Crypho updates and blog posts

Crypho is hiring

Crypho is growing. We are expanding our team in Tønsberg, Norway with a senior developer (JS, React native, Full stack) and a front-end developer (JS, React native, web).

About Crypho

Crypho is a Norwegian company that delivers high-security enterprise communications with end-to-end encryption; chat, file sharing and video conferencing.

Crypho

We help organizations with high security requirements, such as law enforcement, government, and health and financial services communicate confidentially and securely. We work with some of the most demanding customers in the field of information security.

Crypho has received high international acclaim. We won the prestigious Norwegian Rosing award for cybersecurity in 2015, as well as the EU commission’s Cyber Security & Privacy Innovation Award.

We are a multilingual company, with English being the primary language spoken in the office. Norwegian is not required. developers will be able to work with their preferred operating system and your preferred editors, building high-end software together with an experienced team.

Product and technology

Crypho is a SaaS product delivered as mobile apps (Android and iOS), desktop apps (Windows, Mac OS) as well as through the web. Our technology stack comprises of a server cluster built on Python, Twisted, PostgreSQL and Node — running on Linux.

Our client apps are built primarily in Javascript on a Backbone.js core running on Apache Cordova for mobile and Electron for the desktop. We are currently in the process of designing and building a replacement of the current client stack based on React Native/React.

Open positions

No recruiters or remote development companies please. We are looking for in-house developers to join our team.


Video and audio chat

We are super thrilled to present the first release of encrypted video and audio chats in Crypho.

Secure communications have never been this easy. You can now establish encrypted video chats with your contacts at the click of a button. The security is handled by the existing, proven Crypho security model and all signaling, audio and video is end-to-end encrypted.

video

Video and audio chats are available person-to-person, for the desktop and web platforms in this first release. Group video conversations and mobile app support will be available in the future.


Image viewers

On some platforms (most notably Android), using the built-in image viewer could cause a copy of a viewed image to be stored on your device. This could cause additional risks to some of our customers.

We have therefore implemented shiny new image viewers for Crypho: both on the desktop, mobile and web versions. Any time you decrypt and view an image, it will be shown temporarily inside the app. And you can of course zoom, pan and rotate the images, just as you’d expect. When you are done viewing an image, it will be removed completely from your device, with no trace remaining.

image-viewer-desktop image-viewer-mobile


Colour identification to prevent accidental posts

We have livened up the user interface by adding a distinct colour to each of your contacts and groups in your contact lists. The same colour is displayed inside the chats. This way you can quickly identify which chat you are in so you don’t risk sending anything to the wrong recipient.

colours colours


Multiple email address support

Many of our customers connect with people in differnt contexts. Many communicate in personal contexts where they identify with their personal email addresses, as well as in professional contexts where they identify with their work email.

Crypho now supports multiple email addresses per account. You can add as many as you like.

You can use the additional email addresses to log in, just like you do with your primary email. You passphrase and 2-factor authentication remains the same.

When others send an invitation to you to an email address linked to your account, you will receive the invitation just as if they had sent the invitation to your primary email.

To add an additional email address, click “my profile” in the menu in the desktop/web app. The profile page has a link to add additional email addresses. When you add another email, a confirmation mail will be sent to the address you added.

My Profile

Add email address form


Introducing Recovery Keys

One of the most common customer requests we receive is the ability to reset your passphrase without losing your content and contacts. With the new recovery keys you can do this in a straightforward manner.

The recovery key is a 256 bit key printed in the form of 24 words. It can be used to recover your account should you forget your passphrase.

Here’s an example of how it might look:

Example Recovery Key

Creating your recovery key

You can create a recovery key by selecting “Key recovery” in the menu in the Crypho desktop or web apps. It is not possible to create recovery keys from the mobile app.

Key Recovery menu entry

It is only possible to have one recovery key available at any time. Creating a new recovery key instantly invalidates all previously generated recovery keys. 

The new recovery key will only be shown to you once. There is no way to access it again. We recommend that you write it down or print it on paper. Store your key in a safe place, for example in an envelope in a safe or bank deposit box. Do not store it digitally. And make sure no-one else gets access to it. 

Should you forget your passphrase or lose your two-factor authentication mechanism in the future, you will then be able to use this key to recover your account.   


Long messages

New feature: Long posts

Some times you want to write longer and more structured than just a single chat message, the way you do in for example email. You can now simply expand Crypho’s message entry field to write longer posts.


Crypho desktop apps released!

Crypho Desktop app

We are proud to announce the release of Crypho desktop apps for Windows and Mac OS X.

