diff --git a/README.md b/README.md
index 76e1e8c..966a5d0 100755
--- a/README.md
+++ b/README.md
@@ -106,6 +106,7 @@ Read more at: <https://tauri.app/v1/guides/distribution/updater/#signing-updates
 -   [ ] Create mobile version
 -   [ ] Create Windows version
 -   [ ] Create Linux version
+-   [ ] Code optimizations
 
 ## Security Issues
 
diff --git a/apps/desktop/.env.example b/apps/desktop/.env.example
index a02d1b2..7c1ef3d 100644
--- a/apps/desktop/.env.example
+++ b/apps/desktop/.env.example
@@ -1,3 +1,3 @@
-VITE_SUPABASE_URL=
+VITE_SUPABASE_URL=http://localhost:54321
 VITE_SUPABASE_ANON_KEY=
 VITE_SERVICE_ROLE_KEY=
diff --git a/apps/desktop/src-tauri/Cargo.lock b/apps/desktop/src-tauri/Cargo.lock
index ced5df5..16ac143 100644
--- a/apps/desktop/src-tauri/Cargo.lock
+++ b/apps/desktop/src-tauri/Cargo.lock
@@ -23,7 +23,7 @@ dependencies = [
  "cfg-if",
  "cipher 0.3.0",
  "cpufeatures",
- "opaque-debug 0.3.0",
+ "opaque-debug",
 ]
 
 [[package]]
@@ -149,12 +149,6 @@ dependencies = [
  "zeroize",
 ]
 
-[[package]]
-name = "binascii"
-version = "0.1.4"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "383d29d513d8764dcdc42ea295d979eb99c3c9f00607b3692cf68a431f7dca72"
-
 [[package]]
 name = "bitflags"
 version = "1.3.2"
@@ -178,26 +172,14 @@ version = "0.1.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0d8c1fef690941d3e7788d328517591fecc684c084084702d6ff1641e993699a"
 
-[[package]]
-name = "block-buffer"
-version = "0.7.3"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c0940dc441f31689269e10ac70eb1002a3a1d3ad1390e030043662eb7fe4688b"
-dependencies = [
- "block-padding 0.1.5",
- "byte-tools",
- "byteorder",
- "generic-array 0.12.4",
-]
-
 [[package]]
 name = "block-buffer"
 version = "0.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "4152116fd6e9dadb291ae18fc1ec3575ed6d84c29642d97890f4b4a3417297e4"
 dependencies = [
- "block-padding 0.2.1",
- "generic-array 0.14.6",
+ "block-padding",
+ "generic-array",
 ]
 
 [[package]]
@@ -206,7 +188,7 @@ version = "0.10.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0bf7fe51849ea569fd452f37822f606a5cabb684dc918707a0193fd4664ff324"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array",
 ]
 
 [[package]]
@@ -215,19 +197,10 @@ version = "0.8.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "2cb03d1bed155d89dce0f845b7899b18a9a163e148fd004e1c28421a783e2d8e"
 dependencies = [
- "block-padding 0.2.1",
+ "block-padding",
  "cipher 0.3.0",
 ]
 
-[[package]]
-name = "block-padding"
-version = "0.1.5"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fa79dedbb091f449f1f39e53edf88d5dbe95f895dae6135a8d7b881fb5af73f5"
-dependencies = [
- "byte-tools",
-]
-
 [[package]]
 name = "block-padding"
 version = "0.2.1"
@@ -274,24 +247,12 @@ dependencies = [
  "memchr",
 ]
 
-[[package]]
-name = "build_const"
-version = "0.2.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b4ae4235e6dac0694637c763029ecea1a2ec9e4e06ec2729bd21ba4d9c863eb7"
-
 [[package]]
 name = "bumpalo"
 version = "3.10.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "37ccbd214614c6783386c1af30caf03192f17891059cecc394b4fb119e363de3"
 
-[[package]]
-name = "byte-tools"
-version = "0.3.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e3b5ca7a04898ad4bcd41c90c5285445ff5b791899bb1b0abdd2a2aa791211d7"
-
 [[package]]
 name = "bytemuck"
 version = "1.11.0"
@@ -397,7 +358,7 @@ version = "0.3.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "7ee52072ec15386f770805afd189a01c8841be8696bed250fa2f13c4c0d6dfb7"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array",
 ]
 
 [[package]]
@@ -519,15 +480,6 @@ dependencies = [
  "libc",
 ]
 
-[[package]]
-name = "crc"
-version = "1.8.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d663548de7f5cca343f1e0a48d14dcfb0e9eb4e079ec58883b7251539fa10aeb"
-dependencies = [
- "build_const",
-]
-
 [[package]]
 name = "crc-any"
 version = "2.4.3"
@@ -537,12 +489,6 @@ dependencies = [
  "debug-helper",
 ]
 
-[[package]]
-name = "crc16"
-version = "0.4.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "338089f42c427b86394a5ee60ff321da23a5c89c9d89514c829687b26359fcff"
-
 [[package]]
 name = "crc32fast"
 version = "1.3.2"
@@ -552,12 +498,6 @@ dependencies = [
  "cfg-if",
 ]
 
-[[package]]
-name = "crc8"
-version = "0.1.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b31d2174830f395fd7e413c2f8a119252de36356982f805f495269331e97559e"
-
 [[package]]
 name = "crossbeam-channel"
 version = "0.5.6"
@@ -568,6 +508,31 @@ dependencies = [
  "crossbeam-utils",
 ]
 
+[[package]]
+name = "crossbeam-deque"
+version = "0.8.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "715e8152b692bba2d374b53d4875445368fdf21a94751410af607a5ac677d1fc"
+dependencies = [
+ "cfg-if",
+ "crossbeam-epoch",
+ "crossbeam-utils",
+]
+
+[[package]]
+name = "crossbeam-epoch"
+version = "0.9.10"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "045ebe27666471bb549370b4b0b3e51b07f56325befa4284db65fc89c02511b1"
+dependencies = [
+ "autocfg",
+ "cfg-if",
+ "crossbeam-utils",
+ "memoffset",
+ "once_cell",
+ "scopeguard",
+]
+
 [[package]]
 name = "crossbeam-utils"
 version = "0.8.11"
@@ -584,7 +549,7 @@ version = "0.1.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "1bfb12502f3fc46cca1bb51ac28df9d618d813cdc3d2f25b9fe775a34af26bb3"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array",
  "typenum",
 ]
 
@@ -594,7 +559,7 @@ version = "0.11.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "b1d1a86f49236c215f271d40892d5fc950490551400b02ef360692c29815c714"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array",
  "subtle",
 ]
 
@@ -733,16 +698,7 @@ checksum = "ac41dd49fb554432020d52c875fc290e110113f864c6b1b525cd62c7e7747a5d"
 dependencies = [
  "byteorder",
  "cipher 0.3.0",
- "opaque-debug 0.3.0",
-]
-
-[[package]]
-name = "digest"
-version = "0.8.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f3d0c8c8752312f9713efd397ff63acb9f85585afbf179282e720e7704954dd5"
-dependencies = [
- "generic-array 0.12.4",
+ "opaque-debug",
 ]
 
 [[package]]
@@ -751,7 +707,7 @@ version = "0.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d3dd60d1080a57a05ab032377049e0591415d2b31afd7028356dbf3cc6dcb066"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array",
 ]
 
 [[package]]
@@ -808,21 +764,10 @@ dependencies = [
 ]
 
