Rate my startup - CertiVox's PrivateSky
5 points| bribriinlondon | 14 years ago |privatesky.me | reply
Last week we launched a new service called PrivateSky, which is a end to end, browser to browser encryption service, for free. Our first product is the PrivateSky for Internet Explorer add-in. Yes, we will come out with Firefox and Chrome soon.
I'd love to see what the board thinks about what we are doing, and if so, what we could improve.
I hope this is the appropriate place to post this, if I'm violating policy (checked, couldn't find anything), then please do let me know and I will delete this.
You can get the free PrivateSky Internet Explorer add-in at:
https://privatesky.me
What does it do?
CertiVox's PrivateSky SaaS is a major innovation in secure inforamtion exchange. The PrivateSky for Internet Explorer Connector add-in is a whole new approach to securing confidential information posted to the web, and anyone can use it. The PrivateSky for IE add-in doesn't require multiple passwords, certificates, or complicated processes to learn. It's simple browser to browser encryption that just works. Use it to encrypt your webmail, Facebook posts and messages, LinkedIn messages and even blog posts. PrivateSky uses the AES encryption algorithm, that means it is super safe!
Enough with the marketing schpeel, here's what we really do:
We operate an encryption key management server in the cloud. Our software connects to our key server to get everyone who enrols what we call a SkyKey. You can think of this like a private key. However, we are using a new form of key agreement called non-interactive authenticated key agreement, based upon bilinear pairing mathematics. No, this is not identity based encryption, this is non-interactive key agreement. It's heady stuff, but it has suffered through 20 years of cryptanalysis and is secured by the DLP.
Now, the thing is, there is no public key. There is only one key, your SkyKey. But, this enables you to create "connection keys", which are regular AES 192 bit keys. The analogy I always use is this: Suppose every time you made a friend on Facebook, a worldly unique AES key was created between you and your friend, and could only be created between you and your friend.
That's what we've managed to do, but in your browser. Oh, and there is a boatload of key protection, rotation, etc., going on in the background.
Again, love to get some feedback. I'm the chief bottle washer at the moment so I can't promise to respond to feedback immediately, but will try my best.
Thank you for giving it a shot and please let 'er rip, the good, bad and ugly.
Cheers, Brian
[+] [-] bribriinlondon|14 years ago|reply
I've been a long time lurker on the board, but this is my first official post. My name is Brian Spector, I'm a long time crypto geek, working in infosec for about 20 years.
Last week we launched a new service called PrivateSky, which is a end to end, browser to browser encryption service, for free. Our first product is the PrivateSky for Internet Explorer add-in. Yes, we will come out with Firefox and Chrome soon.
I'd love to see what the board thinks about what we are doing, and if so, what we could improve.
I hope this is the appropriate place to post this, if I'm violating policy (checked, couldn't find anything), then please do let me know and I will delete this.
You can get the free PrivateSky Internet Explorer add-in at:
https://privatesky.me
What does it do?
CertiVox's PrivateSky SaaS is a major innovation in secure inforamtion exchange. The PrivateSky for Internet Explorer Connector add-in is a whole new approach to securing confidential information posted to the web, and anyone can use it. The PrivateSky for IE add-in doesn't require multiple passwords, certificates, or complicated processes to learn. It's simple browser to browser encryption that just works. Use it to encrypt your webmail, Facebook posts and messages, LinkedIn messages and even blog posts. PrivateSky uses the AES encryption algorithm, that means it is super safe!
Enough with the marketing schpeel, here's what we really do:
We operate an encryption key management server in the cloud. Our software connects to our key server to get everyone who enrols what we call a SkyKey. You can think of this like a private key. However, we are using a new form of key agreement called non-interactive authenticated key agreement, based upon bilinear pairing mathematics. No, this is not identity based encryption, this is non-interactive key agreement. It's heady stuff, but it has suffered through 20 years of cryptanalysis and is secured by the DLP.
Now, the thing is, there is no public key. There is only one key, your SkyKey. But, this enables you to create "connection keys", which are regular AES 192 bit keys. The analogy I always use is this: Suppose every time you made a friend on Facebook, a worldly unique AES key was created between you and your friend, and could only be created between you and your friend.
That's what we've managed to do, but in your browser. Oh, and there is a boatload of key protection, rotation, etc., going on in the background.
Again, love to get some feedback. I'm the chief bottle washer at the moment so I can't promise to respond to feedback immediately, but will try my best.
Thank you for giving it a shot and please let 'er rip, the good, bad and ugly.
[+] [-] gojomo|14 years ago|reply
Does Certivox retain the ability to decrypt all messages?
FYI, nothing shows on the FAQ page when blocking Javascript, which is somewhat common among the security conscious who may be your target audience.
[+] [-] JangoCuni|14 years ago|reply
[+] [-] bribriinlondon|14 years ago|reply
We tried automating the process of the entire note but we found that people really wanted to put their own language around it. When we hijacked the entire note folks didn't recognize it and it's a lot more "trustable" (is that word LOL) when it comes from a friend with some of their language.
[+] [-] JOnAgain|14 years ago|reply
[+] [-] bribriinlondon|14 years ago|reply
[+] [-] spreiti|14 years ago|reply
One suggestion: Decrypt the message automatically when the user opens the page. I think it's cumbersome to manually decrypt the message everytime.
[+] [-] bribriinlondon|14 years ago|reply
[+] [-] bribriinlondon|14 years ago|reply
[+] [-] oliciv|14 years ago|reply
[+] [-] pbreit|14 years ago|reply
[+] [-] jivejones|14 years ago|reply
[+] [-] bribriinlondon|14 years ago|reply