Crypho is enterprise file-sharing and messaging with end-to-end encryption. The newly released desktop app complements Crypho’s existing software suite, which has previously been available to customers as a web application and as mobile apps for Android and iOS. The new desktop apps make it more convenient than ever to use Crypho from laptop and desktop computers.

Download Download

Download the Crypho desktop apps for Windows or OS X.


Informilo: Top 25 EMEA Start-Ups to Watch In 2016

image

Business and innovation website Informilo presented its Top 25 EMEA Start-Ups to Watch In 2016.

To identify the Top 25 EMEA companies to watch in 2016, Informilo asked investors to nominate start-ups outside their own portfolios.

Why it’s hot : Crypho enables businesses to create real-time confidential communications channels (chat, file transfers, video conferencing, meetings) across companies. All data is strongly encrypted end-to-end, with keys only held by the users.

http://www.informilo.com/2016/01/top-25-emea-start-ups-to-watch-in-2016/


Crypho won the Rosing award for IT security

The Rosing awards are the most prestigious awards in the Norwegian IT industry, and are awarded by The Norwegian Computer Society.

award-picture

The award for IT security is a collaboration between the Norwegian Computer Society, the Norwegian Forum for Information Security (ISF) and ISACA. It is awarded to promote the importance of IT and information security in Norway.

award-picture-nygaard

The award was presented by Johan Nygaard, President of ISACA Norway chapter:

“This year’s winner of the Rosing award for IT-security stands out by means of their strong focus on information security and privacy. The challenges related to information security and privacy in society today have been pivotal for the jury’s decision.

The winner has worked to promote information security and privacy in the Norwegian and international markets and is a great example that Norwegian information security businesses have the potential for export and receive international attention. They have worked persistently with a product with high security and encryption requirements, as well as promoting privacy and user ownership of data.

Challenges like this can easily lead to high complexity, but the winner has managed to combine high security requirements with a solution that is easy to use. With a focus on usability, the winner has managed to create a solution that raises the general level of security nationally and internationally for consumers and for businesses — and also for journalists and human rights activists worldwide.

Both photos from the event are copyright photographer Ingar Ness.


Crypho wins the 2015 EU Cyber Security & Privacy Innovation Awards.

Brussels, October 22, 2015: The IPACSO Consortium announced the 2015 Champions of the European Cyber Security & Privacy Innovation Awards.IPACSO Innovation Awards is a prestigious international innovation award within the field of information security in the EU. Crypho was awarded the prize for the most Innovative Privacy Company.

image2

The jury praised Crypho for combining high security and strong cryptographic requirements with the approachability and ease of use that is common in consumer applications; making it end user friendly, protecting all communications validated by law enforcement, government, financial industry, but also human rights groups and journalists around the world.

CEO of Crypho, Geir Bækholt was presented with the prize by Mr. Jakub Boratynski, Head of the Trust Unit of the European Commission, at the IPACSO conference in Brussel at Living Tomorrow; Brussel’s innovation center demonstrating visions of the future.

Mr. Boratynski stated: “It makes me humble to be in the presence of these individuals that are setting the trend in the Cyber Security & Privacy Markets.”

“A great appreciation towards the achievements of these innovators, and their hard work helping Europe to protect its networks, critical infrastructure and citizen’s privacy. But that also strengthen the competitiveness of the European Cyber Security market with their innovative ideas, approaches and technologies towards cyber and privacy; increasing employment and export opportunities while establishing exiting new businesses that have a global potential.”

image1

European Cyber Security & Privacy Innovation Awards are awarded by IPACSO.

IPACSO is an innovation project funded through the EU commission’s FP7 programme. The project is collaboration between Deutsches Institut für Wirtschaftsforschung, Waterford Institute of Technology, Vasco Data Security, Espion Group and LSEC



Secure, end-to-end encrypted messaging for Android and iOS

We are happy to announce that the Crypho mobile app is now available for both iOS and Android.

The mobile app brings a lightweight interface to the Crypho web application you already use. It lets you access all your contacts, conversations and groups from your phone. Everything is still strongly end-to-end-encrypted, just like you are used to.

The app also provides convenient instant notifications when your contacts message you, or post to groups. It makes it easier and more convenient to stay up-to-date with what is happening in your conversations, without compromising security.

picture picture2

We have kept the mobile app easy, intuitive and secure. With your help and feedback we look forward to releasing frequent updates with improvements and new features. For the best experience, use both the mobile and web app in combination: They stay seamlessly in sync so you can use a keyboard when you are by your computer, and bring your chat with you on your phone when you are on the move.


Bizetto's Most Promising Startups for 2015: Crypho

bizetto

Bizetto today listed Crypho as one of the Most Promising Startups for 2015.

