The cipherwallet-powered web pages display QR codes. When scanned, they initiate a handshake between your cipherwallet mobile app and the website. Data is then transmitted securely, and conveniently.
We replace them with crazy random bizarre strings. They get stored securely on your mobile device. Your login is now as easy as taking a picture of the screen.
Take pictures of your credit cards, to capture their numbers, expiration dates, and other data. Store everything in your cipherwallet. Then, on the checkout page, just take a picture of the screen.
We store a few details about yourself in your cipherwallet. Name, email address, phone number, even a nice picture. We send all these to the signup page whenever you... that's right - take a picture of the screen.
We're using state of the art encryption and protection methods. Your data stays on your device, and you are always informed and in control of where you send it to.
Ugh. Sorry to hear that. Definitely not fun. But no reason to panic. Let's see... First of all, you did call your cellphone service provider to tell them to block your calls, text messages and internet usage, did you? (No? Go ahead and call them now, we'll wait here.) OK... you did use whatever app you have to remotely lock your phone, right? Same thing - make sure you do this. Now let's think back a little bit - what could have happen when someone found your phone. First, they would need to know the code for the startup screen. Then, they would also have to guess your cipherwallet unlock PIN - and they would only have 3 chances to. Or, have your finger. (Ha-ha. Not funny.) Or, they would have to guess your master password - with only 5 chances to. So regarding cipherwallet, we would say you're pretty safe, no major need to worry. You probably have to focus your attention on other apps as well. (We still hate it that you had to loose it though.)
Congratulations, we also love when we have the chance to!! If you didn't activate the automatic saving to the cloud feature, you may want to do it now. Alternatively, you can have cipherwallet email its data file to yourself. No worries, this file will be encrypted, so it's going to look just like an useless bucket of bits to someone who doesn't know your master password. Then, use the mobile app's capability to erase all the cipherwallet data from your phone. The phone's own procedure to erase all your private data is just as good. Dispose of your old phone in an environmentally friendly way. Bye, old phone... ah, let's move to the fun part. Open the box and play around a bit with your awesome new phone. Super cool, huh? Now download cipherwallet, start it up, and set the master password. To recover the data file, either connect cipherwallet to your cloud provider you were using on your old device, or open the email where you attached your data file, and tap on the file icon. If you are asked for a master password, use the master password that you had on your old device. That's it!
The QR codes are simply a way (and, we admit it, an ugly way) to represent some data. The data encoded in such a way is typically an URL, like something that you would type on the address bar of your browser. Scanning a QR code is a much more convenient way to input data to your mobile device, than it would be to type on that little keyboard.
No, not necessarily. The advertising businesses were the first ones to adopt the QR codes, and the way they use them is very, uh, unsophisticated. cipherwallet uses QRCodes for no other reason than enabling your logins or form fills on your favorite websites. No commercials from us.
As a quick tip, you may have noticed that cipherwallet codes are always displayed somewhat rotated, like upside down. It's just a quick hint that they may be suitable for cipherwallet. However, be aware that anyone can flip a picture upside down on a website, and the cipherwallet app will promptly indicate if the code was not issued by us.
Not in itself, no, but we must admit there are quite a few security aspects we had to take care of, while designing cipherwallet. To answer your question, think for a second on how an attack should happen. First, a device that scans the QR code has to be pretty close, within inches, from the screen where the code is displayed. Second, in most applications, the information encoded in the QR image would be only valid for a few minutes after it was generated, and tossed out as soon as it is used by a device. Third, and most importantly, if a cipherwallet mobile app scans the code, it will transmit data stored on the device that made the scan. Otherwise said, a QR code doesn't refer to you, the user, in any particular way - it is accessible to any user that scans it.
If they scan it with a regular scanner app on a mobile device, they would probably get forwarded to a web page that describes what cipherwallet is. If they scan it with their cipherwallet app, guess what? They will transmit the data in their cipherwallet account. Atta hacker.
Oh no. No, no, no. In fact, at no point in time will the cipherwallet servers come in contact with the data you transmit to our partner websites. Your personal data, credit cards numbers, and the login tokens are stored on your device. The file is encrypted aggressively, using the master password for your cipherwallet mobile app. If you choose to, copies of your encrypted data file may also exist in your cloud storage repositories, like your Dropbox or your Google Drive, but the cipherwallet servers won't need and won't have your data.
Well, cipherwallet doesn't need you to create an account, and therefore it stores no data about you.(*) But we think we understand the concern you're talking about. Nowadays, just about any mobile application starts asking you to create an account. Creating an account typically means divulging your name, email address, your (probably universal) password, and who knows what else. We don't. cipherwallet is a service that facilitates the transfer of sensitive data between your mobile device and the websites that you are a working with; it needs no details about you in this process, and therefore never asks for them.
Unfortunately for now, you actually can not. The mobile cipherwallet app is designed to be used with browsers running on other equipment. Let's put it like this - there is no mobile device that we know to have a camera pointing at its own screen. We do work on something related though... and we will let you know if this takes us anywhere.
Actually, it's not the cipherwallet mobile app that asks for them. Instead, cipherwallet transfers you to the actual Dropbox, Box or similar mobile application or website. It is that particular cloud storage vendor who asks for your username and password, in direct conversation with you. The cipherwallet application never "sees" your cloud login credentials.
During the cloud storage login, you practically tell your cloud provider something like "hey, it's me, you know, cipherwallet will need to access my account for a little bit, so please let them in". Does that mean that cipherwallet can see and grab all your files from the cloud? No. The cloud provider will confine cipherwallet to a single directory in your cloud storage - nothing more. For example, for Dropbox, this directory is /Apps/cipherwallet, and will typically contain one single file - your encrypted data file.
Sure. Shoot us an email at firstname.lastname@example.org.