 [[package]]
-name = "easy-hasher"
-version = "2.2.1"
+name = "either"
+version = "1.8.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "91513ddb31553dbdf858a6ec344b1351ebf734a721d7df5e73ef10bad8494612"
-dependencies = [
- "crc",
- "crc16",
- "crc8",
- "md2",
- "md4",
- "md5",
- "sha1",
- "sha2 0.8.2",
- "sha3 0.8.2",
-]
+checksum = "90e5c1c8368803113bf0c9584fc495a58b86dc8a29edbf8fe877d21d9507e797"
 
 [[package]]
 name = "embed-resource"
@@ -834,7 +779,7 @@ dependencies = [
  "rustc_version 0.4.0",
  "toml",
  "vswhom",
- "winreg",
+ "winreg 0.10.1",
 ]
 
 [[package]]
@@ -843,12 +788,6 @@ version = "1.2.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "4ef6b89e5b37196644d8796de5268852ff179b44e96276cf4290264843743bb7"
 
-[[package]]
-name = "fake-simd"
-version = "0.1.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e88a8acf291dafb59c2d96e8f59828f3838bb1a70398823ade51a84de6a6deed"
-
 [[package]]
 name = "fastrand"
 version = "1.8.0"
@@ -1129,15 +1068,6 @@ dependencies = [
  "windows 0.32.0",
 ]
 
-[[package]]
-name = "generic-array"
-version = "0.12.4"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ffdf9f34f1447443d37393cc6c2b8313aebddcd96906caf34e54c68d8e57d7bd"
-dependencies = [
- "typenum",
-]
-
 [[package]]
 name = "generic-array"
 version = "0.14.6"
@@ -1498,7 +1428,7 @@ version = "0.1.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a0c10553d664a4d0bcff9f4215d0aac67a639cc68ef660840afe309b807bc9f5"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array",
 ]
 
 [[package]]
@@ -1689,7 +1619,7 @@ dependencies = [
  "rust-argon2",
  "sha-1",
  "sha2 0.10.2",
- "sha3 0.10.2",
+ "sha3",
  "unicode-normalization",
 ]
 
@@ -1755,6 +1685,15 @@ dependencies = [
  "time",
 ]
 
+[[package]]
+name = "machine-uid"
+version = "0.2.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "1f1595709b0a7386bcd56ba34d250d626e5503917d05d32cdccddcd68603e212"
+dependencies = [
+ "winreg 0.6.2",
+]
+
 [[package]]
 name = "magic-crypt"
 version = "3.1.10"
@@ -1818,38 +1757,9 @@ checksum = "7b5a279bb9607f9f53c22d496eade00d138d1bdcccd07d74650387cf94942a15"
 dependencies = [
  "block-buffer 0.9.0",
  "digest 0.9.0",
- "opaque-debug 0.3.0",
+ "opaque-debug",
 ]
 
-[[package]]
-name = "md2"
-version = "0.8.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f130b74b5f0b05ffd405280ed1a9c2e4539fc3ca01f37b9ea947cd64922116e9"
-dependencies = [
- "block-buffer 0.7.3",
- "digest 0.8.1",
- "opaque-debug 0.2.3",
-]
-
-[[package]]
-name = "md4"
-version = "0.8.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a4030c65cf2aab7ada769cae7d1e7159f8d034d6ded4f39afba037f094bfd9a1"
-dependencies = [
- "block-buffer 0.7.3",
- "digest 0.8.1",
- "fake-simd",
- "opaque-debug 0.2.3",
-]
-
-[[package]]
-name = "md5"
-version = "0.7.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "490cc448043f947bae3cbee9c203358d62dbee0db12107a74be5c30ccfd09771"
-
 [[package]]
 name = "memchr"
 version = "2.5.0"
@@ -1965,6 +1875,15 @@ dependencies = [
  "winrt-notification",
 ]
 
+[[package]]
+name = "ntapi"
+version = "0.3.7"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "c28774a7fd2fbb4f0babd8237ce554b73af68021b5f695a3cebd6c59bac0980f"
+dependencies = [
+ "winapi",
+]
+
 [[package]]
 name = "num-integer"
 version = "0.1.45"
@@ -2091,12 +2010,6 @@ version = "1.13.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "18a6dbe30758c9f83eb00cbea4ac95966305f5a7772f3f42ebfc7fc7eddbd8e1"
 
-[[package]]
-name = "opaque-debug"
-version = "0.2.3"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2839e79665f131bdb5782e51f2c6c9599c133c6098982a54c794358bf432529c"
-
 [[package]]
 name = "opaque-debug"
 version = "0.3.0"
@@ -2181,16 +2094,17 @@ dependencies = [
 
 [[package]]
 name = "otentik-authenticator"
-version = "0.6.0"
+version = "0.7.0"
 dependencies = [
  "bcrypt",
- "binascii",
  "cocoa",
- "easy-hasher",
  "libreauth",
+ "machine-uid",
  "magic-crypt",
  "serde",
  "serde_json",
+ "sha2 0.10.2",
+ "sysinfo",
  "tauri",
  "tauri-build",
  "tauri-plugin-store",
@@ -2602,6 +2516,30 @@ dependencies = [
  "cty",
 ]
 
+[[package]]
+name = "rayon"
+version = "1.5.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "bd99e5772ead8baa5215278c9b15bf92087709e9c1b2d1f97cdb5a183c933a7d"
+dependencies = [
+ "autocfg",
+ "crossbeam-deque",
+ "either",
+ "rayon-core",
+]
+
+[[package]]
+name = "rayon-core"
+version = "1.9.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "258bcdb5ac6dad48491bb2992db6b7cf74878b0384908af124823d118c99683f"
+dependencies = [
+ "crossbeam-channel",
+ "crossbeam-deque",
+ "crossbeam-utils",
+ "num_cpus",
+]
+
 [[package]]
 name = "redox_syscall"
 version = "0.2.16"
@@ -2950,33 +2888,6 @@ dependencies = [
  "digest 0.10.3",
 ]
 
-[[package]]
-name = "sha1"
-version = "0.6.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c1da05c97445caa12d05e848c4a4fcbbea29e748ac28f7e80e9b010392063770"
-dependencies = [
- "sha1_smol",
-]
-
-[[package]]
-name = "sha1_smol"
-version = "1.0.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ae1a47186c03a32177042e55dbc5fd5aee900b8e0069a8d70fba96a9375cd012"
-
-[[package]]
-name = "sha2"
-version = "0.8.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a256f46ea78a0c0d9ff00077504903ac881a1dafdc20da66545699e7776b3e69"
-dependencies = [
- "block-buffer 0.7.3",
- "digest 0.8.1",
- "fake-simd",
- "opaque-debug 0.2.3",
-]
-
 [[package]]
 name = "sha2"
 version = "0.9.9"
@@ -2987,7 +2898,7 @@ dependencies = [
  "cfg-if",
  "cpufeatures",
  "digest 0.9.0",
- "opaque-debug 0.3.0",
+ "opaque-debug",
 ]
 
 [[package]]
@@ -3001,19 +2912,6 @@ dependencies = [
  "digest 0.10.3",
 ]
 
-[[package]]
-name = "sha3"
-version = "0.8.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "dd26bc0e7a2e3a7c959bc494caf58b72ee0c71d67704e9520f736ca7e4853ecf"
-dependencies = [
- "block-buffer 0.7.3",
- "byte-tools",
- "digest 0.8.1",
- "keccak",
- "opaque-debug 0.2.3",
-]
-
 [[package]]
 name = "sha3"
 version = "0.10.2"
@@ -3177,6 +3075,21 @@ dependencies = [
  "unicode-ident",
 ]
 
