Current Version: 1.0.0

Python File Protector (Python File Protector.exe) is a desktop application designed to secure files through encryption and access control. This document outlines the security measures, best practices, and known limitations of the application.

• Uses AES-256 encryption for file protection.
• Encryption keys are generated per session and never stored in plaintext.
• Encrypted files have a unique extension to prevent accidental execution.

• User authentication is required to access protected files.
• Passwords are hashed using PBKDF2 with a unique salt per user.
• No plaintext passwords are stored.

• Only authenticated users can encrypt or decrypt files.
• Access logs are maintained for all file operations.

• SHA-256 checksums are used to verify file integrity after encryption and decryption.

• Option to securely delete original files after encryption using multi-pass overwrite.

• Use strong, unique passwords for user accounts.
• Regularly update the application to receive security patches.
• Backup encrypted files in a secure location.
• Do not share encryption keys or passwords.

• The application does not protect against malware or keyloggers on the host system.
• Physical access to the device may compromise security.
• Encrypted files cannot be recovered if the password is lost.

If you discover a security vulnerability, please report it via [GitHub Issues](https://github.com/Royhtml/Enhancing-Python-Protection-Suite/issues) or contact the maintainer directly.

While Python File Protector implements industry-standard security practices, no software can guarantee absolute protection. Users are responsible for maintaining good security hygiene.