Crypho: Cyber security is a great concern for anyone dealing with sensitive information online, and for good reason, too. This Norwegian startup builds encrypted, real-time communications solutions for the web, and enables you to set up a secure, end-to-end encrypted, communications channel in a matter of minutes, with no need to install software.

http://bizetto.com/blogs/the-bizetto-blog/17233784-most-promising-startups-for-2015


Scrypt plugin for Cordova Android and iOS

Scrypt is a password-based key derivation function created by Colin Percival. We use Scrypt in Crypho to generate your initial encryption keys on the fly, both when you first create an account and also every time you log in. Your Scrypt key is re-created every time you log in, and never leaves your browser or phone. And since we use it so often, it is important that the calculations are fast enough.

The algorithm was specifically designed to make it costly to perform large-scale custom hardware attacks by requiring large amounts of memory. While there exist Scrypt implentations for the browser in Javascript, they are extremely slow and impractical for use in mobile apps.

picture

On our way to releasing native mobile apps for Crypho, our development team is hard at work, optimizing our underlying technology. We want to share our progress and contribute back to the open-source community, so we decided to release our Scrypt plugin for iOS and Android under the MIT license. This plugin is for use with Cordova and allows your application to use scrypt on iOS devices using native C code. It is based on libscrypt.

The plugin can be installed via the Cordova command line interface:

Navigate to the root folder for your Cordova/Phonegap project.

Run the command:

cordova plugin add com.crypho.plugins.scrypt

That’s it. For the plugin API, check out the documentation on our github project.


Crypho update: New, responsive UI with desktop notifications

We have added a ton of new stuff to Crypho recently, so we figured it’s time to give you an update on new features and what is coming up.

A new, responsive design

We’ve redesigned our UI to make it cleaner, prettier and responsive. You can now access Crypho from any device and communicate securely from your phone, tablet or laptop.

Desktop notifications

Don’t miss out on what the rest of your group is talking about. Crypho can now send you desktop notifications when you get new messages.

Offline notifications

Worried that you’ll miss something important while you’re logged out? You can now tell Crypho to notify you even when you’re offline (currently only for OS X)

Image previews

When sharing images with other people, Crypho will show a preview to save you time and make it easier to find in the future. The image previews are also encrypted and secure.

New emoticons

We felt that our old emoticons couldn’t convey your emotions as accurately as you wanted, so we decided to refresh our emoticons collection :) Also, the new ones are compatible with the built in emoji on mobile phones for a more streamlined experience.

Internet Explorer compatibility

We’ve added Internet Explorer 11 to our compatibility list, along with all the other major browsers.

Native mobile apps

Our development team has been working around the clock to bring you apps for Android and iOS and they’re almost there. If you are interested in being part of our beta testing, drop us an email at info@crypho.com

image1


ComputerWeekly: Six Nordic startups enterprise IT users should watch

image

ComputerWeekly published an article today on “Six Nordic startups enterprise IT users should watch”, featuring Crypho.

…Crypho is another SaaS operator, but it also taps into a perennially hot topic: data security. The Tonsberg-based company, founded in 2012, provides end-to-end encrypted real-time communication between teams and companies and covers messaging, chats and file transfers.

All messages and files are encrypted on the user’s device before being transferred over the internet. Crypho promises the data cannot be decrypted and read until it is received by a recipient with the correct keys. Even the startup itself cannot access the data.

Those worried about any NSA-related snooping will be happy to hear the cloud-based service is hosted in Norway. Crypho is also network agnostic and works using a standard web browser. The service is targeted at businesses, but also offers a free basic version to individuals.

http://www.computerweekly.com/news/2240242707/Six-Nordic-startups-enterprise-IT-users-should-watch


25 startups to watch in 2015:

image1

image2

Andreas von der Heydt, Head of Kindle Content at Amazon writes on the World Economic Forum blog about his 25 startups to watch in 2015:

Predicting the future? Pretty tough and not the objective of this article. Instead, like at the beginning of last year, I want to present you a list of 25 super hot startups you should closely follow in 2015.

Interestingly, more than ever innovations happen anywhere, i.e. there are some great startups outside of Silicon Valley and the US. In the past 12 months I´ve surveyed the landscape of many promising startups. I think I found again some very exciting ones to keep an eye on. Pretty hot startups which have the potential to take really off and make it into the mainstream in 2015.

Please note that it´s my own personal compilation and that it does not claim to be complete. Saying that, I believe that it gives a good overview for both experts and anyone being interested in startups:

About Crypho he says:

Crypho is a Norwegian startup building encrypted real-time communications solutions for the web. It enables you to set up a secure, end-to-end encrypted, communications channel for your business in a matter of minutes, with no need to install software. Crypho runs in the cloud. Participants can be from different organizations and networks. There are different plans available, from a free personal account to an account for large organizations.