+[[package]]
+name = "sysinfo"
+version = "0.26.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e08068324641dc7a50f3aa753e730594619ed9c5ba037b1b3920cb683e1a80b1"
+dependencies = [
+ "cfg-if",
+ "core-foundation-sys",
+ "libc",
+ "ntapi",
+ "once_cell",
+ "rayon",
+ "winapi",
+]
+
 [[package]]
 name = "system-deps"
 version = "5.0.0"
@@ -4193,6 +4106,15 @@ version = "0.37.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "f4dd6dc7df2d84cf7b33822ed5b86318fb1781948e9663bacd047fc9dd52259d"
 
+[[package]]
+name = "winreg"
+version = "0.6.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "b2986deb581c4fe11b621998a5e53361efe6b48a151178d0cd9eeffa4dc6acc9"
+dependencies = [
+ "winapi",
+]
+
 [[package]]
 name = "winreg"
 version = "0.10.1"
diff --git a/apps/desktop/src-tauri/Cargo.toml b/apps/desktop/src-tauri/Cargo.toml
index 11e96f0..4a50b6d 100644
--- a/apps/desktop/src-tauri/Cargo.toml
+++ b/apps/desktop/src-tauri/Cargo.toml
@@ -1,6 +1,8 @@
+# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
+
 [package]
 name = "otentik-authenticator"
-version = "0.6.0"
+version = "0.7.0"
 description = "Open Source two factor authenticator"
 authors = ["Aris Ripandi <aris@duck.com>"]
 license = "Apache-2.0"
@@ -8,8 +10,6 @@ repository = "https://github.com/otentikapp/clients"
 edition = "2021"
 rust-version = "1.63"
 
-# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
-
 [build-dependencies]
 tauri-build = { version = "1.0.4", features = [] }
 
@@ -17,12 +17,14 @@ tauri-build = { version = "1.0.4", features = [] }
 serde_json = "1.0"
 serde = { version = "1.0", features = ["derive"] }
 tauri = { version = "1.0.5", features = ["api-all", "macos-private-api", "system-tray", "updater"] }
+# uuid = { version = "1.1", features = ["v4", "fast-rng", "serde", "js"] }
 libreauth = { version = "^0.15", features = ["key", "oath", "pass"] }
-binascii = { version = "^0.1", features = ["encode", "decode"] }
+sha2 = { version = "0.10", default-features = false }
 cocoa = "0.24"
 magic-crypt = "^3.1"
 bcrypt = "^0.13"
-easy-hasher = "^2.2"
+sysinfo = "0.26"
+machine-uid = "0.2"
 
 [dependencies.tauri-plugin-store]
 git = "https://github.com/tauri-apps/tauri-plugin-store"
diff --git a/apps/desktop/src-tauri/rustfmt.toml b/apps/desktop/src-tauri/rustfmt.toml
index d962cda..58c073a 100644
--- a/apps/desktop/src-tauri/rustfmt.toml
+++ b/apps/desktop/src-tauri/rustfmt.toml
@@ -1,4 +1,4 @@
-max_width = 100
+max_width = 120
 hard_tabs = false
 tab_spaces = 2
 newline_style = "Auto"
diff --git a/apps/desktop/src-tauri/src/main.rs b/apps/desktop/src-tauri/src/main.rs
index d583e40..785476d 100644
--- a/apps/desktop/src-tauri/src/main.rs
+++ b/apps/desktop/src-tauri/src/main.rs
@@ -1,80 +1,60 @@
-#![cfg_attr(
-  all(not(debug_assertions), target_os = "windows"),
-  windows_subsystem = "windows"
-)]
+// Copyright 2022 Aris Ripandi <aris@duck.com>
+// SPDX-License-Identifier: Apache-2.0
+
+#![cfg_attr(all(not(debug_assertions), target_os = "windows"), windows_subsystem = "windows")]
+#![allow(clippy::nonstandard_macro_braces)] // Clippy bug: https://github.com/rust-lang/rust-clippy/issues/7422
 
 #[cfg(target_os = "linux")]
 use std::path::PathBuf;
 
 use cocoa::appkit::{NSWindow, NSWindowStyleMask, NSWindowTitleVisibility};
+// use tauri::api::dialog::ask;
 use tauri::{Manager, Runtime, SystemTray, SystemTrayEvent, Window};
 use tauri_plugin_store::PluginBuilder;
 
 mod menu;
 mod otp_generator;
 mod security;
+mod sys_utils;
+
+#[tauri::command]
+fn exit_app(handle: tauri::AppHandle) {
+  handle.exit(0);
+}
 
 fn main() {
   let system_tray = SystemTray::new();
-  let app = tauri::Builder::default();
 
-  app
+  tauri::Builder::default()
     .plugin(PluginBuilder::default().build())
     .menu(menu::menu())
     .on_menu_event(|event| match event.menu_item_id() {
       "quit" => {
-        let _ = event
-          .window()
-          .emit("menu-event", event.menu_item_id())
-          .unwrap();
+        let _ = event.window().emit("app-event", event.menu_item_id()).unwrap();
       }
       "close" => {
-        let _ = event
-          .window()
-          .emit("menu-event", event.menu_item_id())
-          .unwrap();
+        let _ = event.window().emit("app-event", event.menu_item_id()).unwrap();
       }
       "export" => {
-        let _ = event
-          .window()
-          .emit("menu-event", event.menu_item_id())
-          .unwrap();
+        let _ = event.window().emit("app-event", event.menu_item_id()).unwrap();
       }
       "import" => {
-        let _ = event
-          .window()
-          .emit("menu-event", event.menu_item_id())
-          .unwrap();
+        let _ = event.window().emit("app-event", event.menu_item_id()).unwrap();
       }
       "lock_vault" => {
-        let _ = event
-          .window()
-          .emit("menu-event", event.menu_item_id())
-          .unwrap();
+        let _ = event.window().emit("app-event", event.menu_item_id()).unwrap();
       }
       "new_item" => {
-        let _ = event
-          .window()
-          .emit("menu-event", event.menu_item_id())
-          .unwrap();
+        let _ = event.window().emit("app-event", event.menu_item_id()).unwrap();
       }
       "signout" => {
-        let _ = event
-          .window()
-          .emit("menu-event", event.menu_item_id())
-          .unwrap();
+        let _ = event.window().emit("app-event", event.menu_item_id()).unwrap();
       }
       "sync_vault" => {
-        let _ = event
-          .window()
-          .emit("menu-event", event.menu_item_id())
-          .unwrap();
+        let _ = event.window().emit("app-event", event.menu_item_id()).unwrap();
       }
       "update_check" => {
-        let _ = event
-          .window()
-          .emit("menu-event", event.menu_item_id())
-          .unwrap();
+        let _ = event.window().emit("app-event", event.menu_item_id()).unwrap();
       }
       _ => {}
     })
@@ -116,14 +96,32 @@ fn main() {
     })
     .invoke_handler(tauri::generate_handler![
       otp_generator::generate_totp,
+      sys_utils::get_device_info,
+      security::generate_udevice_id,
       security::encrypt_str,
       security::decrypt_str,
       security::create_hash,
       security::verify_hash,
-      security::md5_hash,
+      security::generate_passphrase,
+      exit_app,
     ])
-    .run(tauri::generate_context!())
-    .expect("error while running tauri application");
+    .build(tauri::generate_context!())
+    .expect("error while running tauri application")
+    .run(|app_handle, event| match event {
+      tauri::RunEvent::ExitRequested { .. } => {
+        // api.prevent_exit();
+        app_handle.exit(0);
+        // TODO: call exit method from the frontend!
+        // let window = app_handle.get_window("main").unwrap();
+        // ask(Some(&window), "Tauri", "Is Tauri awesome?", |answer| {
+        //   if answer {
+        //     app_handle.exit(0);
+        //   }
+        // });
+        // window.emit("app-event", "quit").unwrap();
+      }
+      _ => {}
+    })
 }
 
