Intertrust Shows Off New White-Box Cryptography Solution for Web Apps at RSA
Secure Key Box (SKB) for Web is Intertrust’s new enterprise-ready white-box cryptography solution for web applications. It brings the security vendor’s widely used whiteCryption technology, which prevents attackers from extracting keys using static or dynamic methods, to web and mobile apps. The company is showing off the new product at this year’s big RSA Conference.
Recommended AI News: Domo Wins DEVIES Award For Best Innovation In IoT
The solution prevents attacks because it allows standard cryptographic functions to be performed without the keys ever being exposed whether in use or at rest. SKB for Web also protects keys and credentials from side-channel attacks by making them safe from exploits running within the browser, as well as natively on the PC or device.
According to Horne, the problem is that a lot of people think by using cryptography, they are protecting their applications from rogue actors but they’re merely shifting the problem from the data to the keys themselves.
“Secure Key Box for Web prevents hackers from stealing keys from web applications, resisting existing and future side-channel and fault injection attacks with ‘drop-in and go’ ease that requires no additional operations or protocols.”
Recommended AI News: Rockset Gains Momentum as the Industry’s Leading Real-Time Database in the Cloud
APIs are being used more and more to interact with apps on the server-side, but browser APIs and third-party cryptographic libraries cannot protect keys from attacks on the underlying host without having access to its hardware security support. Hackers are able to obtain keys through various rogue techniques.
Recommended AI News: Successful Digital Transformation Requires New Breed of CFO, Sage Study Shows