Skip to content

Latest commit

 

History

History
16 lines (9 loc) · 946 Bytes

data-security.md

File metadata and controls

16 lines (9 loc) · 946 Bytes

Data Security

Local Encryption, and Sharing

I commonly decide to use Keybase Teams because of the need for a BYOK solution to securely sharing critical data, which could be expired, and was TOFU-safe.

  1. BYOK ensured that we could rotate keys, and be in control of those keys rather than delegating them to a service to hold the root keys.
  2. Expiry was important, because we needed messages with certain risky information to disappear, to ensure against hacking (even despite our procedures).
  3. TOFU means 'trust on first use' and is reflected int he way that information is inaccessible to a use if they needed to do anything that interrupts the ability to trust their account — such a password reset.

These together allowed us to use this tool within our data security chain.

Encryption Methods

domain map of cryptographic mechanics