What is Air-Gapped Computer?
A computer that is physically isolated from the internet and all other networks, used for handling the most sensitive data and cryptographic operations.
An air-gapped computer has no physical connection to any network — no WiFi, no Ethernet, no Bluetooth.
Use Cases
- Cryptocurrency cold storage: Sign transactions offline
- Key ceremonies: Generate and manage root cryptographic keys
- Classified systems: Military and government secrets
- Sensitive document handling: Journalistic sources, legal documents
How to Create One
- Use a dedicated device (never connected to internet)
- Disable or physically remove wireless hardware
- Boot from a live USB (Tails) for additional security
- Transfer data only via physically verified USB drives or QR codes
- Consider removing the hard drive entirely (run from RAM only)
Limitations
- Data must be manually transferred (USB, QR codes)
- Acoustic, electromagnetic, and thermal side-channel attacks exist but require physical proximity
- Human error (connecting to WiFi "just once") destroys the air gap
- USB drives can carry malware (Stuxnet crossed air gaps via USB)
Related Terms
Air Gap
A security measure that physically isolates a computer or network from the internet and other unsecured networks. An air-gapped system has no wired or wireless connections to the outside world, making remote hacking virtually impossible.
Cold Boot Attack
A technique for extracting encryption keys from a computer's RAM by physically accessing the memory chips after a shutdown, exploiting the fact that RAM doesn't clear instantly.
Operational Security
The practice of protecting sensitive information by thinking like an adversary to identify vulnerabilities in your own behavior and communications. OPSEC goes beyond technical tools to address human factors that could expose you.
Have more questions?
Use our guided flow to get the right next privacy step for Air-Gapped Computer.
Open Guided Flow