Matsoft :: Products :: SKREM-Suite
 
Home
 		|  
Products
 		|  
Services
 		|  
Startups
 		|  
Research
 		|  
Better World Project
 		|  
Beletristics
 		|  
Permanent Digulescian Authority
 		|  
Freemasonry
 		|  
Downloads
 		|  
News
 		|  
Contact
 		|  
About
 		|
 




SKREM-Suite

SKREM Suite is small series of products designed for FreeBSD, Windows and Linux to offer (claimed to be) provably unbreakable symmetric key encryption functionality, as well as anciliary functionality - mainly pertaining to working with air-gapped systems. The suite of products, taken together allows both the retail and the organizational user to work with encrypted data securely, including updating and downloading such data from air-gapped systems.

The encryption algorithms are based on the SKREM-like ciphers invented by Mircea Digulescu in 2015-2021 (see peer-reviewed papers on the Research Page and mirrored here). Note that on top of the description in the papers, the actual SKREM will include some one time permutation of the grand-master table step, based only on the 512-bit secret key, using Chaos PRNG and bitmasks and trees. Then, an additional permutation step will consider some part of the grand-master table together with the key to permute itself.

It is intended and will be able to withstand NSA grade adversaries when guideliness are followed properly, and when proper hardware precautions are taken (supply chain attacks). This means not even the CIA, Mossad and 5 Eyes together could ever hope to access data protected by SKREM-Suite, not if the life of Rothschild's youngest child depended on it. Being this secure against top-knotch actors, it is definitely projected to be suitable for sensitive applications such as holding (and occasionally using) cryptocurrency private keys, protecting journalists, whistleblowers and publishers (like Jullian Assange) as well as simply ensuring the privacy of data of privacy weary individual enthusiasts.

To "put his money where his words are", Mircea Digulescu intends to store all his cryptocurrency profits obtained from all endevours including but not limited to SKREM for the prior year, to a designated address, whose private key will be encrypted with SKREM and the result published online, including on this website. Yearly he will move his profits to another address and publish the encryption key for the prior one - this way it can be verified that it actually had stored it. For multi-year endevours, Mircea Digulescu plans to separately save up to 10,000,000 USD into a separate cryptocurrency designated addressed, whose private key will be cycled similarly but every 5-10 years (to allow more time for it to be broken). For both addresses, Mircea Digulescu will commit to announce in advance when he will make a withdrawal and for which amount: this way, if nothing "weired" shows up, it is likely SKREM Suite is secure (the opposite is not entirely true, as attacks may not target the cipher or suite itself, but still!). And Mircea Digulescu puts his money where his mouth is, by saying that SKREM Suite is (will be) indeed secure.

The Suite components are described below (after Licensing section).


top

Licensing

SKREM Suite is/will be free for personal individual use, journalists acting within the Western-block and whistleblowers acting within the Western-block. For organizational and govermental use, please Contact Mircea Digulescu to arrange for-cost licensing. Costs for organizational use will not be prohibitive and will generally be based on organization size (even if used within a single small team) - so small organizations will pay much less. Please Contact Us for such agreements - will be eager to accomodate.

For avoidance of doubt, Mircea Digulescu will not enter into any agreements with any body aimed at weaking the (claimed) inpenetrable security guarantees aimed for by SKREM Suite. Do not bother asking about this.

Individual use means a single person, as a physical person - no activities nor data related to professional, governmental or organization-related stuff of any kind, even if carried out by the single person, acting alone. The individual version will contain some small annoyance generating prompts to encourage the individual user to donate a small amount via cryptocurrency to Mircea Digulescu. These prompts can be shut down by confirming (affirming as in a contract) that a donation for the amount has been made. Donations are not technically verified - for reasons including as to maintain the free version as "open source" under the Wassenaar Arrangement, to prevent collection of personal data which can fall under EU/Western directives (and which could have presented pretexts for persecution of Mircea), and, above all.. to make unbreakable encryption that the CIA/NSA cannot break available to the "average Joe", way behind enemy lines within the Western territory. Mircea Digulescu considers that offering this capability to the masses (in the hope they will end up being used by meritous and friendly actors) as part of his legacy to humanity and a way to hurt and degrade imperialistic interests of the Anglo-saxon Western-block internally.

