH ID SUPPORT

Encrypt with your fingerprint.

VaultSort now encrypts and decrypts your files with Touch ID. No YubiKey to carry, no password to remember — just your Mac asking for your fingerprint. And it's every bit as hardware-bound.

Loading...How it works

Requires macOS 14 Sonoma or later. On macOS 13 and earlier, your YubiKey works exactly as before.

👆

Nothing to carry

Your Mac is the key. No hardware to plug in, lose, or forget at home.

Instant by default

Touch ID becomes your primary key — VaultSort reaches for it first, every time.

🔐

Sealed in the Secure Enclave

The secret that protects your files lives in Apple’s Secure Enclave and never touches your disk.

Convenient and genuinely secure

Touch ID isn't a shortcut bolted onto a weaker system. It runs through the exact same V4 cryptographic path as a YubiKey: a secret inside Apple's Secure Enclave produces the key that wraps your file — a secret that never leaves the hardware and never lands on your disk.

In fact, rebuilding the encryption to be truly hardware-bound is what let us ship Touch ID with a straight face. Read the whitepaper for the full design.

Touch ID or YubiKey?

Both are first-class. Many people use both — Touch ID for daily speed, a YubiKey as backup.

Touch ID

  • Built into your Mac — nothing to buy
  • Fast biometric prompt, no PIN to type
  • Syncs across your Apple devices via iCloud
  • Requires macOS 14 Sonoma or later
  • Your Apple account is part of the trust chain

YubiKey

  • A physical key you carry
  • PIN entry plus a touch
  • Device-bound — never syncs anywhere
  • Works on any supported macOS version
  • Strongest isolation, no cloud dependency

Worried about a compromised Apple account? Use a YubiKey as your key — it never syncs. See the trade-off in detail on the encryption page.

Set it up in a minute

1

Open Key Settings

Click the YubiKey status widget in VaultSort, then click “Register Touch ID.”

2

Choose iCloud Keychain

When your browser asks where to save the passkey, choose iCloud Keychain — this is required for Touch ID encryption to work.

3

Authenticate with Touch ID

Approve with your fingerprint. That’s it — Touch ID is now your primary key.

4

Save a recovery code

If you haven’t already, store the one-time recovery code somewhere safe as a backstop.

Your fingerprint is the key.

Update to the latest VaultSort and register Touch ID in under a minute.

Loading...Read the whitepaper

Stay Updated with VaultSort

Get the latest updates, security tips, and feature announcements delivered to your inbox.

🔒We respect your privacy. Unsubscribe at any time.