 pub trait WindowExt {
@@ -138,10 +136,7 @@ impl<R: Runtime> WindowExt for Window<R> {
       let id = self.ns_window().unwrap() as cocoa::base::id;
       NSWindow::setTitlebarAppearsTransparent_(id, cocoa::base::YES);
       let mut style_mask = id.styleMask();
-      style_mask.set(
-        NSWindowStyleMask::NSFullSizeContentViewWindowMask,
-        title_transparent,
-      );
+      style_mask.set(NSWindowStyleMask::NSFullSizeContentViewWindowMask, title_transparent);
 
       if remove_tool_bar {
         style_mask.remove(
diff --git a/apps/desktop/src-tauri/src/menu.rs b/apps/desktop/src-tauri/src/menu.rs
index 0ba4f0d..eaa002c 100644
--- a/apps/desktop/src-tauri/src/menu.rs
+++ b/apps/desktop/src-tauri/src/menu.rs
@@ -9,10 +9,10 @@ pub(crate) fn menu() -> Menu {
   // App Menu (macOS)
   // ---------------------------------------------------------------------------------------------
   let about_menu = AboutMetadata::new()
-    .version(String::from("0.6.0"))
+    .version(String::from("0.7.0"))
     .authors(vec![String::from("Aris Ripandi")])
     .comments(String::from("Open Source two factor authenticator"))
-    .copyright(String::from("Apache-2.0 License"))
+    .copyright(String::from("Copyright © Aris Ripandi"))
     .license(String::from("Apache-2.0 License"))
     .website(String::from("https://otentik.app/authenticator"))
     .website_label(String::from("Homepage"));
diff --git a/apps/desktop/src-tauri/src/otp_generator.rs b/apps/desktop/src-tauri/src/otp_generator.rs
index b811020..4f0712e 100644
--- a/apps/desktop/src-tauri/src/otp_generator.rs
+++ b/apps/desktop/src-tauri/src/otp_generator.rs
@@ -1,30 +1,25 @@
 use libreauth::{hash::HashFunction, oath::TOTPBuilder};
 
 #[tauri::command]
-pub(crate) async fn generate_totp(
-    secret: String,
-    period: u32,
-    digits: usize,
-    algorithm: String,
-) -> String {
-    let hash_function = match algorithm.to_uppercase().as_str() {
-        "SHA1" => HashFunction::Sha1,
-        "SHA256" => HashFunction::Sha256,
-        "SH512" => HashFunction::Sha512,
-        // Set default to SHA1
-        _ => HashFunction::Sha1,
-    };
+pub(crate) async fn generate_totp(secret: String, period: u32, digits: usize, algorithm: String) -> String {
+  let hash_function = match algorithm.to_uppercase().as_str() {
+    "SHA1" => HashFunction::Sha1,
+    "SHA256" => HashFunction::Sha256,
+    "SH512" => HashFunction::Sha512,
+    // Set default to SHA1
+    _ => HashFunction::Sha1,
+  };
 
-    let totp = TOTPBuilder::new()
-        .base32_key(&secret)
-        .period(period)
-        .output_len(digits)
-        .hash_function(hash_function)
-        .finalize()
-        .unwrap();
+  let totp = TOTPBuilder::new()
+    .base32_key(&secret)
+    .period(period)
+    .output_len(digits)
+    .hash_function(hash_function)
+    .finalize()
+    .unwrap();
 
-    let token = totp.generate();
+  let token = totp.generate();
 
-    // println!("{}", token);
-    token.into()
+  // println!("{}", token);
+  token.into()
 }
diff --git a/apps/desktop/src-tauri/src/security.rs b/apps/desktop/src-tauri/src/security.rs
index 83cb258..7c4bbc0 100644
--- a/apps/desktop/src-tauri/src/security.rs
+++ b/apps/desktop/src-tauri/src/security.rs
@@ -1,39 +1,64 @@
 extern crate bcrypt;
-extern crate easy_hasher;
+extern crate machine_uid;
+
+use tauri::command;
 
 use bcrypt::{hash, verify, DEFAULT_COST};
-use easy_hasher::easy_hasher::*;
 use magic_crypt::{new_magic_crypt, MagicCryptTrait};
+use sha2::{Digest, Sha256};
 
-#[tauri::command]
+#[command]
 pub(crate) async fn encrypt_str(plain_str: String, passphrase: String) -> String {
-    let mc = new_magic_crypt!(passphrase, 256);
-    let encrypted = mc.encrypt_str_to_base64(plain_str);
-    encrypted.into()
+  let mc = new_magic_crypt!(passphrase, 256);
+  let encrypted = mc.encrypt_str_to_base64(plain_str);
+  // println!("Encrypted string: {:?}", encrypted);
+  encrypted.into()
 }
 
-#[tauri::command]
+#[command]
 pub(crate) async fn decrypt_str(encrypted_str: String, passphrase: String) -> String {
-    let mc = new_magic_crypt!(passphrase, 256);
-    let decrypted = mc.decrypt_base64_to_string(&encrypted_str).unwrap();
-    decrypted.into()
+  let mc = new_magic_crypt!(passphrase, 256);
+  let decrypted = mc.decrypt_base64_to_string(&encrypted_str).unwrap();
+  decrypted.into()
 }
 
-#[tauri::command]
+#[command]
 pub(crate) async fn create_hash(plaintext: String) -> String {
-    let hashed = hash(plaintext, DEFAULT_COST).unwrap();
-    hashed.into()
+  let hashed = hash(plaintext, DEFAULT_COST).unwrap();
+  hashed.into()
 }
 
-#[tauri::command]
+#[command]
 pub(crate) async fn verify_hash(plaintext: String, hashed_str: String) -> bool {
-    let valid = verify(plaintext, &hashed_str).unwrap();
-    valid.into()
+  let valid = verify(plaintext, &hashed_str).unwrap();
+  valid.into()
+}
+
+#[command]
+pub(crate) async fn generate_passphrase(user_id: String, password: String) -> String {
+  let uid = user_id.replace("-", "").to_uppercase();
+  let hash = Sha256::new().chain_update(&uid).chain_update(&password).finalize();
+  let encoded = format!("{:x}", hash);
+  // println!("SHA2-encoded hash: {:?}", encoded);
+  encoded.into()
 }
 
