SpidedOak’s Crypton & The Promise of Secure Apps

Posted by on Sep 23, 2013

For applications and software developers, the idea of a truly private application framework has been a pipedream. Developers have had to contend with countless leaks, attacks, and instances of hacking that severely dip into profits and halt production. But with SpiderOak’s new Crypton application framework, developers can build applications and programs that private and cryptographically secure. This ensures that projects stay secret until they are ready to be unveiled and that nothing is stolen. Along with Crypton, developers can keep data secure through SpiderOak’s private cloud services.



Many developers have previously been wary of the cloud as it once meant sacrificing privacy for convenience. But with Crypton, everyone can take full advantage of the cloud while enjoying the privacy and zero-knowledge that SpiderOak users have come to love. This new framework comes equipped with complex layers of cryptography to befuddle any would-be hackers. According to SpiderOak co-founder and CEO Ethan Oberman, “We can now start a true dialogue around privacy online as Crypton makes it possible for anyone to build ‘zero-knowledge’ cloud-based applications.

Most companies out there aren’t making money by mining through your uploaded content; rather, they are providing a service and charging a monthly or yearly fee. Through Crypton, these companies can now give privacy back to their user base and further protect themselves against potential liabilities and/or outside attacks.” Especially in the wake of the NSA’s PRISM program, consumers are more demanding of privacy rights and data protections then ever. According to Oberman, “Ultimately– we believe that privacy is a right in this country. And inherent in privacy is the concept of ownership. We own our information and therefore can make decisions about when and with whom we share it. This issue has been severely complicated by the growing nature of cloud technologies, as the data you upload had to be accessible by that 3rd party company in order for that service to be useful. But the world is evolving and Crypton gives the conversation a meaningful place to start.”

Courtesy of computerweekly.com

Prevalence of Hacking

This revolutionary framework promises to put data security back into the hands of developers. Projects no longer need to fear tapping the cloud for its convenience and cost-savings as Crypton has zero-knowledge of any user data. SpiderOak first developed the tool internally to meet their extremely high security standards in software development. Through the tool, the company was able to encrypt data without using a different program. The fact that Crypton doesn’t store any plaintext keeps developments safe from all eyes, even SpiderOak’s. As CEO Ethan Oberman says, “If you’re business model doesn’t rely on monetizing user data, then why store that data in plaintext? The liability of storing data is increasing daily.

“The PRISM story awoke people to the growing and associated risks around ‘big data’ and how it can be abused. And there will, of course, always be the threat of data leakage or theft. Whereas previously there was no accessible solution, Crypton represents a new way forward by providing a ‘privacy-first’ approach to application design and implementation. It is time to stop thinking of privacy as a feature and start thinking of privacy as a platform. Previously, privacy could only live in the belly of a downloaded client, which limits adoption and creates obstacles — especially as the world shifts toward the web. Now armed with a way to push privacy further into the web than previously possible, the Crypton framework can serve as a necessary cornerstone in the development and continued advancement of this new privacy platform.”

SpiderOak’s Commitment to Transparency

The company’s high regard for user privacy has earned them diehard support and has even gained recognition by The Information and Privacy Commissioner of Ontario, Canada, Dr. Ann Cavoukian. The commissioner recently named CEO Ethan Oberman and SpiderOak a Privacy by Design ambassador. This recognition indicates the level to which SpiderOak has remained committed to user privacy across all levels, from consumers to businesses to developers. Along with the Crypton framework, SpiderOak also offers businesses and development teams secure storage and syncing services.

Securing Data With SpiderOak

For most SMBs and developers, finding a truly protected third party cloud service can be a challenge as many “secure” services on the market have security gaps that leave data and private company info wide open to third party attacks, leaks, or hacking. One cloud storage and sync service that sets itself apart from the rest of the market is SpiderOak. This service provides businesses with fully private cloud storage and syncing, featuring all of the benefits of the cloud along with 100% data privacy. SpiderOak is available with onsite deployment and private servers or outsourced deployment through a private and secured public cloud server, so that users can tailor the service to fit their needs.

SpiderOak protects sensitive user data with 256-bit AES encryption so that data, files, and passwords stay private. Authorized accounts and network devices can store and sync sensitive data with complete privacy, because this cloud service has absolutely “zero-knowledge” of user passwords or data. And all plaintext encryption keys are exclusively stored on approved devices because SpiderOak never hosts any plaintext data. This way, even if programs like NSA’s PRISM continue to stand unchallenged, developers can rest easy knowing that their data is truly protected. SpiderOak’s cross-platform private cloud services are available for users on Windows, Mac, and Linux platforms, along with Android and iOS mobile devices, allowing for full flexibility and enabling a secure mobile workforce.

Leave a Reply