PrivMX system is a combination of zero-knowledge servers, client-side encryption, secure communication protocol and independent public key infrastructure.
PrivMX is based on and inspired by TLS, IMAP, PGP, CONIKS and Bitcoin technologies, and use proven algorithms such as AES, ECC, ECDH, SRP, PBKDF2, HMAC-SHA256.
The document below describes main PrivMX internals:
- Client-server communication – PrivMX addresses, Service Discovery procedure, PrivMX TLS protocol, PrivMX Proxy.
- PrivMX server – ECC keys as identifiers and access rights, data blocks, descriptors, mailboxes, messages, public and private users’ data.
- Standard PrivMX client library – Extended ECC keys, creating accounts, login and initialization of the client, files and directories, sending and receiving messages, data sharing.
- PrivMX PKI – private database of keys with public history of changes, downloading and verifying public keys, audits, consensus, web-of-trust, example of using PrivMX PKI.