Features

Security

Hardened and no side-loading of data.

System

  • Hardened operating system with minimal and restricted install
  • Hardened web server installation, including TLS configuration
  • Automatic patching and update mechanism of OS, software packages and applications to implement an evergreen solution
  • Digitally signed program packages from sysctl
  • No sideloading or mashup of data, or program code
  • Source code available for assessment and review for customers
  • HSTS (HTTP Strict Transport Security) to force use of always encrypted HTTPS traffic
  • Support for CSP (Content Security Policy)
  • Web part is designed and implemented with support for CSRF (Cross Source Reference Forging) protection
  • Web part is designed and implemented with several layers of input data validation
  • No usage of database in back-end to simplify solution and minimize attack surface
  • Massive logging on activities in the appliance

Files

  • Files are virus scanned with multiple antivirus scanners
  • All files are set to only exist on the server for a time period that the uploader control, between 1 hour and 14 days
  • Files can get a digital watermark as they are sent out, to notify the receiver that it is a personal copy he receives
  • Files are virus scanned with multiple antivirus scanners
  • Advanced view allows you to view file metadata and cryptographic checksums of files
  • File up and downloads are protected by TLS

Authentication

  • Authentication with onetime passwords sent by SMS
  • Receivers do not need to have an account to receive files
  • Control of password complexity for onetime passwords
  • Automatic logout of inactive users

Technical

Mature technology and standards.

  • Support for several 3rd party SMS gateway suppliers
  • Built using mature technology: Linux, Apache
  • Built for Internet standards: TLS, HTTP, SMTP, NTP
  • Support for local SMS modems
  • Seccomp-bpf enabled on all user facing code
  • Hardened SElinux policy enforcing all processes
  • SElinux MCS isolation between users

Usability

User-friendly from the core and on.

  • As simple to send one file to one party as sending multiple files to many receivers
  • Sender get receipt when file is downloaded
  • Automatic purging of messages by policy
  • Simple 3 click-to-send setup with reasonable defaults
  • Possibility to transfer very large files (many gigabytes)
  • Support for multiple languages (english, swedish, finnish, estonian, german, dutch)
  • Receiver get reminder notification if file is not downloaded for some time
  • Built-in online help system
  • Receiver does not need to have an account to receive files
  • User inbox and outbox

Features in upcoming releases include

Whitelisting of files

Blacklisting of files

Timed release of files, upload a file that gets released tomorrow or in two weeks

Metadata cleaner to allow an uploader to clense files

ActiveDirectory intergration

SAML support

Support for TSP (Time stamp protocol) for cryptographically timestamped audit trails that a certain file passed a certain time

Enhanced statistics and administration pages

Additional languages supported

Additional Authentication Methods

Interested in Deaddrop?