Data encrytion uses AES256 block level encryption to protect files when stored. Data is streamed directly into the encryption system ensuring data is not stored to disk unless encrypted.
Password protection is critical to encryption systems, this is why we use a SHA256 one way hash. Meaning, once you hash data with a password; the password is converted into an irreversible set of characters. On login we hash your password again and see if they match.
The recipients email is also hashed one way, this protects the identity of the recipient receiving encrypted data. It also allows us
to generate a unique ID for the secure communication.
A Sender ID is required, and only used when sending email notifications to allow the recipient to identify the sender.
Data transfered from a client to our remote server is encrypted via the Transport Layer Socket version 1.2, this can be validated by;
IE - Press "ALT" > Click "File" > "Properties", "Connection: TLS 1.2 AES with 256 bit ecryption". (if client compatible)
Chrome - Click the Green Padlock > Under "Main Origin" Click "https://SendLink.org", "Protocol: TLS 1.2". (if client compatible)
Encrypted and Hashed data is stored in the Secure Store, an isolated database in which only the system accesses for encrypted data. All user and system data is stored in the SendLink main database.