Cryptographic Standards and Security with Echoworx 

Echoworx integrates cutting-edge cryptographic standards, backed by a comprehensive list of certifications and programs to meet your security needs. Privacy is at the core of everything we do.

↓PDF

Designed for Security and Compliance

Echoworx is committed to ensuring security and data integrity at every level. Here’s a list of programs, certifications, and accreditations that reflect our dedication to protecting your information:

SOC 2 Auditing and Reporting

Echoworx undergoes annual SOC 2 audits to evaluate and validate our processes, controls, and systems. This ensures the privacy, confidentiality, availability, and integrity of our platform.

PCI DSS Level 1 Certification

Our platform, including Encrypted Mail and Secure Portal, meets the highest standards for payment account data security, as defined by the PCI Security Standards Council.

Learn more →

AWS Qualified Partner

Echoworx is an AWS Qualified Software provider, meeting security, reliability, and operational excellence standards through the AWS Foundational Technical Review (FTR).

Learn more about AWS qualifications → 

FSQS Registration

As an FSQS-registered supplier, Echoworx meets stringent standards across key risk areas like cybersecurity, data privacy, and business continuity.

See our FSQS certification →

OpenID Connect RP Certification

Echoworx is among fewer than 30 organizations worldwide to achieve OpenID Connect RP certification. This ensures our cloud-based email encryption aligns with industry-leading authentication protocols.

Data Centers

Our data centers are built to meet the strictest global security standards, including SOC 2, PCI DSS, and ISO certifications.

  • Designed for maximum security and redundancy, with no compromises.
  • Processes follow strict security best practices to safeguard customer information.
  • Continuous reviews and updates ensure top-tier security and performance.

With Echoworx, your data is always protected in a secure, compliant, and reliable environment.

Quantum-Resistant Cryptography

This approach combines classical encryption with quantum-safe alternatives, ensuring a seamless transition to post-quantum standards.

Here’s how we’re leading innovation:

  • Implementing quantum-safe algorithms in SMIME, PGP, and TLS applications ahead of industry adoption.
  • Strengthening email pathways with KMS-based AES keys for Portal and PDF messages, making them quantum-resistant.
  • Leveraging hybrid post-quantum TLS protocols for AWS KMS API calls to protect against quantum-based attacks.

At Echoworx, we’re committed to adopting widely supported post-quantum standards as they emerge, ensuring your data is secure today and in the future.

Encryption Standards

  • RSA 2048-bit asymmetric encryption.
  • AES-256 symmetric encryption.
  • SHA2 hashing algorithms.
  • ANSI X.509 certificates and S/MIME email protocols.

Our encryption solutions are designed to meet the highest standards for protecting sensitive communications and data.

Secure Deployment

Our architecture is designed for layered protection:

  • Public access is restricted to the outermost security zones.
  • Mid-tier operational components are isolated from private data assets like encryption keys.
  • Multiple firewalls and intrusion detection systems ensure real-time monitoring and response to potential threats.

With a focus on secure deployment, we provide peace of mind that your data is always protected.

Advanced HSM Support

Key Features

  • Enterprise-grade key management for creating, rotating, and automating encryption keys and certificates.
  • Cryptographic operations performed securely within HSM memory, ensuring keys are never exposed.
  • Robust integration with KMS APIs to protect sensitive application data.

With Echoworx, you maintain full control of your encryption keys while benefiting from the highest standards of security and reliability.

Security Assurance & Certification Programs