-#[tauri::command]
-pub(crate) async fn md5_hash(str: String) -> String {
-    let hash = md5(&str);
-    let string_hash = hash.to_hex_string();
-    string_hash.into()
+#[command]
+pub(crate) async fn generate_udevice_id(uid: String) -> String {
+  let device_uuid: String = machine_uid::get().unwrap();
+
+  // Get trimmed device_uuid
+  let a_trimmed = device_uuid.replace("-", "");
+  let a_slice = &a_trimmed[..12];
+  let _a = a_slice.to_string();
+
+  // Get trimmed external uuid
+  let b_trimmed = uid.replace("-", "");
+  let b_slice = &b_trimmed[..12];
+  let _b = b_slice.to_string();
+
+  let new_id = _a + &_b;
+  let result = new_id.to_uppercase();
+
+  result.into()
 }
diff --git a/apps/desktop/src-tauri/src/sys_utils.rs b/apps/desktop/src-tauri/src/sys_utils.rs
new file mode 100644
index 0000000..cfb9356
--- /dev/null
+++ b/apps/desktop/src-tauri/src/sys_utils.rs
@@ -0,0 +1,41 @@
+extern crate machine_uid;
+
+use sysinfo::{System, SystemExt};
+use tauri::command;
+
+#[derive(serde::Serialize)]
+pub struct DeviceInfo {
+  device_uuid: String,
+  os_platform: String,
+  os_version: String,
+  host_name: String,
+}
+
+#[command]
+pub(crate) async fn get_device_info() -> Result<DeviceInfo, String> {
+  // Initiate `sysinfo` instance. We use "new_all" to ensure that
+  // all list of components already filled.
+  let mut sys = System::new_all();
+
+  // Update all information of our `System` struct.
+  sys.refresh_all();
+
+  // System information:
+  let sys_device_uuid: String = machine_uid::get().unwrap();
+  let sys_os_platform: String = sys.name().unwrap().to_string();
+  let sys_os_version: String = sys.os_version().unwrap().to_string();
+  let sys_host_name: String = sys.host_name().unwrap().to_string();
+
+  // Display system information:
+  // println!("System name         : {:?}", sys_os_platform);
+  // println!("System OS version   : {:?}", sys_os_version);
+  // println!("System host name    : {:?}", sys_host_name);
+  // println!("System machine id   : {:?}", sys_device_uuid);
+
+  Ok(DeviceInfo {
+    device_uuid: sys_device_uuid.into(),
+    os_platform: sys_os_platform.into(),
+    os_version: sys_os_version.into(),
+    host_name: sys_host_name.into(),
+  })
+}
diff --git a/apps/desktop/src-tauri/tauri.conf.json b/apps/desktop/src-tauri/tauri.conf.json
index c2c07f1..866d311 100644
--- a/apps/desktop/src-tauri/tauri.conf.json
+++ b/apps/desktop/src-tauri/tauri.conf.json
@@ -8,7 +8,7 @@
     },
     "package": {
         "productName": "Authenticator",
-        "version": "0.6.0"
+        "version": "0.7.0"
     },
     "tauri": {
         "allowlist": {
@@ -22,6 +22,12 @@
             "path": {
 			    "all": true
             },
+            "notification": {
+                "all": true
+            },
+            "os": {
+                "all": true
+            },
             "http": {
                 "scope": [
                     "https://ifconfig.me/*",
diff --git a/apps/desktop/src/App.tsx b/apps/desktop/src/App.tsx
index 2b10f65..278a1b0 100644
--- a/apps/desktop/src/App.tsx
+++ b/apps/desktop/src/App.tsx
@@ -1,5 +1,6 @@
-import { useEffect } from 'react'
+import { useEffect, useState } from 'react'
 import { QueryClientProvider } from '@tanstack/react-query'
+import { sendNotification } from '@tauri-apps/api/notification'
 import { Offline, Online } from 'react-detect-offline'
 import { toast } from 'react-hot-toast'
 
@@ -12,6 +13,7 @@ import { OfflineScreen } from './screens/OfflineScreen'
 import { AuthScreen } from './screens/AuthScreen'
 import { MainScreen } from './screens/MainScreen'
 import { queryClient } from './utils/queries'
+import { useNotification } from './hooks/useNotification'
 
 const offlineDetectConfig = {
   url: 'https://ifconfig.me/ip',
@@ -22,6 +24,7 @@ const offlineDetectConfig = {
 
 export default function App() {
   const session = useAuth()
+  const allowNotification = useNotification()
 
   useEffect(() => {
     disableBrowserEvents('contextmenu')
@@ -29,11 +32,21 @@ export default function App() {
   })
 
   const handleOffline = (online: boolean) => {
-    !online && toast.error('Your internet connection is lost!')
+    if (!online) {
+      const message = 'Your internet connection is lost!'
+      return allowNotification
+        ? sendNotification({ title: 'Otentik Authenticator', body: message })
+        : toast.error(message)
+    }
   }
 
   const handleOnline = (online: boolean) => {
-    online && toast.success('Your internet connection is back!')
+    if (online) {
+      const message = 'Your internet connection is back!'
+      return allowNotification
+        ? sendNotification({ title: 'Otentik Authenticator', body: message })
+        : toast.success(message)
+    }
   }
 
   if (!session) return <AuthScreen />
@@ -42,12 +55,22 @@ export default function App() {
     <div className="mx-auto max-w-sm">
       <TitleBar />
 
-      <Offline polling={offlineDetectConfig} onChange={(online) => handleOffline(online)}>
+      <Offline
+        polling={offlineDetectConfig}
+        onChange={(online) => {
+          handleOffline(online)
+        }}
+      >
         <ExitButton />
         <OfflineScreen />
       </Offline>
 
-      <Online polling={offlineDetectConfig} onChange={(online) => handleOnline(online)}>
+      <Online
+        polling={offlineDetectConfig}
+        onChange={(online) => {
+          handleOnline(online)
+        }}
+      >
         <QueryClientProvider client={queryClient}>
           <MainScreen />
         </QueryClientProvider>
diff --git a/apps/desktop/src/components/AppMenu.tsx b/apps/desktop/src/components/AppMenu.tsx
index 4dced4f..5c98d55 100644
--- a/apps/desktop/src/components/AppMenu.tsx
+++ b/apps/desktop/src/components/AppMenu.tsx
@@ -1,5 +1,6 @@
+/* eslint-disable react-hooks/exhaustive-deps */
 import { Fragment, useEffect, useState } from 'react'
-import { appWindow } from '@tauri-apps/api/window'
+import { invoke } from '@tauri-apps/api/tauri'
 import { ask, open, save } from '@tauri-apps/api/dialog'
 import { listen } from '@tauri-apps/api/event'
 import type { EventName } from '@tauri-apps/api/event'
@@ -34,60 +35,6 @@ export const AppMenu = () => {
   const [menuPayload, setMenuPayload] = useState<EventName | undefined | unknown>('')
   const [listenTauriEvent, setListenTauriEvent] = useState(false)
 
-  useEffect(() => {
-    // Listen tauri event
-    listen('menu-event', (e) => {
-      console.log('LISTEN', e.payload)
-      setMenuPayload(e.payload)
-      setListenTauriEvent(true)
-    })
-  }, [setMenuPayload, setListenTauriEvent])
-
-  useEffect(() => {
-    if (listenTauriEvent) {
-      switch (menuPayload) {
-        case 'quit':
-          handleQuit()
-          break
-
-        case 'close':
-          handleQuit()
-          break
-
-        case 'export':
-          handleExport()
-          break
-
-        case 'import':
-          handleImport()
-          break
-
-        case 'lock_vault':
-          setLockStreenState(true)
-          break
-
-        case 'new_item':
-          setFormCreateOpen(true)
-          break
-
-        case 'signout':
-          handleSignOut()
-          break
-
-        case 'sync_vault':
-          setForceFetch(true)
-          break
-
-        case 'update_check':
-          break
-
-        default:
-          break
-      }
-    }
-    setListenTauriEvent(false)
-  }, [listenTauriEvent, menuPayload])
-
   // Reset all states before quit.
   const resetStates = () => {
     setLockStreenState(true)
@@ -136,7 +83,7 @@ export const AppMenu = () => {
       resetStates()
       // wait for screen locked before quitting
       await delay(1000)
-      appWindow.close()
+      await invoke('exit_app')
     }
   }
 
