What encryption does Arch use?
Arch applies multiple layers of end-to-end encryption using AES and SHA.
Data is encrypted at rest in the database, in transit across the network, and during processing in memory — its protected state never lapses as it moves through the system.
Quantum-resistant algorithms are planned as recommended by NIST.
What is zero-knowledge authentication?
Zero-knowledge authentication proves identity through a shared mathematical structure — the client and server hold the same large encrypted graph, and authentication is a series of questions about it that only someone who holds the graph can answer correctly.
The Users Api implements this protocol so that no password hash ever exists in the system.
Users authenticate with two passwords and an encrypted key file.
Do I need a Hardware Security Module?
An HSM is optional — it is a capability for deployments that demand the highest level of key protection.
When HSM mode is enabled on the Application Api, the platform starts in a sealed state and requires a physical operator to unseal it through the Control Panel after every restart.
The Bootstrap Key is stored in tamper-resistant hardware and can never be extracted from software alone.
Arch supports the YubiHSM 2.
Is Arch safe to deploy in an untrusted environment?
Arch was designed specifically for untrusted environments, including hardware with potential firmware surveillance.
Encryption is the guarantee: even if traffic is intercepted or memory is read, the data cannot be understood without the keys — and Arch keeps those keys behind a controlled authorization model at every layer of the system.