Evervault

@evervault

Encrypting the web.

Dublin, Irelandevervault.comJoined April 2018

23 Following

1,467 Followers

Evervault’s Tweets

Pinned Tweet

Evervault

@evervault

Oct 11

In less than 4 minutes, learn how to reduce your PCI DSS compliance scope, so your team spends less time becoming compliant, and more time building your business.

@arcurn

youtube.com

Reduce your PCI scope: never touch sensitive data in plaintext

Learn how to reduce your PCI DSS Scope to its simplest form by never touching sensitive credit card data in plaintext.With Evervault you can reduce the work ...

Quine (computing) - Wikipedia

This code encrypts itself using the Evervault SDK. It is the encryption equivalent of a Quine! If you're interested in encryption, you can sign up for Evervault at app.evervault.com/register.

"As a decentralized identity service, privacy is at our core. We need to ensure that our users’ plaintext data is never exposed, including to us. Evervault enables us to do this simply and quickly." —

Our CEO

shared the stage with

@tines_io

CEO

@eoinhinchy

@BusinessShowIrl

today for a great joint fireside on cybersecurity best practices. For more on Shane's Day Zero approach to cybersecurity you can check out this blog post : lnkd.in/eWW3T-t4

Evervault

@evervault

Oct 5

18/18) Now that you understand how to share a secret, learn how to encrypt a string in less than five minutes with Evervault Inbound Relay.

evervault.com

How to encrypt a string in less than 5 minutes — Blog — Evervault

Encrypting your first string with Evervault

17/18) This scheme works for strings too! As strings are stored as binary, we can convert the binary representation of the string to decimal and use that representation as our secret.

16/18) We can still interpolate to find our secret when we have the threshold number of shares. But now, having less than the threshold does not give us more information about the secret than if we had no shares.

0:12

14 views

15/18) The larger the prime chosen, the lower the probability of finding the secret. In this case, we'll select a relatively small one, 1613, as it works well with our visualisation. Notice how unrelated the shares (points) look now:

0:05

19 views

14/18) We need to ensure our modulus is a prime number larger than our secret, our coefficients, and the number of shares we intend to generate.

13/18) Applying a modulus makes a function cyclic, as it can only ever reach the number of the modulus, and then it will go back to zero again. Here’s what our function looks like when we apply a modulus of 1613.

0:09

11 views

12/18) However, we can make a simple change to our polynomial to eliminate the above exploit: we turn it into a cyclic polynomial by applying a modulus. Another for the rusty: a modulus is basically just getting the remainder, e.g.

0:04

9 views

11/18) In an effective secret sharing protocol, having less than the threshold number of shares should not give you any information about the secret. Therefore, using regular polynomials will not fit the bill.

10/18) In the example below, two points are stolen, and the attacker can try each possible polynomial (149 in this case) until they find the secret.

0:13

12 views

9/18) However, using regular polynomials has a security flaw. If you have some points but haven't enough to satisfy the threshold, you can use algebra to reduce the number of possible polynomials. This makes it easier to perform a brute-force attack to find the secret.

8/18) If we have 3 of these shares, we can interpolate them to find the polynomial and thus find our secret. Interpolation is essentially just finding the curve that passes through our points.

0:06

10 views

7/18) To get our shares, we need to find points on the polynomial. Although our threshold is 3, we can create any number of shares. You can share with as many people as you like, but someone needs 3 to reveal our secret. Let's, for example, create 6 shares by picking 6 points.

0:03

10 views

6/18) We need to pick two random numbers to be our coefficients. Let’s choose 94 and 166, which gives us the polynomial: 94x^2 + 166x + 1234. Here's what it looks like:

0:05

11 views

5/18) As a demonstration, let's share the secret 1234. We’ll set the threshold as 3, i.e. you need at least three of the shares to find out the secret. Thus, we require the polynomial to be of degree 2.

4/18) This means you can share points, but someone can only find the polynomial if they have enough points. You need N+1 points to uncover a polynomial of degree N. These points are the 'shares' of our secret.

3/18) For the rusty among us, this first video clip depicts a polynomial. It is a degree 3 polynomial, as the largest power of x is 3. Polynomials work for secret sharing because you can give people some of the points on the curve without revealing to them what the polynomial is.

0:04

28 views

2/18) Cryptography schemes are often difficult to understand, but they are intuitive when explained in a suitable medium. In 1979, famed cryptographer Adi Shamir proposed a new method for sharing secrets.

🧵Cryptography doesn't have to be abstract and complicated. It can be intuitive. By visualising Shamir's scheme,

@nuggimane

teaches us how to securely share a secret. evervault.com/blog/shamir-se

0:08

376 views

Today, fittingly, on

’s 11th birthday, we held a user meetup at our HQ in Dublin. Great to share advice on running and scaling businesses with

@ciaraflood_

@arcurn

, and

@whelton

101

Evervault

@evervault

Sep 28

You can read the blog version of the tutorial at:

evervault.com

How to encrypt a string in less than 5 minutes — Blog — Evervault

Encrypting your first string with Evervault

Our mission is to encrypt the web. The only way to do this is to make encryption easy to integrate and hard to get wrong. That's why you can encrypt your first string with Evervault in less than five minutes. In this video,

@arcurn

shows you how.

youtube.com

How to Encrypt a String in Less than 5 Minutes

Encrypt a string in less than 5 minutes with Evervaut CEO Shane Curran. Read the blog version of this tutorial at https://evervault.com/how-to-encrypt-a-stri...

Implementing encryption has never been so easy.

GIF

And because we store your encryption keys, you don’t have to worry about key management on your infrastructure or implementing complicated encryption schemes.

You’ll learn how to build a basic CRUD app and keep your users’ data safe by encrypting sensitive information with Inbound Relay.

Evervault’s Encryption Architect

@Mikie_L

has put together a tutorial to show you how.

evervault.com

How to Build an App with Field Level Encryption — Blog — Evervault

Building a basic CRUD app with encrypted fields using Inbound Relay.

But with the right tools, building an app with field-level encryption is easy.

Even if you do manage to implement encryption yourself, you can’t always trust yourself or your developers. Proper key management is particularly difficult to implement and can quickly become a nightmare if done incorrectly.

To implement encryption properly yourself, you need an experienced security engineer with knowledge of today’s state-of-the-art encryption schemes, working tirelessly to keep up with the latest trends and advisories from the broader security community.

Developers are taught how to write efficient code and performant code but rarely are they taught how to write secure code. 🧵

hoodie-adjusted EBITDA 📈

Quote Tweet

Sebastian Fuchs

@sebastianjfuchs

Sep 12

Thanks for the swag @evervault

happy to help out

Excited to be partnering with

@evervault

to secure

@HumaansHQ

integrations! Evervault encrypts access tokens, but does not store them. Humaans stores your encrypted access tokens, but we can not decrypt them. Magic🪄

I wrote a piece for the

@Evervault

Blog on Day Zero Security — explaining why security is often treated as an afterthought, and how building security into software from the very beginning can help prevent data breaches! You can read it here: