Everything is encrypted..... but online.
Yes indeed - although not all the time and the wallets are several steps away from the Internet. The point of the project was particularly to come up with a system that is extremely secure and can still be [semi]online.
There's a chain of hardened servers running OpenBSD and a grsecurity hardened Linux in front of the actual wallet server. The wallet server does not communicate directly with the clients but using a database. All commands sent from the clients to the wallet server and the replies going from the wallet server to the clients are signed and encrypted with PGP. The wallet server does not have any form of remote administration system and all daemons run in a chroot jail, connecting to the Internet through a SOCKS 5 proxy.
There will also be a version of the service available that will run the customer's wallets on a fully separate server. Wallets running on these servers will be online all the time, if the user so wants, there will be direct access to the wallet RPC daemon through TLS tunneled over SSH tunneled over VPN. The certificates used will all be signed by Altcoin.Center's own root CA as well as the CACert root. The SSH login phase requires password or certificate, plus Google Authenticator code if the user so decides.
Oh yes, yes, another Inputs.io! TF, TF, I found you a partner!
I'm not aware of Inputs.io and therefore can't comment.
If you're serious about that partnership part then I'm definitely always interested in co-operation with capable individuals.
Actually I very much need a Node.JS techie or few who could preferably have some experience of [asymmetric] cryptography as well as implementing (very carefully) a very carefully designed set of daemons that are at the core of the Rediculously Secure framework. The blueprint has been made by a security-savvy systems architect with couple of decades of experience of secure system design - i.e. yours truly.
-j.
--
Altcoin.Center
