How It Works
Vaulto uses proven technology to help protect your data from loss. To better protect the information we store, we can’t disclose the details on how all of the pieces fit together, but here is a sampling of ideas and technologies that help make Vaulto secure, redundant, and safe.
TLS / SSL
When you submit information to a site that does not have a valid SSL (secure sockets layer) certificate, the data can be seen by third parties. Most Web surfers will not enter private data on an Internet web page that does not have SSL protection.
Websites use SSL certificates to protect their users and to prove that they are trustworthy. An SSL certificate is a technology that can be integrated into a website to protect secure information. The SSL technology shields submitted data before it is transmitted over the Internet.
Vaulto connects to our file servers using SSL technology, protecting your data when it is transmitted to our site.
Geographically Diverse and Redundant Storage
The safety of your data is only as good as how well it is backed up. Most Internet servers store data on a single hard drive or similar storage system, leaving their information vulnerable to data loss. Even if you use an online backup service, that company's servers are still exposed to shut downs caused by power outages, natural disasters, and other unexpected devastation.
The only way to protect against data loss is to store it on multiple servers in different locations. When data is redundant and geographically diverse, it is protected from natural and manmade threats. Even if one server goes down, your data is still safe and recoverable.
Vaulto uses geographically diverse (USA-based) servers to securely store your data redundantly. If one server goes down, your data is still on multiple servers and may be recovered. For security reasons, we don't disclose the location of our data servers.
Enhanced Login Security
The traditional method of using a simple usernames and password is not enough to keep your information safe anymore. Hackers are getting better at cracking username/password combinations. Many web sites requiring the utmost security have begun offering enhanced login security to help deter break-ins.
Vaulto employs the use of a username/password/PIN combination for additional authentication security. User logins are more secure, and have a much smaller chance of being cracked than traditional username/password combinations. In addition, our mobile apps for iPhone/iPad and Android require an e-mail/password/PIN combination for login, helping to further thwart potential intruders.
Server Side Encryption
Vaulto Server Side Encryption employs strong multi-factor encryption. Each file is encrypted with a unique key. As an additional safeguard, this key is itself encrypted with a regularly rotated master key. Vaulto Server Side Encryption uses one of the strongest block ciphers available -- 256-bit Advanced Encryption Standard (AES-256) -- to encrypt your data.
Intense Server Security Policies
Vaulto's servers are so tightly managed that even our own employees do not have access to your files. As an added level of security, files stored on our servers are saved with a random naming algorithm. By removing the original file names from our servers, they remain completely anonymous and secure. Only you will be able to see your file’s true names when you access your account.