Security & Architecture
0bla is designed with a radical approach: reduce the attack surface, limit data collection and maintain total control over the infrastructure.
1. Zero-Trace by Design
0bla applies a strict data minimization policy: no IP stored in plain text, no personal data on visitors, no correlation between users and visitors, no data resale or exploitation. Statistics are aggregated and anonymized.
2. IP Address Management
IP addresses are never stored in plain text. They are transformed via an HMAC mechanism with rotating salt, preventing re-identification, limiting time-based correlation and retaining only unexploitable fingerprints.
3. Security Stack
HTTPS (TLS) across the entire service, HSTS to force secure connections, CSP with nonce to limit injections, XSS and CSRF protection, secure hashing of sensitive data (Argon2ID).
4. Technical Architecture
Server-side PHP sessions, no JWT (no token exposed client-side), centralized and controlled logic, limited external dependencies. This approach reduces attack vectors.
5. Hosting
The service is hosted in Switzerland at Infomaniak. Strict legal framework for data protection, reliable and secure infrastructure, independence from major advertising platforms.
6. Reduced Attack Surface
0bla deliberately limits its technical complexity: no third-party scripts, no external trackers, no unnecessary integrations. Fewer components means fewer potential vulnerabilities.
For any technical or security question, use Contact.