NFC HSM Wallet is a (Hardware Security Module with NFC technology). This allows you to easily store, manage, share, and use Cloud web services encryption keys.
Based on EviCypher technology, the HSM WALLET NFC device allows to store encryption keys of web cloud services such as Amazon Web Services (AWS), Microsoft Azure and Google Cloud Platform (GCP) encryption keys.
NFC HSM WALLET decentralises the management of Cloud encryption keys physically offline. And at the same time, the solution offers extreme flexibility of their use and sharing encrypted from end to end but from human to human.
The NFC HSM Wallet solution offers the ability to simply share cloud service encryption keys. Sharing is done via a QR Code encrypted in RSA 4096. The sender can use all means of communication including SMS and even air gap via a web cam.
Simple and efficient thanks to EviCypher technology, to create, manage and use Cloud web service encryption keys. Possibility to add a virtual bluetooth keyboard for command line use.
To use the encryption keys, you must have at least one NFC HSM Wallet device. It has a configurable access control system with multi-factor authentication. In addition each key can be secured with their own trust criteria.
Quickly and easily achieve cloud encryption key sharing by scanning the encrypted QR Code with the public key of your RSA 4096 key.
Thanks to the EviCypher web browser extension you can use your web service cloud encryption keys. The extension is paired with the NFC phone. The latter is also paired with the HSM Wallet NFC device. Then everything is encrypted from end to end.
The NFC HSM Wallet function is integrated in the EviCypher Webmail extension developed for web browsers.
On the right, you can see the list of Cloud web services that generate encryption keys compatible with NFC HSM Wallet.
Below you can see the version history of EviCypher Webmail.
Below you can see the version history of the encryption key usage cloud service.
1.8.0 EviCypher Webmail & Cloud – legacy
AWS encryption keys are tested compatible with the NFC HSM Wallet
In final test
In final test
Our solution protected by two international patents breaks with all existing solutions. In fact, our method of safety and security is not only innovative but also unparalleled. The solution is not based on the use of remote servers, nor the exchange of keys via this type of service and even less on the storage of keys on computer and telephone systems.
In fact, messages and attachments encrypted via the NFC Encrypt Mail device are made via keys generated, stored and used totally outsource computer and telephone systems. So, even if the mail servers get hacked, it doesn’t matter. In the same way, it is not possible to read the content exchanged. In addition, the display of emails also remains encrypted effectively fighting against the risks of espionage and / or malicious looks. Anonymity is achieved end-to-end since outsourced encryption is life an extension on computer and a phone application. Its level of compatibility with free Webmail allows the user to freely create an email profile. Encrypt Mail Cards finally offers multi-authentication of users, unlike existing email solutions as secure as it is. The trusted third party is carried out via an NFC device whose encryption keys generated at the discretion of the sender are exchanged with trust criteria that he has pre-established. The criterion of trust is in fact realized from human to human via their device of which they have total control.
The control of access to the encryption keys is secured in multi-factor authentication that can be freely configured by the user. This is the addition of trust criteria of physical origin such as geolocation, password, fingerprint, as opposed to simple access control by password.
Maintaining end-to-end privacy from the NFC Encrypt Mail Cards device. Encryption keys are only stored in the device and individually secured up to 13 different trust criteria. It is physically impossible to compromise an encryption key even when sharing them. Communication protocols such as Wifi, Bluetooth, wired LAN, are encrypted by ephemeral single-use keys. Data exchanges on the communication protocol with NFC are also encrypted.
Encrypt Mail Cards incorporates Freemindtronic’s EviCypher technology. It does not use a server to function. Emails are encrypted before being sent to email servers. So even if the mail server is compromised, the messages still remain encrypted.
Encryt Mail Cards works with all computers and all types of operating system such as Windows, Linux, macOS, Pi OS, OS/2, with a Chromium-based Windows web browser such as Chrome, Edge, Opera, Brave including Mozilla’s Firefox. It also works with Android NFC phones. In addition, you remove the risk of synchronizing your email services with computer systems. Everything is managed automatically from the NFC device and the Encryt Mail Cards app on the phone. Thus, you are free to freely use safely any computer and or NFC Android phone.
