Artificial Intelligence | News | Insights | AiThority
[bsfp-cryptocurrency style=”widget-18″ align=”marquee” columns=”6″ coins=”selected” coins-count=”6″ coins-selected=”BTC,ETH,XRP,LTC,EOS,ADA,XLM,NEO,LTC,EOS,XEM,DASH,USDT,BNB,QTUM,XVG,ONT,ZEC,STEEM” currency=”USD” title=”Cryptocurrency Widget” show_title=”0″ icon=”” scheme=”light” bs-show-desktop=”1″ bs-show-tablet=”1″ bs-show-phone=”1″ custom-css-class=”” custom-id=”” css=”.vc_custom_1523079266073{margin-bottom: 0px !important;padding-top: 0px !important;padding-bottom: 0px !important;}”]

Intertrust Shows Off New White-Box Cryptography Solution for Web Apps at RSA

Secure Key Box (SKB) for Web is Intertrust’s new enterprise-ready white-box cryptography solution for web applications. It brings the security vendor’s widely used whiteCryption technology, which prevents attackers from extracting keys using static or dynamic methods, to web and mobile apps. The company is showing off the new product at this year’s big RSA Conference.

Intertrust’s Bill Horne said in a press statement that SKB for Web makes it extremely difficult for an attacker to reverse engineer apps or extract key information even when the Javascript source code of the implementation is available.

Recommended AI News: Domo Wins DEVIES Award For Best Innovation In IoT

The solution prevents attacks because it allows standard cryptographic functions to be performed without the keys ever being exposed whether in use or at rest. SKB for Web also protects keys and credentials from side-channel attacks by making them safe from exploits running within the browser, as well as natively on the PC or device.

According to Horne, the problem is that a lot of people think by using cryptography, they are protecting their applications from rogue actors but they’re merely shifting the problem from the data to the keys themselves.

“Secure Key Box for Web prevents hackers from stealing keys from web applications, resisting existing and future side-channel and fault injection attacks with ‘drop-in and go’ ease that requires no additional operations or protocols.”

Recommended AI News: Rockset Gains Momentum as the Industry’s Leading Real-Time Database in the Cloud

APIs are being used more and more to interact with apps on the server-side, but browser APIs and third-party cryptographic libraries cannot protect keys from attacks on the underlying host without having access to its hardware security support. Hackers are able to obtain keys through various rogue techniques.

SKB for Web is delivered as a JavaScript consumable API that does all the common cryptographic functions. It protects cryptographic keys even when running on a compromised host. The solution provides stronger and broader protection than low-level interfaces, such as the Web Crypto API, which do not secure against attacks running outside the browser.

Recommended AI News: Successful Digital Transformation Requires New Breed of CFO, Sage Study Shows

Leave A Reply

Your email address will not be published.