Security is a very important topic, espcially when storing passwords and sensitive information. That's why we at Authrix have been focusing on high security since the beginning without any limitations. We could call it "Military Encryption" or "NSA proof encryption", just because we use the same trusted and reliable encryption ciphers like everyone, but we think speaking about the facts is more professional than using random catchwords.
We use AES126-CBC, AES192-CBC and AES256-CBC encryption (depending on the account), authenticating all messages with HMACs. Every important hashing operation uses SHA512. When content is uploaded directly it will be encrypted right away. If content is being shared PGP with RSA4096 and AES+HMAC (same as above) is used for the key exchange. All messages are signed with the corresponding private and public key. PBKDF2 is used for any kind of key derivation. RSA keys are always wrapped with AES256-CBC for all accounts. RSA keys are rotated on a regular basis - Premium accounts may rotate the keys manually and set their own intervalls. API keys and user passwords are hashed with bcrypt. Individual encryption parameters may vary depending on the account type. Randomly generated keys originate from trusted random generators.
All encryption related actions happen on a dedicated encryption environment. Secure data such as RSA keys or user keys are stored separately within an own database. All Authrix databases are protected by a dedicated firewall and not accessible from the Internet. All servers use strong keys and RSA key based authentication. Communication between servers is encrypted as well.
As we need to share your data with the webservices you are using, we have to encrypt your data on our servers. When you authorize your personal data to be shared, we are using End-to-End encryption to the servers of our partners for sending the data securely. Our partners have to undergo a certain verification and validation procedure in order to be able to gather your personal data. This is how we make sure to always have a responsible contact, if something should go wrong.