Oryn

Oryn is a hardware-secured, on-chain password manager built on Base. It transforms a Ledger device into a physical access key for a personal password vault: without the device, access is impossible.

Oryn encrypts user credentials locally and stores only encrypted blobs on-chain. The encryption keys are never stored or exposed—they are deterministically derived from Ledger signatures, meaning they can only be recreated when the user physically approves a request on their device.

In essence, Oryn replaces traditional password managers with a system where security depends entirely on cryptography and physical ownership.

Oryn is built as a Chrome extension using TypeScript and Manifest V3. It detects login forms, retrieves encrypted data, and autofills credentials after decryption. The extension communicates directly with a Ledger device via the Ledger Device Management Kit (DMK). Instead of storing encryption keys, Oryn derives AES-256-GCM keys from deterministic Ledger signatures based on the website’s domain name. Because each domain produces a unique signature, this results in a different encryption key for every site. The same key can only be recomputed with the physical Ledger device, eliminating the need to ever store keys.

Encrypted password blobs are then stored on-chain in a Solidity smart contract deployed on Base.