📅 Webb Folder Vault – Official Development Roadmap
Last updated: May 2025

Webb Folder Vault is a secure, audit-capable file encryption utility developed and maintained by a single developer with 10+ years in IT, 3 children, and over 19 independent software releases. This roadmap outlines future improvements designed to meet legal, professional, and real-world compliance needs for users across healthcare, law, insurance, finance, and personal security sectors.

✅ Current Features (Initial Release – Q2 2025)
AES-256 encryption with Argon2id password-based key derivation

Optional secondary PIN layer using a custom HMAC stream cipher (PINcipher)

Secure audit log with 2200-day retention and identity-linked actions

Enforced login with optional registration metadata (name, birthdate)

KeyFile management with option to save to external secure location

File compression prior to encryption for size efficiency

External drive protection (prevents encryption of USB/removable media)

Clear visual progress and modern GUI using Tkinter

🔐 Q3 2025 – First Post-Launch Compliance Updates
Focus: Legal Credibility & User Trust
Target Completion: September 2025

HIPAA & ABA Self-Assessment Report Tool
Generate a printable compliance summary with key derivation details, user logins, and encryption metadata for legal or insurance submission.

Salt File Locator & Fallback Loader
Improve decryption success rate by scanning for misplaced salt files and prompting recovery options.

Vault Integrity Verifier
Validate file indexes, audit logs, and metadata to confirm vault health and tamper-free status.

🧩 Q1 2026 – Legal & Enterprise Usability Expansion
Focus: Evidence Handling & Business Usage
Target Completion: March 2026

Activity Log Export to CSV/PDF
Add button to export encryption/decryption and login events for inclusion in court filings, insurance reviews, or security audits.

Legal Hold Mode
Allow files to be decrypted and viewed in a temporary, read-only state with expiration timer and strict re-encryption enforcement.

Policy Lock (Admin Control)
Optional configuration lock to enforce enterprise PIN length, KDF settings, and salt path policy.

🛡️ Q3 2026 – Advanced Threat & Anomaly Logging
Focus: Forensic Audit & Detection
Target Completion: September 2026

Tamper Detection Logs
Add alert entries when salt/index/meta files are renamed, missing, or altered suspiciously.

Failed Login Tracker
Log and optionally display the last N failed login attempts with timestamps and usernames.

Vault Activity Dashboard (Beta)
GUI panel showing time-based activity history, usage stats, and compliance status.

🔒 Q4 2026 – Long-Term Storage & Backup Features
Focus: Data Continuity & Redundancy
Target Completion: December 2026

Encrypted Backup Creation Tool
Option to back up vault contents to another secure folder with fresh encryption keys.

Offline Recovery Printout (Emergency Key Sheet)
Generate a printable offline emergency decryption reference for vault metadata, salt location, and audit summary (no actual keys stored).

Quarterly KDF Parameter Update Notice
Optional notification if your vault has not been re-encrypted using current best practices (e.g., Argon2 memory/time cost outdated).

🔄 Ongoing Commitments
Quarterly Code Audits
Every 3 months, cryptographic and security routines are reviewed and aligned with current best practices.

Zero Data Collection
Webb Folder Vault will never transmit, collect, or store user data. All encryption is local and user-controlled.

Legal/Insurance-Ready Support
All features are designed with U.S., Canadian, EU, and Australian compliance frameworks in mind.

📬 Contact
For roadmap clarification, legal documentation requests, or feature inquiries:
📧 Email: webbfreesoftware@outlook.com
🌐 Website: webbsoftwaresolutions.com