@@ -148,6 +95,56 @@ export const AppMenu = () => {
     }
   }
 
+  useEffect(() => {
+    // Listen tauri event
+    listen('app-event', (e) => {
+      setMenuPayload(e.payload)
+      setListenTauriEvent(true)
+    })
+  }, [setMenuPayload, setListenTauriEvent])
+
+  useEffect(() => {
+    if (listenTauriEvent) {
+      switch (menuPayload) {
+        case 'quit':
+          handleQuit()
+          break
+
+        case 'close':
+          handleQuit()
+          break
+
+        case 'export':
+          handleExport()
+          break
+
+        case 'import':
+          handleImport()
+          break
+
+        case 'lock_vault':
+          setLockStreenState(true)
+          break
+
+        case 'new_item':
+          setFormCreateOpen(true)
+          break
+
+        case 'signout':
+          handleSignOut()
+          break
+
+        case 'sync_vault':
+          setForceFetch(true)
+          break
+
+        default:
+          break
+      }
+    }
+    setListenTauriEvent(false)
+  }, [listenTauriEvent, menuPayload])
+
   return (
     <div className="absolute top-0 right-0 z-30 flex h-14 items-center px-4">
       <Menu as="div" className="relative">
diff --git a/apps/desktop/src/components/EmptyState.tsx b/apps/desktop/src/components/EmptyState.tsx
index 06aeb14..ab94b50 100644
--- a/apps/desktop/src/components/EmptyState.tsx
+++ b/apps/desktop/src/components/EmptyState.tsx
@@ -3,6 +3,7 @@ import { useStores } from '../stores/stores'
 
 export const EmptyState = () => {
   const setFormCreateOpen = useStores((state) => state.setFormCreateOpen)
+  const handleAction = async () => setFormCreateOpen(true)
 
   return (
     <div className="relative z-10 -mt-6 flex h-full flex-col items-center justify-center text-center">
@@ -13,7 +14,7 @@ export const EmptyState = () => {
           <button
             type="button"
             className="flex items-center justify-center rounded-md border border-gray-300 bg-white px-4 py-2 text-sm font-medium text-gray-700 shadow-sm hover:bg-gray-50"
-            onClick={() => setFormCreateOpen(true)}
+            onClick={handleAction}
           >
             <PlusCircleIcon className="-ml-1 mr-2 h-5 w-5" aria-hidden="true" />
             <span>Add New Item</span>
diff --git a/apps/desktop/src/hooks/useNotification.ts b/apps/desktop/src/hooks/useNotification.ts
new file mode 100644
index 0000000..8eb632a
--- /dev/null
+++ b/apps/desktop/src/hooks/useNotification.ts
@@ -0,0 +1,23 @@
+import { useEffect, useState } from 'react'
+import { isPermissionGranted, requestPermission } from '@tauri-apps/api/notification'
+
+export const useNotification = () => {
+  const [allowNotification, setAllowNotification] = useState(false)
+
+  const checkNotificationPermission = async () => {
+    let permissionGranted = await isPermissionGranted()
+
+    if (!permissionGranted) {
+      const permission = await requestPermission()
+      permissionGranted = permission === 'granted'
+    }
+
+    setAllowNotification(permissionGranted)
+  }
+
+  useEffect(() => {
+    checkNotificationPermission()
+  }, [])
+
+  return allowNotification
+}
diff --git a/apps/desktop/src/screens/AuthScreen.tsx b/apps/desktop/src/screens/AuthScreen.tsx
index 6ec35b6..9dbeec1 100644
--- a/apps/desktop/src/screens/AuthScreen.tsx
+++ b/apps/desktop/src/screens/AuthScreen.tsx
@@ -2,10 +2,10 @@ import { useState } from 'react'
 import { ArrowRightCircleIcon } from '@heroicons/react/24/solid'
 import { toast } from 'react-hot-toast'
 
-import { sbClient } from '../utils/supabase'
+import { sbClient, storeDeviceInfo } from '../utils/supabase'
 import { LoaderScreen } from '../components/LoaderScreen'
 import { classNames } from '../utils/ui-helpers'
-import { createHash, md5Hash } from '../utils/string-helpers'
+import { createHash, generatePassphrase } from '../utils/string-helpers'
 import { ExitButton } from '../components/ExitButton'
 import { TitleBar } from '../components/TitleBar'
 import { localData } from '../utils/storage'
@@ -36,13 +36,13 @@ export const AuthScreen = () => {
 
     if (user) {
       // If login success then store hashed passphrase in localStorage
-      const hashedPassphrase = await md5Hash(password)
+      const hashedPassphrase = await generatePassphrase(user.id, password)
       await localData.set('passphrase', hashedPassphrase)
+      await storeDeviceInfo() // Store device information.
       setLoading(false)
-      resetForm()
     }
 
-    return
+    return resetForm()
   }
 
   const handleRegister = async () => {
@@ -52,8 +52,9 @@ export const AuthScreen = () => {
     setLoading(false)
     if (error) return toast.error(error.message)
     toast.success('Check your email to verify your account!')
-    setActionIsLogin(true)
     resetForm()
+    setActionIsLogin(true)
+
     return
   }
 
@@ -72,7 +73,7 @@ export const AuthScreen = () => {
       <div className={classNames(actionIsLogin ? 'py-12' : 'py-0', 'flex min-h-full items-center justify-center px-6')}>
         <div className="w-full max-w-sm">
           <div>
-            <h2 className="mt-8 text-center text-xl font-semibold tracking-tight text-white">
+            <h2 className="mt-8 text-center text-2xl font-semibold tracking-tight text-white">
               {actionIsLogin ? 'Sign in to continue' : 'Create account'}
             </h2>
           </div>
@@ -142,18 +143,7 @@ export const AuthScreen = () => {
             </div>
           </form>
 
-          <div className="absolute left-0 bottom-0 flex w-full flex-col items-center justify-center space-y-3 py-10">
-            {/* <p className='text-center text-sm text-gray-300'>
-                        Forgot password?{' '}
-                        <a
-                            href='https://otentik.app/recovery?ref=authenticator'
-                            className='font-medium text-brand-500 hover:text-brand-600'
-                            rel='noreferrer noopener'
-                            target='_blank'
-                        >
-                            Reset
-                        </a>
-                    </p> */}
+          <div className="absolute left-0 bottom-0 flex w-full flex-col items-center justify-center space-y-4 py-8">
             <p className="text-center text-sm text-gray-300">
               {actionIsLogin ? "Dont' have account? " : 'Already have account? '}
               <button
@@ -164,6 +154,17 @@ export const AuthScreen = () => {
                 {actionIsLogin ? 'Register' : 'Login'}
               </button>
             </p>
+            <p className="text-center text-sm text-gray-300">
+              Forgot password?{' '}
+              <a
+                href="https://vault.otentik.app/recovery?ref=authenticator"
+                className="text-brand-500 hover:text-brand-600 font-medium"
+                rel="noreferrer noopener"
+                target="_blank"
+              >
+                Reset
+              </a>
+            </p>
           </div>
         </div>
       </div>
diff --git a/apps/desktop/src/screens/LockScreen.tsx b/apps/desktop/src/screens/LockScreen.tsx
index 109e6b5..fcf27ab 100644
--- a/apps/desktop/src/screens/LockScreen.tsx
+++ b/apps/desktop/src/screens/LockScreen.tsx
@@ -3,20 +3,18 @@ import { Dialog } from '@headlessui/react'
 import { EyeIcon, EyeSlashIcon, LockClosedIcon } from '@heroicons/react/24/outline'
 import { ExclamationCircleIcon } from '@heroicons/react/24/solid'
 
