Data encryption

The information stored in Hivebase is protected in a number of ways, let's look at two main ones.

Encryption in transit

All Hivebase users must use HTTPS to access the service. This encrypts all data as it is transmitted between our servers and the user's browser. Unencrypted HTTP access is not allowed.

We use a certificate management service that automatically renews the secure SSL/TLS certificates regularly. The certificate uses an X9.62 ECDSA Signature with SHA-384.

Encryption in storage

All files uploaded to Hivebase are stored in an extremely durable, highly available, and infinitely scalable data storage service. Our storage is configured with strict access and AES-256 encryption at rest.

This means your files are encrypted before saving them on disks in the data centers and then decrypted when you download them.

Password hashing

We protect user passwords with a one-way, irreversible hashing algorithm (Bcrypt or Argon2) before storing.

When users provide their password on the login form, the entered password goes through the same one-way hashing process and is then compared to stored credentials.

Hivebase staff does not have access to any user credentials.