In the modern digital landscape, data is the most valuable asset. But how do you store it in the cloud without handing over the keys to the kingdom to the provider?
AES-256-GCM: The Gold Standard
At Ice Vault, we use Advanced Encryption Standard (AES) with a 256-bit key length in Galois/Counter Mode (GCM). This standard was established by the NIST and is widely recognized as the most secure symmetric encryption algorithm available today.
According to Wikipedia , AES is the first and only publicly accessible cipher approved by the NSA for top-secret information.
What is Zero-Knowledge?
The term Zero-Knowledge in cryptography refers to a method where one party can prove to another that they know a value, without conveying any information apart from the fact that they know it.
In the context of Ice Vault, this means your master password is never shared. Encryption and decryption happen locally on your MacBook Pro using JavaScript before any data reaches our AWS S3 servers.
- Client-Side Encryption: Data is locked before it even leaves your device.
- No Backdoors: If you lose your master password, even we cannot recover your files.
The Ice Vault Advantage
By combining the high-speed security of GCM mode with a Zero-Knowledge framework, we ensure that your "Ice Vault" is truly yours. You get the scalability of AWS with the privacy of a local cold-storage drive.