CIPHERWALL COM

simple & secure

 

Home Products News Contacts
Products

 CipherWall Safe

CipherWall Safe is a remote storage system for confidential data. A simple, user-friendly software encrypts and uploads your files to a remote storage space, erasing all traces of confidential documents on a sending computer.

Information

 CipherWall Self-Decryptor

The best program for self-decrypting archives creation and data wiping. Also useful for backups creation.

Information

 

CipherWall Safe FAQ
 
What is RSA keypair?

Public-key cryptography, also known as asymmetric cryptography, is a form of cryptography in which the key used to encrypt a message differs from the key used to decrypt it. In public key cryptography, a user has a pair of cryptographic keys - a public key and a private key. The private key is kept secret, while the public key may be widely distributed. Incoming messages would have been encrypted with the recipient's public key and can only be decrypted with his corresponding private key. The keys are related mathematically, but the private key cannot be practically derived from the public key.

RSA is an algorithm for public-key cryptography.

Details

 
What is public key certificate?

In cryptography, a public key certificate (or identity certificate) is an electronic document which incorporates a digital signature to bind together a public key with an identity - information such as the name of a person or an organization, their address, and so forth. The certificate can be used to verify that a public key belongs to an individual.

In a typical public key infrastructure (PKI) scheme, the signature will be of a certificate authority (CA). In a web of trust scheme, the signature is of either the user (a self-signed certificate) or other user's ("endorsements"). In either case, the signatures on a certificate are attestations by the certificate signer that the identity information and the public key belong together.

Details

 
What is corporate public key?

This is an additional public key that is used to encrypt user files. Corresponding private key is usually kept by system administrator and can be used to decrypt files if user lost his private key or forgot his password.

Do not use corporate key if you do not trust your server administrator.

 
How are user files encrypted?

Each file is encrypted with random key using cascade of AES and Twofish algorithms. Random key consists of two independent 256-bit keys and 128-bit initialization vector. AES and Twofish algorithms are implemented in CFB mode. Then random key is encrypted with user RSA public key and uploaded with an encrypted file to server.

When user downloads a file from server the client program decrypts random key with user RSA private key and uses it for file decryption.

 
Are file names stored encrypted on server?

Yes. File names are encrypted with random key using cascade of AES and Twofish algorithms. This random key is generated for each folder and is used to encrypt all file and folder names in this folder. This random key is encrypted with user RSA public key and stored on server.

When user downloads his file list from server the client program decrypts random key with user RSA private key and uses it for file and folder names decryption.

 

 Under construction !
  Copyright 2005-2008 Vsevolod Ievgiienko. All rights reserved.