Original article published here at Developer-Tech.com.
By Ryan Daws
Encryption as a service provider StrongSalt has released its Open Privacy API to improve the security of developers’ applications.
StrongSalt was founded by Ed Yu, the former founding engineer of cybersecurity giant FireEye. Back in September, StrongSalt raised $3 million in seed funding from Valley Capital Partners.
Claiming it wants to “do for encryption what Stripe has done for payments and Twilio has done for communications,” StrongSalt offers APIs and SDKs for most of the leading cloud providers including:
– AWS S3
– Google Cloud
StrongSalt can also supply cloud storage for those without a current provider.
The Open Privacy API provides encryption features so developers can focus more on building great apps without having to learn the cybersecurity expertise needed to make them secure.
“Current encryption solutions do a good job of keeping some information under guard but you can’t use it,” explained Yu. “These were never equipped to allow for accessibility or scalability. We have made this possible for the first time.”
Increasingly stringent data protection regulations around the world, such as GDPR and CCPA, means that it’s more important than ever to implement robust encryption.
“Starting January 2020, any organisation that suffers a reportable breach affecting the information of California consumers will face potentially enormous class action litigation costs under CCPA and StrongSalt’s approach is the only ‘get out of jail free card’,” said Lydia de la Torre, a practice lead at global law firm of Squire Patton Boggs.
Some of the API’s features include:
– Decentralised searchable and shareable encryption protocol: data is searchable online and offline without decrypting it first, with an unprecedented level of control over sharing.
– Blockchain-agnostic immutable and trusted distributed ledger: trackable audit trail of all related events.
– Protected data: data is never at risk of exposure, preserving both business and consumer privacy.
– Can be applied to all data types: including files such as JSON, documents and even passwords and keys.
“StrongSalt’s Open Privacy API initiative has the potential to transform the future of privacy and encryption,” said John Kindervag, the creator of the Zero Trust security model and field CTO for Palo Alto Networks.
“This approach gives businesses exactly what they need: easy to use encryption technology through an API that allows data to be searchable while protecting it from unauthorised use and exfiltrations.”
The Open Privacy API is freely available here. StrongSalt is planning to offer the API in the AWS Marketplace in early Q1 2020.