The cipher itself is stateless and deterministic, so server-side PHP is sufficient and keeps the logic auditable. The archive, however, benefits from staying on the client: no login system is needed, ...