-import { useAuth } from '../hooks/useAuth'
 import { useStores } from '../stores/stores'
 import { classNames } from '../utils/ui-helpers'
 import { DialogTransition } from '../components/DialogTransition'
-import { md5Hash, verifyHash } from '../utils/string-helpers'
 import { LoaderScreen } from '../components/LoaderScreen'
-import { localData } from '../utils/storage'
+import { updateDeviceInfo } from '../utils/supabase'
+import { validatePassphrase } from '../utils/guards'
 
 export const LockScreen = () => {
-  const session = useAuth()
   const locked = useStores((state) => state.locked)
   const setLockStreenState = useStores((state) => state.setLockStreenState)
   const [error, setError] = useState<any>({ error: null, text: null })
-  const [passphrase, setPassphrase] = useState('')
+  const [password, setPassphrase] = useState('')
   const [inputType, setInputType] = useState('password')
   const [loading, setLoading] = useState(false)
 
@@ -27,22 +25,21 @@ export const LockScreen = () => {
   const handleUnlockAction = async (e: React.FormEvent<HTMLFormElement>) => {
     e.preventDefault()
 
-    if (passphrase.length <= 1) {
+    if (password.length <= 1) {
       return setError({ error: true, text: 'Your password required!' })
     }
 
     setLoading(true)
-    const passphraseHash = session?.user?.user_metadata?.passphrase
-    const validPassphrase = await verifyHash(passphrase, passphraseHash)
+    // Compare with hashed passphrase in localStorage
+    const validPassphrase = await validatePassphrase(password)
+    setLoading(false)
 
     if (!validPassphrase) {
-      setLoading(false)
       return setError({ error: true, text: 'Invalid password!' })
     }
 
-    // Store hashed passphrase in localStorage
-    const hashedPassphrase = await md5Hash(passphrase)
-    await localData.set('passphrase', hashedPassphrase)
+    // Update device information.
+    await updateDeviceInfo()
 
     setError(null)
     setLoading(false)
@@ -68,14 +65,14 @@ export const LockScreen = () => {
               </div>
 
               <div className="mt-2">
-                <label htmlFor="passphrase" className="sr-only">
+                <label htmlFor="password" className="sr-only">
                   Passphrase
                 </label>
                 <div className="relative mt-1 rounded-md shadow-sm">
                   <input
                     type={inputType}
-                    name="passphrase"
-                    id="passphrase"
+                    name="password"
+                    id="password"
                     className={classNames(
                       error &&
                         'border-red-300 text-red-900 placeholder-red-300 focus:border-red-500 focus:ring-red-500 ',
diff --git a/apps/desktop/src/screens/MainScreen.tsx b/apps/desktop/src/screens/MainScreen.tsx
index 962ac31..ff8480b 100644
--- a/apps/desktop/src/screens/MainScreen.tsx
+++ b/apps/desktop/src/screens/MainScreen.tsx
@@ -28,7 +28,6 @@ export const MainScreen = (): JSX.Element => {
   const [seconds, setSeconds] = useState(0)
 
   // Fetch decrypted vaults data.
-  // TODO: Use LyraSearch for local search indexing.
   const { isLoading, error, data, refetch }: any = useGetCollections(filter)
 
   useEffect(() => {
@@ -39,7 +38,7 @@ export const MainScreen = (): JSX.Element => {
     }
 
     const myInterval = setInterval(() => {
-      if (startTimer && seconds > 0) {
+      if (data.length > 0 && startTimer && seconds > 0) {
         setPercentage(Math.trunc((300 * seconds) / 100))
         setSeconds(seconds - 1)
       }
@@ -51,7 +50,7 @@ export const MainScreen = (): JSX.Element => {
     }, 1000)
 
     return () => clearInterval(myInterval)
-  }, [startTimer, isFetching, seconds])
+  }, [startTimer, isFetching, seconds, data])
 
   if (isLoading && !filter) return <LoaderScreen />
   if (!locked && error) return <ErrorScreen message={error.message} />
diff --git a/apps/desktop/src/utils/guards.ts b/apps/desktop/src/utils/guards.ts
new file mode 100644
index 0000000..03aac5a
--- /dev/null
+++ b/apps/desktop/src/utils/guards.ts
@@ -0,0 +1,11 @@
+import { generatePassphrase } from './string-helpers'
+import { localData } from '../utils/storage'
+import { sbClient } from './supabase'
+
+export const validatePassphrase = async (password: string): Promise<boolean> => {
+  const userId = sbClient.auth.session()?.user?.id || ''
+  const storedPassphrase = await localData.get('passphrase')
+  const hashedPassphrase = await generatePassphrase(userId, password)
+
+  return hashedPassphrase === storedPassphrase ? true : false
+}
diff --git a/apps/desktop/src/utils/lyra-search.ts b/apps/desktop/src/utils/lyra-search.ts
deleted file mode 100644
index 088761b..0000000
--- a/apps/desktop/src/utils/lyra-search.ts
+++ /dev/null
@@ -1,18 +0,0 @@
-import { create, insert, remove, search } from '@lyrasearch/lyra'
-export { create, insert, remove, search }
-
-export const db = create({
-  schema: {
-    collection_id: 'string',
-    algorithm: 'string',
-    // backup_code: 'string',
-    // icon_path: 'string',
-    digits: 'number',
-    issuer: 'string',
-    kind: 'string',
-    period: 'number',
-    secret: 'string',
-    token: 'string',
-    user_identity: 'string',
-  },
-})
diff --git a/apps/desktop/src/utils/string-helpers.ts b/apps/desktop/src/utils/string-helpers.ts
index 5dc77dc..cc5065d 100644
--- a/apps/desktop/src/utils/string-helpers.ts
+++ b/apps/desktop/src/utils/string-helpers.ts
@@ -50,8 +50,8 @@ export const decryptStr = async (encryptedStr: string): Promise<any> => {
   return await invoke('decrypt_str', { encryptedStr, passphrase })
 }
 
-export const md5Hash = async (str: string): Promise<any> => {
-  return await invoke('md5_hash', { str })
+export const generatePassphrase = async (userId: string, password: string): Promise<any> => {
+  return await invoke('generate_passphrase', { userId, password })
 }
 
 export const createHash = async (plaintext: string): Promise<any> => {
diff --git a/apps/desktop/src/utils/supabase.ts b/apps/desktop/src/utils/supabase.ts
index abb425d..8d49b46 100644
--- a/apps/desktop/src/utils/supabase.ts
+++ b/apps/desktop/src/utils/supabase.ts
@@ -1,19 +1,34 @@
 import { createClient } from '@supabase/supabase-js'
+import { invoke } from '@tauri-apps/api/tauri'
+// import { fetch as tauriFetch } from '@tauri-apps/api/http'
 
