Krptn Overview
What problem do we solve?
We all love Django and other web frameworks! However, their primary focus is creating websites - not implementing secure storage for user data.
Django makes it easy to store data. While it hashes the password, it does not encrypt user data for you. In case of a data breach, malicious actors could access any data from the DB. Encryption is left to the developer…
Wouldn’t it be nice if encryption would also be handled? Perhaps it could be handled in a way that keys are derived from credentials, such that, without the user entering credentials, not even the database administrator can read it?! This is exactly what we do!
We also handle user authentication, including MFA, and passwordless authentication.
Krptn also runs in the same server instance as your web app. So you don’t have to host anything new. Just install the extension for Python.
To prove that such is possible, we have a Flask and Django example on GitHub.
With any questions, feel free to reach out to us at contact@krptn.dev.
What is this?
A user authentication and access management system (IAM) with data encryption at rest derived from credentials. It is available as a Python extension module.
How we achieve this?
- All data is encrypted (any data can be requested by the developer to be secured)
- Only the appropriate users’ credentials can unlock the cryptosystem (this protects you from server-side attacks)
This gives you security from encryption without ever needing to even notice it! It protects you from database leaks.
Here is an example usage:
from krypton.auth.users import userModel
model = userModel.standardUser(None)
model.saveNewUser("Test_UserName", "Test_Password")
model.data.email = "test@example.com" # The email will be encrypted, and securely stored
Our Features
- Secure Storage of Data
- User Authentication
- Secure memory wiping (except on PyPy)
- FIDO Passwordless
- Integration with popular web frameworks
Ready to try it out?
Quickly install the package with pip for Python>3.9:
pip install krptn
Have a look at our User Authentication documentation, and create some users.
Ready to integrate it into your WebApp? Have a look at some of our integration’s available with Django and Flask!
We would love to learn how you use our project! Our email is contact@krptn.dev, and we would appreciate if you could drop us a note about your interactions with Krptn.
Please see our documentation or our GitHub repo. With any questions, feel free to reach out to us at contact@krptn.dev.
If after reading this, you like our project, please consider staring on GitHub!
If interested, you can see our security model on this page.