The SKREM Suite will be available for download on the Downloads page, after accepting of the limited license (and vigurously mirrored throughout the internet, especially outside Western jurisdictions). All products of SKREM Suite will be open source as in the code will be openly available for inspection. However it will NOT be licensed for derived works modifications, expect after Mircea Digulescu's death or long term incapacitation, except as per the paragraph below - if you find some bug or security improvement, email Mircea Digulescu with the suggestions or write on the SKREM blog.

All Licenses, including Individual free License, will allow creation of derived works, but only for one self - not even giving such derived works to a neighbour or friend. So if you think you found some vulnerability in SKREM Suite by looking at the source code, you are welcome to correct it for yourself. In the unlikely case you do find something - say something: tell Mircea Digulescu or write online and we will - if its truly a vulnerability and not an attempt at weakening security - fix it for everyone. If you want to create dervied works for the general public / commercial use / someone else, you can (i) get written permission from Mircea Digulescu, (ii) ask to contribute to the Suite and bring a new version including your ideas this way; (iii) buy a relevant license agreement to support the scenario at which you are aiming. In principle, all good-faith initiatives which do not aim at or result in weakening security of SKREM Suite will be supported full-heartedly. This aims to protect some modest revenue stream which is expected for the creation and publication of SKREM Suite by Mircea Digulescu, thus supporting his lifestyle and costs, as well as financing other activities.

Also, explicitly by the terms of the Individual License, passing it to any 2-3-4-letter Western gov't agency (like CIA, NSA, FBI, SS) or to the Mossad or to their foremen, for whatever purposes is prohibited. Also, benchmarking and cryptanalysis of the suite, by anyone who works, worked or will work for gov't body, except with the explicit written approval by Mircea Digulescu are forbidden. This is to prevent legal pathways for western intelligence services to have official access to the suite. Naturally, both individual users and hostile forces will mercilessly download and try break SKREM Suite or find weaknesses in it. However, when the NSA/CIA do this, this will be a breach of copyright and whoever gets annoyed as a result of this can use the "poisonos tree" legal argument to exclude any hacked evidence which resulted from copyright law breaches. This is largely a symbolic step and is meant to serve as an "awakening call" to people to realize the harm done by the so called US "interagency", way further than priorly revealed by heros such as Jullian Assange, Edward Snowden and Pavel Durov.
top

SKREM C# Library

Part of SKREM Suite, the SKREM C# Library will contain the cryptographic primitives associated with SKREM and functionality to work with common scenarios such as Full-Disk Encryption, Cryptoarchives, etc.

Some communication related features, such as SKREM Authentication, SKREM Digital Signatures and SKREM Secure Symmetric Key Exchange will be included in latter versions.

Additionally, SKREM C# Library, unlike other cryptolibraries, will be extendable in principle: so plugging-in an additional cipher (such as AES256 if you like, or you own invented cipher) should be technically possible and not hit by any such barriers. We will consider including an AES implementation ourselves, depending on how copyright of AES is handled - just for those who don't believe SKREM Ciphers are mature enough to be trusted as secure independently -.

Under no circumstances will SKREM C# Library make use of OS primitives for attaining its main purpose: Encryption.

C# was chosen because it is the most expressive and productive language available at the time. The target will be the .NET Framework 4.5 or the latest available on the last free and open source Mono version. In principle there will be no use of fancy language features, since the product itself is very algorithmic and less so integrative.

The SKREM C# Library is aimed to be then (and periodically thereafter) ported into the SKREM C++ Library, which can run without the overhead of Mono C# and can be somewhat faster.
The SKREM C# Library is mainly developed in C# because it is easier to write bug-free code here, to test and it is also more productive. The core of the "in-production" library use is still expected to be the SKREM C++ Library.

