Quarks Digital Vault
Sensitive data protection for mobile application and IoT software.
Authentication tokens, unique identifiers, passwords are sensitive data which can be used by hackers for fraud or counterfeiting.
Data leakage of these information put organizations at risk of reputational damage and loss of revenue.
Data encryption, at rest and in transit, safeguard against these risks. To this intent, platform manufacturers and operating systems vendors offer APIs for data encryption leveraging hardware security features or security features provided by a Trusted Execution Environment (TEE).
However, these functions are platform and software dependant, and thus not universally available, as well as hard to apprehend for those which are not versed in security matters.
If an application is built for several platforms, misusing these APIs or having to reimplement each protection scheme for each platform means that secrets, logins, passwords are at risk of being in the clear for attackers to grab.
An abstraction layer for cryptographic operations
To answer this challenge, Quarks Digital Vault has been built to offer application developers an easy to use and reliable API to encrypt secrets by leveraging available cryptographic hardware capabilities (Secure Element or Trusted Execution Environment).
If not available, Quarks Digital Vault automatically defaults to software-based cryptography, ensuring that your data is never stored in the clear.
Facilitated data encryption
By providing an abstraction layer for data encryption for different platforms, application developpers are sure to protect sensitive data without having to reimplement security measures for each supported platform.
Unique to each peripheral
Quarks Digital Vault creates fingerprints for each device, making sure that even if lifted, the application cannot be used, guaranteeing against application repackaging.
Easy project integration
Available as a C and C++ software libraries, Quarks Digital Vault can easily be integrated into any project through simple API calls.
|Quarks Digital Vault|
|Protection mode||Persistent (on disk) keys & data|
Device binded key/value database
Encryption and authentication of data
Only decrypt what you use
Rely on hardware security components if available (e.g. Android KeyStore)
Small code and memory footprint
|Targeted platforms||Android, Linux|
|Supported architectures||ARM, ARM64, x86, x86_64|
|IDE integration||Apple XCode, Microsoft Visual Studio, & Google Android NDK|
|Sec/Dev/Ops (CI/CD Integrations)||Gitlab, Jenkins|