Designed for commercial Nextcloud users, Verifiable Identity-Based Encryption (VIBE) provides easy End-to-End Encrypted (E2EE) access to files securely stored in your organizations data stores. The entire E2EE process is controlled by the user, who determines which files to encrypt, and who among the registered VIBE users to share them with. Coupled with a VIBE subscription available on the Nextcloud store, the VIBE app ensures that all transactions are authenticated, with each user’s privileges governed by his verified-by-VIBE identity and associated private key. Users can safely view/download decrypted files on their Apple device, with your organization having the assurances that only individuals authorised to access this information can do so.
Features and Benefits
VIBE resolves numerous security and operational challenges inherent in traditional public key cryptosystems.
* Creates a Private Key (PK) for each subscriber based on its unique identity (user name for Nextcloud users)
* Delivers HSM-powered, zero-trust, identity-based encryption and authentication
* Authenticates/validates the sender/recipient of a message at the application layer, eliminating “spoofing”
* Eliminates the need to protect the public parameters, making man in the middle attacks impossible
* No need for maintaining or remembering pass phrases
* Enables E2E authenticated, encrypted information sharing to a group, based on user-controlled rights assignment. Rights management is applied to the encrypted file folders, and allows for read-only, read/write, forward, deletion which such rights determined by the user
* Includes device management tools for deactivation/activation of stolen, lost, and/or decommissioned devices (available as of Q1/2022)
* Encrypted information easily recovered if one’s device is lost, stolen or becomes defective; subscribers keys can be revoked and re-issued on an individual basis
* Easily scales to any level, and greatly simplifies key management
* Introduces simplified key revocation and security infrastructure management, thus significantly lowering operational cost (40-60% cheaper than PKI certificate-based solutions)