Security
Aegis Eternal applies industry-standard cryptography to every document you store and every signature you collect. The architecture is designed to keep your data accessible to authorized parties while being mathematically infeasible for unauthorized parties to recover — even with full access to our storage backend.
Cryptographic standards
- AES-256 authenticated encryption for content at rest
- TLS 1.3 for content in transit
- Bcrypt for password hashing
- Industry-standard key derivation for user-supplied passphrases
- Optional biometric authentication for high-trust workflows
- Optional government-ID verification for signing assurance
Recovery options
You choose how account recovery is handled. Different recovery options match different risk profiles — from full-managed (we can help you recover) to user-managed (only you can decrypt) to no-trail (the recovery key exists only on a piece of paper you keep).
Compliance
Aegis Eternal is designed to support compliance workflows including HIPAA-protected health information, SOX financial records, FERPA academic records, and similar regulated-industry requirements. Specific compliance configurations are available — contact support for details.
Independent verification
The Aegis Eternal platform undergoes ongoing security review. For security researchers: please report findings via our responsible-disclosure process at security@docklock.example.
Patents
Aegis Eternal's protection mechanisms are covered by pending U.S. patent applications. Specific architectural details are available under appropriate confidentiality arrangements.