In today’s open architectures (smartphones, tablets, and desktops), keys are easily found in code or memory. Hackers can monitor devices with special analysis tools and extract secret keys. Without effective key protection, security features can and will be broken, communications will be intercepted and trust destroyed.
Secure Key Box is an easy-to-integrate library that employs advanced technologies based on white-box cryptography. Secure Key Box protects basic cryptographic functions such as key generation, encryption, digital signatures, key agreement and, notably, dynamic key wrapping (import and export). Our white-box technology ensures that secret keys are always encoded, even during execution; keys never appear in memory in the clear.
whiteCryption Secure Key Box is intended for any application that uses cryptographic algorithms and keys running in an open or zero-trust environment.
Secure Key Box™ is a powerful white-box library, providing an extensive set of the most popular cryptographic algorithms. These include DES, AES, RSA, SPECK, ECC, ECDSA, DH, ECDH, and SHA. Custom algorithms can be supported easily as part of a professional services engagement.
All Secure Key Box libraries delivered are diversified. Keys that are exported, stored, and protected by one Secure Key Box instance cannot be used by another instance of Secure Key Box. Internal data is also encoded differently per delivery, ensuring that hackers can’t extract internal data from one app and insert it into another. This diversification ensures that only Secure Key Box instances with the same unique values can exchange secret data — and prevents hackers from gaining access to data. In addition, instances of Secure Key Box can be optionally protected by Code Protection to add an additional layer of protection from tampering.