[bribriinlondon]

It's done through the key agreement process itself. If you have the primary private key (SkyKey) you can create the decryption key through the ID input. So if I send something to you, it would be (my SkyKey + your ID "JangoCuni") = unique AES key. To decrypt, you use (your SkyKey + "my ID") to get the same unique shared secret (AES Key). Of course, you use the shared secret value to encrypt the content encryption key.

We tried automating the process of the entire note but we found that people really wanted to put their own language around it. When we hijacked the entire note folks didn't recognize it and it's a lot more "trustable" (is that word LOL) when it comes from a friend with some of their language.

[JangoCuni]

Presumably I can therefore make the shared secret derived through my own ID (JangoCuni SkyKey + ID "JangoCuni") to save text anywehere just for me? Is this possible in cloud storage – do you support bulk file upload processes?

[bribriinlondon]

Hi, we have a managed file transfer / bulk uploader coming out in a new "professional" version in about six weeks, and yes, you can do put only yourself into the Circle of Trust. In fact, I use Posterous as an online password manager exactly like this. It's an encrypted blog, but only I can open it. You could also use something like Tiddly Wiki and keep it local (although IE complains about TW...sigh).