Trust & Security at Shelf
We care deeply about security and privacy at koodos labs, the creators of Shelf. In addition to our manifesto that outlines how we are building our service to help protect your privacy by giving you more control over your digital life, we are committed to building a secure platform to help keep your stuff and your credentials safe.
Fundamental design choices were made to help protect everything you store in Shelf. Shelf helps protect you and your information in three different ways:
End-to-end encryption leaves the keys in your hands – and nowhere else.
Smart features helps keep your credentials and data safe and limits your exposure to threats outside Shelf.
Full transparency is designed to ensure that Shelf can be and is audited by experts.
This page will serve as an up-to-date source to keep up with our security practices:
[1] Passwordless sign-in
By using a passwordless SMS login system, we eliminate common password issues like weak passwords, reuse, and phishing. You no longer need complex passwords, reducing cyber threats.
[2] Encryption for all data
Our platform employs cutting-edge encryption technology designed to help safeguard data:
In-Transit Encryption: We use Transport Layer Security (TLS) to ensure the secure transmission of data over the internet.
At-Rest Encryption: Advanced Encryption Standard (AES-256) is employed to protect stored data on our servers.
We work to implement encryption standards that are on par with industry leaders.
[3] World class security expertise
We have teamed up with renowned cybersecurity experts to build a platform designed to secure your stuff:
Expertise and Advisory: Expert guidance helps us implement best-in-class security measures and maintain industry-leading privacy standards.
Regular Penetration Testing: Our expert partners conduct ongoing and comprehensive penetration testing that helps to keep our platform resilient against various attack vectors.