RSA-4096 Multi-Party Encryption

Evidence & Data Points

• Symmetric encryption (AES-256-GCM) uses a single key for encryption and decryption. In multi-party workflows — legal discovery, regulatory submissions, audit reviews — sharing the symmetric key with one party shares it with all. There is no way to grant different access levels to differe

Solution

The Solution: How cloak.business Addresses This RSA-4096 Key Pair Management cloak.business provides an API for RSA-4096 key pair generation and management. Each authorized party generates a key pair via the API or SDK. Public keys are shared; private keys remain with the party. The API supports key creation, retrieval, rotation, and revocation. Hybrid Encryption (RSA-4096 + AES-256-GCM) For performance, cloak.business uses hybrid encryption: each entity value is encrypted with AES-256-GCM (fast), and the AES key is encrypted with RSA-4096 (secure key exchange). The output (~730 chars per entity) contains both the encrypted value and the encrypted AES key. Only the private key holder can decrypt. Per-Entity Recipient Control Different entity types in the same document can be encrypted for

Try Free

Compliance Context

Compliance Mapping This feature directly supports GDPR Article 5(1)(f) (confidentiality — cryptographic access control), eDiscovery privilege requirements (FRCP Rule 26(b)(5)), and regulatory submission workflows where different authorities require different access levels. cloak.business's GDPR, HIPAA, PCI-DSS, ISO 27001, SOC 2 compliance coverage, combined with Customer-selected hosting, provides documented technical measures organizations can reference in their compliance documentation.