Both the SKREM C# and C++ Libraries as well as the whole of SKREM Suite will be open source in terms of visibility of code, however derived works will be permited only for one own self.
top

SKREM C++ Library

Part of SKREM Suite, the SKREM C++ Library will be a portable type library port of the SKREM C# Library, written in C++. It is aimed to work on at least FreeBSD, Linux and Windows.

The SKREM C# Library is aimed to be then (and periodically thereafter) ported into the SKREM C++ Library, which can run without the overhead of Mono C# and can be somewhat faster.
The SKREM C# Library is mainly developed in C# because it is easier to write bug-free code here, to test and it is also more productive. The core of the "in-production" library use is still expected to be the SKREM C++ Library.

Both the SKREM C# and C++ Libraries as well as the whole of SKREM Suite will be open source in terms of visibility of code, however derived works will be permited only for one own self - not even sharing with a neighbour or friend.

The Suite is projected to include a Type Library (open source), Encrypt&Decrypt software, an operating system (based on a ultra-trimmed down and secured FreeBSD version), and some anciliary software for working with air-gapped networks, as well as a Guidelines manual. In the future, the suite will be extended to offer primitives to be used in products pertaining to secure communications (S-Chat) and potentially secure and anyonoymous censorship breaking webhosting products (S-Webserver), along side authentication, key exchange and key distribution anciliaries.
top

CryptoSKREM

This will be a desktop app to permit encryption/decryption of volumes (archive files) secured with SKREM. It will function more or less like a WinZip which encrypts instead of archiving.

Additionally, in later stages CryptoSKREM is envisioned to offer mount volume support and, full disk encryption (when used in conjunction with SKREM OS/WS especially) working with external keys and some other features. This will make it very similar to VeraCrypt/TrueCrypt in terms of usage look and feel.

CryptoSKREM will be usable both as command-line and will have a GUI. It is targeted to run on FreeBSD (especially the SKREM OS/* variants) and on Windows. Probably the first step will be on Windows.
top

SKREM OS

Part of SKREM Suite, SKREM OS will be an ultra-trimmed down, secured and modified version of FreeBSD, aimed to ensure security of encryption/decryption tasks, in-transit data and secure input-/output- to/from Encryption Machines.

FreeBSD was chosen over Linux for lincensing terms mainly. It also has a smaller kernel source code.

The SKREM OS will come in 3 flavours:
- SKREM OS For Encryption Machines (SKREM OS/EM): This will be the most secure, and functionality stripped version. It is intended to run on both specialized and off-the-shelf hardware, as a root operating system, and be used exclusively by Encryption Machines. Such Machines are regular computers, laptops, etc. operting SKREM OS/EM, which generally prevent/do not allow hardware components to access and toy around its RAM freely and which input-/output- data using special techniques, again so as to prevent as much as possible supply-chain attacks.
- SKREM OS For Transit Machines (SKREM OS/TM): This will be somewhat heavier OS, while still very trimmed down, aimed at ensuring transit to/from potentially compromised machines (such as those connected to the internet) into/from secure air-gapped Encryption Machines running SKREM OS/EM.
- SKREM OS For Workstations (SKREM OS/WS): This will a somewhat heavier still OS, capable of running richer virtual machines (in fully emulated mode, so without them having access to hardware or the RAM directly), hopefully including at least Linux and Windows, where the user can work with unencrypted data. The features of the OS will aim to prevent stuff like rootkits mainly. And this also to prevent leaking of data via storing it in some hardware components (like video memory, TPM chip or broadcasting via WiFi) and very importantly to mitigate or prevent some downstream vulnerability propagation where a Workstation running SKREM OS/WS "infects" a transit machine when the latter pulls the data which later "infects" an actual encryption machine.

