Best trust is reinforced by complete transparency

Often your users and your partners require efforts beyond regular "just make it secure". They demand transparency and secure audit logging that provides sufficient confidence in your system. PCI DSS audit trails are one side of the coin; settlement logs and system transparency for marketplaces and intermediaries is another.

Modern cryptography offers a whole set of protocols and approaches to back your claims and provide ways to prove your system's behaviour.

Transparent, auditable systems are hard

Audit logging is hard to blend

Dealing with 3rd party sensitive data requires audit logging while preserving the security of sensitive data.

Trusted multi-party logs are crucial

Making audit logs transparent to multiple participants yet preserving sufficient distributed trust and privacy is hard.

Provable logs are hard

Collecting logs through all components and 3rd parties is only the first step. All these logs should be protected against tampering to prove the system's behaviour.

Public merits

Government agencies and public sector organisations need highly transparent security solutions to support their missions.

Modern solutions

Modern crypto enables transparency

Modern cryptographic protocols and transparency constructions that enable third parties to trust that audit log has not been tampered with, that logging process and storage are honest.

Coverage and transparency design

The best systems provide some theoretical and practical guarantees of log completeness. For example, by mapping the data flow or business process to the sequence of tags, which are then verified.

Security and compliance

Aside from transparency and provability, best-in-class systems aim to preserve the security of sensitive data in logs – by masking it out, tokenizing, encrypting or detecting on ingestion in the first place.

To be announced

There's a product that we're preparing to address provable audit logging – Please stay tuned for further announcements.

Acra

Acra offers a selective and searchable encryption which is easy-to-integrate in already-built infrastructures. It provides verifiable audit logging for all sensitive data operations: access, encryption-decryption, removal, key management, etc.

Verifiable audit logging modules

We design & build verifiable audit logging components that you can integrate into your software architecture. Different approaches are beneficial depending on your use case – a hash-connected chain of logs, Merkle-trees-based logs, etc.

Have a question? Get a human to answer it!

How we make a difference

Fit to real-world risks

Enabling transparency means not just satisfying some academic set of formal criteria but being sufficiently trustworthy for users and partners involved in your system. Where others theorise — we have hands-on experience.

Cryptographers and data security experts

With extensive cryptographic and software engineering experience, we understand what it takes to match security and cryptography to a product experience. We designed tamper-proof audit logging technologies, integrated them into real systems, and published whitepapers.

For innovators, by innovators

We've started Cossack Labs to develop new tools and methods for protecting the data and enabling novel solutions to emerging problems — so that at the edge of your innovation, you’ve already got fitting tools handy.

Contact us

There are many ways we can help: with our products, bespoke solutions, and engineering services. Leave your contact information to connect with our team:

Relevant resources

TLS validation: implement OCSP and CRL verifiers in Go

Most applications use TLS for data-in-transit encryption and every programming language has a TLS support in its ecosystem. TLS was introduced in 1999 based on SSL 3.0. It's quite an old...

Crypto wallets security as seen by security engineers

What can go wrong when you develop a “secure” crypto wallet? How to eliminate typical security mistakes and build a secure app with multilayered data protection against mnemonics leakage...

Acra 0.90.0: application level encryption and searchable encryption for any SQL and NoSQL databases

Following our mission to empower developers to build secure products, we chose to make all fundamental security controls previously available in proprietary versions accessible to a wide...

All products

Themis, a cross-platform crypto library

Acra, a database security suite

Hermes, end-to-end secure data storage

Know how to know!

By org challenge

By use case

By industry

Blog

Documentation

Conferences & events

Whitepapers & research

TLS validation: implement OCSP and CRL verifiers in Go

About

Customer stories

Partners

Jobs & internship

Join us! We have crypto-cookies.

Best trust is reinforced by complete transparency

Modern cryptography offers a whole set of protocols and approaches to back your claims and provide ways to prove your system's behaviour.

Transparent, auditable systems are hard

Audit logging is hard to blend

Dealing with 3rd party sensitive data requires audit logging while preserving the security of sensitive data.

Trusted multi-party logs are crucial

Making audit logs transparent to multiple participants yet preserving sufficient distributed trust and privacy is hard.

Provable logs are hard

Collecting logs through all components and 3rd parties is only the first step. All these logs should be protected against tampering to prove the system's behaviour.

Public merits

Government agencies and public sector organisations need highly transparent security solutions to support their missions.

Modern solutions

Modern crypto enables transparency

Modern cryptographic protocols and transparency constructions that enable third parties to trust that audit log has not been tampered with, that logging process and storage are honest.

Coverage and transparency design

The best systems provide some theoretical and practical guarantees of log completeness. For example, by mapping the data flow or business process to the sequence of tags, which are then verified.

Security and compliance

Aside from transparency and provability, best-in-class systems aim to preserve the security of sensitive data in logs – by masking it out, tokenizing, encrypting or detecting on ingestion in the first place.

What we offer

To be announced

There's a product that we're preparing to address provable audit logging – Please stay tuned for further announcements.

Acra

Acra offers a selective and searchable encryption which is easy-to-integrate in already-built infrastructures. It provides verifiable audit logging for all sensitive data operations: access, encryption-decryption, removal, key management, etc.

Verifiable audit logging modules

We design & build verifiable audit logging components that you can integrate into your software architecture. Different approaches are beneficial depending on your use case – a hash-connected chain of logs, Merkle-trees-based logs, etc.

Have a question? Get a human to answer it!

How we make a difference

Fit to real-world risks

Enabling transparency means not just satisfying some academic set of formal criteria but being sufficiently trustworthy for users and partners involved in your system. Where others theorise — we have hands-on experience.

Cryptographers and data security experts

With extensive cryptographic and software engineering experience, we understand what it takes to match security and cryptography to a product experience. We designed tamper-proof audit logging technologies, integrated them into real systems, and published whitepapers.

For innovators, by innovators

We've started Cossack Labs to develop new tools and methods for protecting the data and enabling novel solutions to emerging problems — so that at the edge of your innovation, you’ve already got fitting tools handy.

Contact us

There are many ways we can help: with our products, bespoke solutions, and engineering services. Leave your contact information to connect with our team:

Relevant resources

TLS validation: implement OCSP and CRL verifiers in Go

Most applications use TLS for data-in-transit encryption and every programming language has a TLS support in its ecosystem. TLS was introduced in 1999 based on SSL 3.0. It's quite an old...

Crypto wallets security as seen by security engineers

What can go wrong when you develop a “secure” crypto wallet? How to eliminate typical security mistakes and build a secure app with multilayered data protection against mnemonics leakage...

Acra 0.90.0: application level encryption and searchable encryption for any SQL and NoSQL databases

Following our mission to empower developers to build secure products, we chose to make all fundamental security controls previously available in proprietary versions accessible to a wide...

Contact us

Join us!
We have crypto-cookies.