Technology

Client-Server Architecture

Absio uses a client-server architecture that takes full advantage of the local processor and storage on edge devices. Application logic, user interfaces, authentication, encryption, decryption, key management, and synchronization are processed on edge devices that contain the primary content stores.

Absio servers are store-and-forward servers and information on them remains encrypted at all times. All the servers see is the minimal information required for routing and disaster recovery. The Absio server network is designed as a multiple redundant mesh network that manages content so that it is stored as close as possible to the user.

Authenticated Users

All Absio users are authenticated unlike the web where anonymous activity and transactions don't have to originate from a proven identity. Absio does not support system-level anonymity.

• The Absio system requires that all users have a vetted identity.
• All transactions are tied to an Absio identity.
• All access to the network requires users to be authenticated.
• All Absio transactions are automatically audited in an unalterable format and stored on both edge devices and central servers.

Applications

All Absio applications are built using our commercial grade API (Absio Core). Absio Receiver, Absio Message and Absio Concert are built using the Absio Core API. Application developers use Absio Core to upgrade existing applications or create new applications with an unprecedented level of information security and distribution control.

• Absio Core and Absio family applications are platform-agnostic. They are designed to operate on everything from latest computers and the smartest phones to low-power sensor platforms and industrial devices.
• Absio Core is currently implemented on Android and Windows, and more platforms are slated for release.
• Absio Core is content agnostic. Any type of digital information can be secured using it.

Content Security, Distribution and Audit

Encryption and SEGCOs

Absio Core stores all content in a SEGCO (Secure Extensible Global Content Object). Each SEGCO is individually encrypted and contains the content, metadata, distribution rules and audit data necessary to manage that content. It is extensible by design so as additional requirements are defined, the SEGCO can be enhanced to maintain compatibility. Certified Absio Core applications enforce the distribution rules contained in the SEGCO and prevent alteration of audit information.

Encryption is modular in the system. It supports multiple encryption algorithms and modes based on customer requirements. Absio Core doubly protects data in motion by providing an encrypted tunnel that transmits and receives only SEGCOs, making simple signal intercept or eavesdropping useless.

Distribution Rules and Control

Distribution rules are created and managed by the user and/or administrators. They can be as diverse as rules pertaining to security (This content is only available for three days to personnel with this security classification, only in a specific geographical area, and cannot be forwarded or exported.) or can pertain to commercial considerations (This content can be consumed on all of the users' registered devices after payment has been received, and the content cannot be exported.).

Obfuscating File System

All files on a device running Absio Core or the Absio family of applications are uniquely encrypted. Our obfuscating file system makes it very difficult to identify any particular file, forcing unauthorized users to employ slow and extremely expensive brute force methods to obtain any information or content that they should not have.

Absio Core doubly protects data in transmission by providing an encrypted tunnel that transmits and receives only SEGCOs, making simple signal intercept or eavesdropping useless.

^{* Android is a trademark of Google Inc., Windows is a registered trademark of Microsoft Corporation in the United States and other countries.}