Each OS version will come with specific SKREM Tools (eg. SKREM Tools for EM). These tools will allow working with the cryptographic primitives, encrypted and unencrypted data and ensure secure interconnectivity of the air-gapped machines. Projected features include:
- Generating long/short symmetric encryption keys (including based on user input).
- Encrypting / Decrypting Data.
- Transfering encrypted data from one symmetric key to another without decrypting.
- QR Codes parsing and generation.
- Data Transfer over Video (over display).
- Reading SD/microSD cards.
- Reading DVDs.
- Tehnical elements to prevent, mitigate and/or contain existent and potential vulnerabilities comming in from/via the hardware stack, such as via USB hub, TPM chip, etc.
- Tehnical elements to prevent, mitigate and/or contain potential vulnerabilities resulting from software.
- Wipping data from RAM, HDD, potentially SDD, and some other data destruction features.
- Audio-trigger panic "kill-switch" based on level of ambient noise.

Also, CryptoSKREM will run on some of these OSes to allow actually "added value" payloads to be processed.

Additionally SKREM OS/WS will in latter stages support some features like emulation, RAM protection & randomization, CPU instruction protection & randomization, hardware/output protection and randomization in order to achieves its security features.
top

SKREM Guidelines Manual

Part of SKREM Suite, the SKREM Guidelines Manual is a written document of moderate length comprising the precautions to take and workflows to follow in various scenarios to maintain secrecy of data. It will contain some potentially surprising advice to, and how to:
- Don't use an encryption machine while plugged into the electric socket.
- Use a Faraday caging, such as Faraday blanket coverage or a metal safe to secure Encryption Machine.
- Sequence in which to perform operations.
- Wipping machines.


Call for Action

Contact Mircea Digulescu at mircea.digulescu@mail.ru (preferred) or at mircea.digulescu@gmail.com or via Telegram/WhatsApp/Viber at +40736.617.391 to become a customer of, partner with, invest in, or interact with any of these products. Additional contact details may be available on the Contact Page.

Note that all the software products of the SKREM-Suite and of the BlockChain and FinTech are / will be open-source, licensed under the General Digulescian License (GDL). This is a rather permissive license which allows you to create derived works but only for yourself and is also free of charge for physical person individual use, outside a professional or systematic context. Beyond that prices for individuals are about $250 (in BTC preferred) and for organizations about $25,000 per (headcount + business figure/$100,000 + AUM or NBV/$1,000,000), except some select Western-block organizations which are charged much more unless they Contact Mircea to obtain a different license.

You are encouraged to use the Downloads Page to download any available products (including their source code). Where applicable you will of course need to read and agree with the license terms first.

Even before the products are ready,
Please consider Donating. It will be great if, instead of boot-strapping, support from smart donations such as by yourself could be leveraged. Please see Contact Mircea to donate: BTC and fiat transfers in RUB are accepted. A BTC donation of 100-200 USD will mean a lot to him and his activism. Especially if you were able to repeat the gesture once in a while.

To donate in use the following BTC address: bc1qtgt8ctz3ffd95dwxux3wed6nlq3r5mhhzg98zp.



To donate in RUB use the following MIR card number: 2202 2023 9828 3287.

To donate in any other currency, please use an online service such as Telegram Wallet, Binance or others or make use of an offline exchange or BTC ATM machine, like for example cryptoatm.ro to donate in BTC to the address above.

Please see the Contact Page for additional details, including how to donate in BTC. Note that the above adddreses and card numbers will change once in a while. Make sure you ar visiting the latest version of this page or of the Contact Page.


top
Documente
Contact Mircea for buying, supporting or investing in any of these products using the coordinates on the Contact Page.


See the Crytology, Game Theory and Complexity Theory papers published by Mircea Digulescu on the Research Page.


Download the freely available Personal-Use-Only licensed Products using Downloads Page.


Download the following relevant documents:


Download the following relevant documents:






top
Please consider donating. It will be great if, instead of boot-strapping, support from smart donations such as by yourself could be leveraged. Please see Contact Page to donate.

BTC (Bitcoin) and fiat transfers in RUB are accepted. A BTC donation of 150-300 USD will mean a lot to Mircea and his activity. Some reasons for donating: You appreciate Mircea's stances, the content of published document, the products and services he brings to the market, his activities, or, simply you appreciate Mircea himself as a person, are curious "just to see what happens next", or choose to donate "just because".

Donate now: Contact Page.



top