End-to-end encryption, now it's just

Encryption. A question that many developers approach with awe and apprehension. Over the past couple of decades, many have tried to change this imperfect world and many have achieved success. But one thing has remained the same - to create a secure application is still not everyone can afford. The price of security is too high and includes studying dozens of standards and specifications, compiling tons of incomprehensible code, reading multipage monographs of cryptographic gurus. We at Virgil Security are far from ambitious plans to change the world, we just want to make security accessible to everyone. And here we are on Habré, hello!

The idea of ​​an affordable, secure way to share information has been in the air for a long time. But, unfortunately, for many years she remained just a dream along with flying cars and landing on Mars. We offer each developer a simple and reliable way to make this dream come true. How? That's what we are going to talk about.


So what do we offer? We offer an infrastructure that allows you to make an experienced cryptographer from any developer. Regardless of the language you write in, be it C, C ++, C #, ObjectiveC, Swift, JavaScript, Go, PHP, Python, Ruby or something else. Regardless of the type of product you are creating: desktop or mobile application, cloud service or embedded system. Regardless of the operating system on which you work: Windows, MacOS, Linux, iOS. Using Virgil Security, you can add secure End-to-End encryption or passwordless authentication to your application with just a few lines of code.
')
Have you ever wondered why security still remains such a serious problem?
In short, mainly for four reasons:

1. Lack of high-quality, cross-platform implementation of cryptoalgorithms;
2. Lack of infrastructure to make cryptography ubiquitous;
3. Compatibility issue. By implementing encryption in their product, developers are forced to sacrifice the compatibility of their solutions;
4. Lack of flexible key management system.

And we think that we have a way to solve all these problems once and for all.

First : Historically, the world of cryptographers and the world of software programmers practically did not overlap. As a result, today a large number of a variety of cryptographic libraries and tools are available that are useless for most developers because of their complexity and fragmentation. We concentrated our efforts on creating a single API, the use of which will allow the developer to add strong encryption to his project in just a few minutes. Moreover, we wrote a lot of code to make the use of API possible in almost every programming language. And we published all this code in open access under the BSD-3 license.

Secondly : To create a system that uses certain algorithms or has limited functionality - this means repeating the mistakes of the last 20 years. Instead, we provide a flexible infrastructure with which you can set up an encryption method for each message, file, or packet. We have implemented most modern elliptic curves and you can use any of them. Do you need to change the algorithm every hour? Every minute? After each encrypted message? No problem. You can build multi-layer encryption like RSA + ECIES. And all this is just a few lines of code.

Thirdly : Compatibility. Despite the fact that many modern languages ​​have a built-in implementation of the most common cryptoalgorithms, writing programs for the Internet of Things, where data can be read from sensors and processed on Android and iOS devices, can be a very painful task. Virgil Security eliminates such problems. We provide a single API that will work on any platform.

Fourth : Unfortunately, users are still the most vulnerable point in any system. Not all users are able to competently manage keys, moreover, users may not even be aware of the presence of keys. Virgil Security provides an opportunity not only to use the global public key infrastructure, but also to create its own local infrastructure, available within one application. The developer can allow users to save encrypted copies of keys in the private key storage, which guarantees the recoverability of data in case of loss of the key.

So, as mentioned above, we are not trying to change the world. We offer you an easy way to implement strong encryption and add it to your project. Change the world and make it safer everyone can. What do I need to do? Choose a red pill , of course.