Encrypt Mail Cards offers end-to-end anonymity from the NFC card. It does not use any remote servers to function. The solution does not request, collect, transferor provide any information on the identity of the owner and /or user. It works on an email service without having to know the identity of the sender and the recipients of the emails. The server receives an email and attachment already encrypt via Encrypt Mail Card. In fact, the sender of an email can decides to use an email service whose identity is anonymous or ephemeral.
Maintaining end-to-end privacy from the NFC Encrypt Mail Cards device. Encryption keys are only stored in the device and individually secured up to 13 different trust criteria. It is physically impossible to compromise an encryption key even when sharing them. Communication protocols such as Wifi, Bluetooth, wired LAN, are encrypted by ephemeral single-use keys. Data exchanges on the communication protocol with NFC are also encrypted.
The Encrypt Mail Cards solution is part of zero trust solutions. This is because mail servers are considered to be presumed to be corrupted. The solution therefore makes it possible to give no trust to the mail servers. Since emails are encrypted upstream by a system physically outsourced via an NFC device, security is ensured even in the event that the server is compromised.
The criteria of trust on the identity of the correspondents are carried out without a trusted third party. They are carried out quickly and simply when sharing encryption keys via an encrypted QR Code. The key creator adds up to 13 different trust criteria at their discretion. To use the encryption, key all trust criteria must be validated. In fact, the recipient of the encrypted message has the certainty of the identity of the sender while maintaining his anonymity.
The research and development department are committed to making the Encrypt Mail Card solution the most secure hardware email encryption system in the world. This is why we design, develop and manufacture our software, applications, web browser extensions, electronic design, embedded system and manufacturing tools. We aim to control the entire value chain from idea to manufacturing of products and services.
.
Encrypt Mail Cards uses an ISO/IEC 15693 NFC component to physically secure access to the data stored in its eprom. The encryption keys are stored encrypted with trust criteria, some of which are defined at the discretion of the user. In addition, at least one of the trust criteria is not physically present in the device. This makes it possible to resist an invasive attack. Thus even if the physical access security is corrupted, the data stored in the memory will always remain encrypted.
No risk of error using the right key to decrypt emails everything is automated. Be you have the right key and you validate all the trust criteria to be able to decrypt as well as to encrypt. Be you simply will not be able to encrypt or decrypt.
In fact, the encryption keys are randomly generated by the user and stored encrypted without being able to read them himself.
It is obvious that no third party can take cognizance of emails encrypted with Encrypt Mail Cards.
The patented segmented key authentication system ensures human-to-human authentication anonymously and not machine-to-machine authentication.
Thus, the level of certainty that you are communicating with the right person has never been higher. In addition, the management of automated trust criteria associated independently by encryption key, are defined at the discretion of the correspondents.
The latter must have an NFC Encrypt Mail Cards device to be able to use the key. Finally, correspondents can impose without possibility of modification the conditions of use of the encryption key. There is no need for trusted third parties, since trust is established directly between human-to-human correspondents.
Encrypt Mail Card encrypts the content of your communications, but will not encrypt the metadata of your email services. In fact, encryption does not hide that you and your friend are communicating, that you are using encryption to communicate and other information such as the subject of your communication, the place, the times.
Reason why, we recommend using encryption even for non-sensitive emails. This is the advantage of this solution compatible with Webmail messaging services. You can use it on an anonymous or ephemeral email address, or use this encryption tool by everyone when possible.
This will make its use normal and not suspicious for those who listen to the networks. Email encryption can be performed offline only on the RAM of the computer and /or phone which will increase the level of security at rest and then in transit.
However, if you send end-to-end encrypted messages by encrypting your data in transit without encrypting your data at rest, this brings another advantage since in principle your messages will be the test of monitoring traffic and listening to the network.
Finally, even if an attacker physically accesses your mobile device or computer, they will not be able to read your encrypted emails.
Encryption keys are only in your Encrypt Mail Cards and in your pocket.