Transparent client-side encryption proxy for S3 — AES-256-GCM envelope encryption, zero code changes, Kubernetes-native with Helm chart
-
Updated
Jul 3, 2026 - Python
Transparent client-side encryption proxy for S3 — AES-256-GCM envelope encryption, zero code changes, Kubernetes-native with Helm chart
A SaaS secure VCS (based on Git) for confidential repositories
A key management system with envelope encryption: keys, rotation, DEK/KEK envelope crypto, sealed secrets, and an audit log.
Safety — Client-side encryption and request anonymization. AES-256-GCM envelope encryption. Keys never leave the client.
CryptoRAG: vector search + queryable encryption + client side field level encryption 🤖
Reviewable AES-256-GCM educational tool with Argon2id, JSON envelopes, and safe-mode streaming.
Production-grade AES-GCM Envelope Encryption Data Plane gated by a Shamir Secret Sharing (SSS) KMS.
Add a description, image, and links to the envelope-encryption topic page so that developers can more easily learn about it.
To associate your repository with the envelope-encryption topic, visit your repo's landing page and select "manage topics."