Sepior Encryption Technology Protects Online Documents for eSignature Company Penneo
Groundbreaking Key Management-As-A-Service (KMaaS) technology enables Key and Lock Separation For Secure Document Transactions
Aarhus, Denmark (March 31, 2017)
Penneo, a digital signature platform used to validate electronic documents, announced the integration of Sepior KMaaS technology to protect its clients’ documents on the cloud. The feature, being rolled out to selected customers, allows them to encrypt and protect documents stored online in Penneo’s managed archive.
Sepior’s patented technology, based on the use of secure multi-party computation for encryption key management, encrypts data using strong keys, and makes the keys inaccessible to any single third party. The keys are distributed across different cloud servers, preventing any unauthorized parties from assembling them to access the documents, whether it be a Penneo employee, a hacker, or a government entity.
The overall architecture delivers a true Key-and-Lock-Separation environment that may be necessary for compliance in regulated sectors. Since encryption is performed at the client device running the Penneo application, all documents are protected end-to-end, without relying on any additional perimeter or cloud security layers.
Penneo’s application also utilizes the Danish public key infrastructure (PKI) known as NemID, used by all Danish citizens over the age of 13 for secure online banking transactions. Federated authentication is used for both Penneo and Sepior, streamlining the process.
Sepior is rolling out the Sepior KMaaS service to security-conscious businesses worldwide. The company offers an SDK for integration with any SaaS application and a plugin for Amazon’s Simple Storage Service (S3).. Additional plugins for popular IaaS service providers such as Microsoft Azure and Google Cloud are also available. A Sepior customer can use the same Sepior KMaaS to manage keys for multiple clouds, eliminating the pain of implementing Bring Your Own Key (BYOK) scenarios with any cloud service provider.
Founded in 2014 as a spinout from the University of Aarhus in Denmark, Sepior develops key management solutions for encrypting data on the public cloud. Using patented cryptographic protocols, Sepior’s RSA award-winning team of cryptography experts have developed a practical virtual Key Management Service (KMS) using secure multi-party computation (MPC), a technique for splitting cryptographic keys between different providers that results in distributed trust. As the industry’s first true cloud-native KMS based on MPC, Sepior gives businesses full control over the encryption keys used by their SaaS-providers without relying on any single SaaS-provider, and at SaaS economics.
The company is partially funded by a grant from the European Union’s Horizon 2020 Research and Technology program.
Copenhagen, Denmark-based Penneo develops a popular eSignature platform that helps companies get their documents signed digitally - easier, faster and more securely. Once a document has been signed by the verified recipient, it’s stored for later access in a document archive managed by Penneo and hosted in the cloud. With many customers in the financial sector, security and compliance is of the highest priority.
For more information, visit penneo.com