Features

Security

Hardened and no side-loading of data.

System

  • Hardened operating system with minimal and restricted install
  • Hardened web server installation, including TLS configuration
  • Automatic patching and update mechanism of OS, software packages and applications to implement an evergreen solution
  • Digitally signed program packages from sysctl
  • No sideloading or mashup of data, or program code
  • Source code available for assessment and review for customers
  • HSTS (HTTP Strict Transport Security) to force use of always encrypted HTTPS traffic
  • Support for CSP (Content Security Policy)
  • Web part is designed and implemented with support for CSRF (Cross Source Reference Forging) protection
  • Web part is designed and implemented with several layers of input data validation
  • No usage of database in back-end to simplify solution and minimize attack surface
  • Massive logging on activities in the appliance

Files

  • Files are virus scanned with multiple antivirus scanners
  • All files are set to only exist on the server for a time period that the uploader control, between 1 hour and 14 days
  • Files can get a digital watermark as they are sent out, to notify the receiver that it is a personal copy he receives
  • Files are virus scanned with multiple antivirus scanners
  • Advanced view allows you to view file metadata and cryptographic checksums of files
  • File up and downloads are protected by TLS

Authentication

  • Authentication with one time passwords sent by SMS
  • Receivers do not need to have an account to receive files
  • Control of password complexity for one time passwords
  • Automatic logout of inactive users

Technical

Mature technology and standards.

  • Support for several 3rd party SMS gateway suppliers
  • Built using mature technology: Linux, Apache
  • Built for Internet standards: TLS, HTTP, SMTP, NTP
  • Support for local SMS modems
  • Seccomp-bpf enabled on all user facing code
  • Hardened SElinux policy enforcing all processes
  • SElinux MCS isolation between users

Usability

User-friendly from the core and on.

  • As simple to send one file to one party as sending multiple files to many receivers
  • Sender get receipt when file is downloaded
  • Automatic purging of messages by policy
  • Simple 3 click-to-send setup with reasonable defaults
  • Possibility to transfer very large files (many gigabytes)
  • Support for multiple languages (english, swedish, finnish, estonian, german, dutch)
  • Receiver get reminder notification if file is not downloaded for some time
  • Built-in online help system
  • Receiver does not need to have an account to receive files
  • User inbox and outbox

Interested in Deaddrop?