Wednesday, 30 October 2013 07:16

Zeva Releases New Version of DecryptNaBox

Zeva, Inc continues to add to its lineup of decryption service offerings with release of a new version of DecryptNaBox. DecryptNaBox is an enterprise decryption solution that allows government agencies and corporations to decrypt the encrypted content of messages and data. The first version of DecryptNaBox, released in late 2012, offered bulk decryption using automated encryption key retrieval from Microsoft Certificate Authority sources, with optional use of key archiving using Hardware Security Modules (HSM). The new version expands key retrieval operations to support Entrust Certificate Authority technology, and further segregates the decryption service from the key retrieval functions, to achieve compliance with US Government security mandates, such as FIPS 140-2 level 3.

This new release of DecryptNaBox continues Zeva’s investment in secure, high volume data decryption solutions. DecryptNaBox is the only commercially available data decryption product to accomplish the automated retrieval, and secure handling, of encryption keys. Other products require that user private keys be retrieved and copied manually, adding enormous effort to any significant decryption operation. The manual handling of user private keys, the most sensitive of all digital identities, is a clear security exposure for the user whose data is being decrypted.

With the introduction of the US Government Homeland Security Presidential Directive 12 (HSPD-12) in 2004, and the implementation of the Personal Identity Verification (PIV) technology which stores digital certificates in smart card devices, the industry has seen a rapid increase in smart card adoption. This dramatically increases the complexity to support decryption operations.  While escorting a soft copy of a private key through the decryption process supports use of current commercially available decryption tools, escorting a smart card protected private key represents a huge challenge. Smart card protected private keys require much stricter compliance standards when used for US Government applications. These compliance requirements provide for the increased protection of private keys stored on hardware models.

Zeva has been working to address the challenges of secure, automated high volume decryption for over 3 years. Zeva developed DecryptNaBox to addresses these challenges and meets FIPS 140-2 level 3 security requirements. This patent pending design is the basis of the Zeva DecryptNaBox technology. 

DecryptNaBox uses Certificate Authorities (CA) adaptors to communicate securely with Certificate Authorities to escrow decryption keys as needed. Then it uses HSM adaptors to ensure the protection of the escrowed keys. DecryptNaBox currently is available with the following backend adaptors:

  • Microsoft CA adaptor
  • Entrust CA adaptor
  • nCipher HSM adaptor

Other adaptors can be made available based on customer requirements.

DecryptNaBox interacts with client technologies through a list of input and output adaptors. DecryptNaBox comes with the following input/output adaptors:

  • Personal Storage Table (PST) adaptor
  • Exchange Web Service Adaptor
  • SMTP Adaptor
  • Cryptographic Application Programming Interface (CAPI) interceptor adaptor

Other adaptors can be made available based on customer requirements.

DecryptNaBox Design

Fig 1: High level solution architect


DecryptNaBox is offered with a simple, yet flexible, pricing model. The core service of DecryptNaBox has a base price, and then adaptors for Certificate Authorities, HSM devices, and client technologies are available via an “ala carte” pricing model.

Saturday, 01 June 2013 03:53

Zeva Releases Its DecryptNaBox Solution

Companies and governmental agencies struggle to meet the critical objectives of data protection, data preservation, and eDiscovery. The requirement to ensure data is kept secure and private presents challenges in meeting the equally important need to ensure that data is preserved and available for inspection to comply with legal, regulatory, and litigation requirements. One common data protection technique is encryption, which complicates the process of delivering unencrypted data to support eDiscovery demands. This often results in significant delays in an organization’s ability to complete investigations using electronic data sources.

Friday, 07 December 2012 03:07

Zeva Releases Its New Website

Zeva just realeased its new, updated website December 7th, 2012. It has been in development for some time so we are excited to finally release it. Take a look around and see what you think. We would love to know what you think. Go to Contact Us and write us a message!