SecureInfo
SecureInfo
We Help Developers Deliver Secure Solutions
SecureInfo APIs - Application Level Security
Platform Agnostic | All File Types | *Patent Pending* Key Handling >> Learn more
Encryption measures implemented on clouds & data centres servers are NOT sufficient to ensure complete data security
Data stored in cloud platforms like Google, iCloud, AWS, Azure, and other providers lacks protection against authorized users or applications. Consequently, it remains vulnerable to common forms of attack, including the following...
Deliberate act of a malicious employee
Application attacked and controlled by a malicious outsider
User access controls for applications being compromised
These attacks are all much more statistically-likely sources of attack than someone physically breaking into 'cloud storage' and stealing a disc!
Encryption measures implemented on clouds & data centres servers are NOT sufficient to ensure complete data security
Data stored in cloud platforms like Google, iCloud, AWS, Azure, and other providers lacks protection against authorized users or applications. Consequently, it remains vulnerable to common forms of attack, including the following...
Deliberate act of a malicious employee
Application attacked and controlled by a malicious outsider
User access controls for applications being compromised
The above are all much more statistically-likely sources of attack than someone physically breaking into 'cloud storage' and stealing a disc!
What is "Military Grade" Encryption and is There Any Point To It?
For “military grade” encryption we use symmetric encryption – which uses the same key to encrypt and decrypt. It is cryptographic stronger then asymmetric encryption, by thousands of billions of years! Also importantly, it does not have the known weaknesses of asymmetric encryption.
No one would bother to waste time to attempt to crack symmetric encryption, an AES-128 key (leave alone an AES 256 key)! In that sense, one might ask what is the point of better than “military grade” encryption?
The answer to that is this security is only strongest at its weakest link. For both AES-128 and AES-256, the data encryption is clearly very strong – but its weaknesses can lie in the following four areas:
The answer to that is this security is only strongest at its weakest link. For both AES-128 and AES-256, the data encryption is clearly very strong – but its weaknesses can lie in the following four areas:
1. Genuine random key
2. Where & how encryption keys are stored
3. What encryption mode is used
4. How to exchange encryption keys when data is shared
What is "Military Grade" Encryption and is There Any Point To It?
For “military grade” encryption we use symmetric encryption – which uses the same key to encrypt and decrypt. It is cryptographic stronger then asymmetric encryption, by thousands of billions of years! Also importantly, it does not have the known weaknesses of asymmetric encryption.
No one would bother to waste time to attempt to crack symmetric encryption, an AES-128 key (leave alone an AES 256 key)! In that sense, one might ask what is the point of better than “military grade” encryption?
The answer to that is this security is only strongest at its weakest link. For both AES-128 and AES-256, the data encryption is clearly very strong – but its weaknesses can lie in the following four areas:
The answer to that is this security is only strongest at its weakest link. For both AES-128 and AES-256, the data encryption is clearly very strong – but its weaknesses can lie in the following four areas:
1. Genuine random key
2. Where & how encryption keys are stored
3. What encryption mode is used
4. How to exchange encryption keys when data is shared
SecureInfo APIs - Beyond "Military Grade" Encryption
SecureInfo APIs provide a rigorous solution to all 4 weaknesses so the full strength and protection of AES encryption is uncompromised.
vpn_key
Sophisticated Key Management System
Encryption keys destroyed after use, methodology to reconstruct keys results in no prospect of a single or multi-point attack.
touch_app
Immune by design to man-in-the-middle attack
Immune to man-in-the-middle attacks through design of its patented architecture.
Not Suseptible to Brute-Force Attack
Not susceptible to brute-force attack, even under forecast improvements in computing for decades.
Perfect Forward Security
Forward security is independently rated as ROBUST.
settings
Zero Knowledge System
The SecureInfo APIs have no back doors designed in its security. (AES encryption, genuine random number, CBC encryption mode)
Trusted Guardians
Allows you to assign roles to trusted guardians as custodians under rules you set.
SecureInfo APIs: An additional layer of security which can be embedded into digital products & services
Beyond "Military Grade" Encryption
SecureInfo APIs provide a rigorous solution to all 4 weaknesses so the full strength and protection of AES encryption is uncompromised.
vpn_key
Sophisticated Key Management System
Encryption keys destroyed after use, methodology to reconstruct keys results in no prospect of a single or multi-point attack.
touch_app
Immune by design to man-in-the-middle attack
Immune to man-in-the-middle attacks through design of its patented architecture.
Not Suseptible to Brute Force Attack
Not susceptible to brute force attack, even under forecast improvements in computing for decades.
Perfect Forward Security
Forward security is independently rated as ROBUST.
settings
Zero Knowledge System
The SecureInfo APIs have no back doors designed in its security. (AES encryption, genuine random number, CBC encryption mode)
Trusted Guardians
Allows you to assign roles to trusted guardians as custodians under rules you set.
An additional layer of security which can be embedded into digital products & services
SecureInfo APIs *Patent Pending* Proven Technology
The SecureInfo APIs were developed in response to a B2C Platform Solution My LifeJars - for keeping precious and important information safe in one place for non tech-savvy users.
SecureInfo APIs are live, scalable, and operational in-service today
SecureInfo: *Patent Pending* Proven Technology
The SecureInfo APIs were developed in response to a B2C Platform Solution My LifeJars - for keeping precious and important information safe in one place for non tech-savvy users.
SecureInfo API is live, scalable, and operational in-service today
My SecureInfo Offices
UK & Europe
Unit 170 Silk House Park Green
Maccelsfield CHESHIRE SQ11 7QJ UK
+44 747 1118 333
Asia Pacific
Suite 3a/19 Level 14 275 Alfred Street
NORTH SYDNEY NSW 2060 Australia
+61 404 111 061
Email
team@secureinfo.io
My SafeInfo Offices
UK & Europe
Unit 170 Silk House Park Lane
Macclesfield Cheshire SQ11 7QJ UK
+44 747 1118 333
Asia Pacific
Suite 3a/19 Level 14 275 Alfred Street
NORTH SYDNEY NSW 2060 Australia
+61 404 111 061