Even when you’re using Tresorit Web Access, Tresorit’s end-to-end encryption technology guarantees that only you can access your account, password and data. These never leave your browser and device without being encrypted first. Encryption ensures that no one else – including Tresorit admins – can access it.
Signing in to Tresorit Web Access
-
If no valid session is found, then the user will be redirected to https://web.tresorit.com/login to sign in.
-
During a challenge-response protocol, we gather proof that you have the correct password and serve you your encrypted profile stored on our servers.
🏆 Pro tip: In case of SSO authentication, please read Technical and privacy considerations when using Tresorit's SSO integration
-
We decrypt your profile on your device with the password you entered, or with the secret that has been acquired during SSO authentication. Using that, we generate your device certificates – with 2048 bit RSA keys. The device certificates are sent for signing (SHA512) to the server.
Learn more about online password management. -
As a result you will be signed in to the web client with a fresh new device certificate.
-
From here the same protocol is played in the background as described below – the device certificate is used to obtain a login session and later on an active session to our servers.
-
Accessing your files: you have received your encrypted profile during the authentication process, so you will be able to access all your files securely by clicking < Tresors > tab on the menu bar.
You can always contact us if you have any questions.