-export const VITE_SUPABASE_URL = import.meta.env.VITE_SUPABASE_URL
-export const VITE_SUPABASE_ANON_KEY = import.meta.env.VITE_SUPABASE_ANON_KEY
+// @ts-ignore
+export const { VITE_SUPABASE_URL, VITE_SUPABASE_ANON_KEY } = import.meta.env
 
-export const sbClient = createClient(VITE_SUPABASE_URL, VITE_SUPABASE_ANON_KEY)
+const defaultOptions = {}
 
-export const userProfile = sbClient.from('profiles')
+export const sbClient = createClient(VITE_SUPABASE_URL, VITE_SUPABASE_ANON_KEY, defaultOptions)
 
 export const addSingleCollection = async (data: any) => {
   return await sbClient.from('vaults').insert(data).single()
 }
 
-export const fetchPassphrase = async (userId: string, passphrase: string) => {
-  return await userProfile.select('passphrase').match({
-    id: userId,
-    passphrase,
-  })
+export const storeDeviceInfo = async () => {
+  const { device_uuid, os_platform, os_version, host_name } = await invoke('get_device_info')
+  const session = sbClient.auth.session()
+
+  const user_id = session?.user?.id
+  const unique_id = await invoke('generate_udevice_id', { uid: user_id })
+  const prepared = { user_id, device_uuid, unique_id, os_platform, os_version, host_name }
+
+  return await sbClient.from('devices').upsert(prepared, { onConflict: 'unique_id' })
+}
+
+export const updateDeviceInfo = async () => {
+  const session = sbClient.auth.session()
+  const user_id = session?.user?.id
+  const unique_id = await invoke('generate_udevice_id', { uid: user_id })
+  const time = new Date().toISOString()
+
+  return await sbClient.from('devices').update({ last_online_at: time }).match({ user_id, unique_id })
 }
diff --git a/libs/otentik-db/supabase/clear-db.sql b/libs/otentik-db/supabase/clear-db.sql
index a3dd1d6..5fb764d 100755
--- a/libs/otentik-db/supabase/clear-db.sql
+++ b/libs/otentik-db/supabase/clear-db.sql
@@ -1,10 +1,14 @@
-drop table if exists public.profiles;
-drop table if exists public.vaults;
+-- select current_setting('server_version_num') as pg_version;
 
+-- truncate table auth.users cascade;
+drop table if exists public.profiles;
 drop trigger if exists on_auth_user_created on auth.users cascade;
 drop trigger if exists on_profiles_updated on public.profiles cascade;
-drop trigger if exists on_vaults_updated on public.vaults cascade;
-
 drop function if exists handle_new_user;
 drop function if exists handle_profiles_updated_at;
+
+drop table if exists public.vaults;
+drop trigger if exists on_vaults_updated on public.vaults cascade;
 drop function if exists handle_vaults_updated_at;
+
+drop table if exists public.devices;
diff --git a/libs/otentik-db/supabase/config.toml.example b/libs/otentik-db/supabase/config.toml.example
index ff55cc7..9503c71 100755
--- a/libs/otentik-db/supabase/config.toml.example
+++ b/libs/otentik-db/supabase/config.toml.example
@@ -39,8 +39,7 @@ pop3_port = 54326
 site_url = "http://localhost:3000"
 # A list of *exact* URLs that auth providers are permitted to redirect to post authentication.
 additional_redirect_urls = ["https://localhost:5173"]
-# How long tokens are valid for, in seconds. Defaults to 3600 (1 hour), maximum 604,800 seconds (one
-# week).
+# How long tokens are valid for, in seconds. Defaults to 3600 (1 hour), maximum 604,800 seconds (one week).
 jwt_expiry = 3600
 # Allow/disallow new user signups to your project.
 enable_signup = true
@@ -48,11 +47,10 @@ enable_signup = true
 [auth.email]
 # Allow/disallow new user signups via email to your project.
 enable_signup = true
-# If enabled, a user will be required to confirm any email change on both the old, and new email
-# addresses. If disabled, only the new email is required to confirm.
+# If enabled, a user will be required to confirm any email change on both the old, and new email addresses.
 double_confirm_changes = true
 # If enabled, users need to confirm their email address before signing in.
-enable_confirmations = false
+enable_confirmations = true
 
 # Use an external OAuth provider. The full list of providers are: `apple`, `azure`, `bitbucket`,
 # `discord`, `facebook`, `github`, `gitlab`, `google`, `twitch`, `twitter`, `slack`, `spotify`.
diff --git a/libs/otentik-db/supabase/migrations/20220816204614_profiles.sql b/libs/otentik-db/supabase/migrations/20220816204614_profiles.sql
index 844be15..b9aacf6 100755
--- a/libs/otentik-db/supabase/migrations/20220816204614_profiles.sql
+++ b/libs/otentik-db/supabase/migrations/20220816204614_profiles.sql
@@ -6,7 +6,6 @@ create table profiles (
   id uuid references auth.users not null primary key,
   realname varchar(255),
   avatar_url text,
-  passphrase text,
   password_hints text,
   updated_at timestamp with time zone default timezone('utc'::text, now()) not null
 );
@@ -23,8 +22,8 @@ create function public.handle_new_user()
 returns trigger as
 $$
   begin
-    insert into public.profiles (id, realname, avatar_url, passphrase, password_hints)
-    values (new.id, new.raw_user_meta_data ->> 'realname', new.raw_user_meta_data ->> 'avatar_url', new.raw_user_meta_data ->> 'passphrase', new.raw_user_meta_data ->> 'password_hints');
+    insert into public.profiles (id, realname, avatar_url, password_hints)
+    values (new.id, new.raw_user_meta_data ->> 'realname', new.raw_user_meta_data ->> 'avatar_url', new.raw_user_meta_data ->> 'password_hints');
     return new;
   end;
 $$
diff --git a/libs/otentik-db/supabase/migrations/20220830184018_devices.sql b/libs/otentik-db/supabase/migrations/20220830184018_devices.sql
new file mode 100644
index 0000000..515e2fa
--- /dev/null
+++ b/libs/otentik-db/supabase/migrations/20220830184018_devices.sql
@@ -0,0 +1,19 @@
+create table devices (
+  id BIGSERIAL PRIMARY KEY,
+  user_id uuid references auth.users not null,
+  device_uuid uuid not null,
+  unique_id char(24) not null,
+  os_platform varchar(255) not null,
+  os_version varchar(255) not null,
+  host_name varchar(255) not null,
+  alias_name varchar(255),
+  activated_at timestamp with time zone default timezone('utc'::text, now()) not null,
+  last_online_at timestamp with time zone default null,
+  unique(unique_id)
+);
+
+alter table devices enable row level security;
+create policy "Can only view own connected devices." on devices for select using (auth.uid() = user_id);
+create policy "Users can insert their own devices data." on devices for insert with check (auth.uid() = user_id);
+create policy "Users can update own devices data." on devices for update using (auth.uid() = user_id);
+create policy "Users can delete own devices data." on devices for delete using (auth.uid() = user_id);
diff --git a/package.json b/package.json
index 5ac14a0..875be84 100755
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
     "name": "otentik",
-    "version": "0.6.0",
+    "version": "0.7.0",
     "license": "Apache-2.0",
     "private": true,
     "scripts": {