The Dekko platform (DekkoVAULT + DekkoLYNX) secures video conferences, files, messages and document approval flows using true end-to-end encryption. All content is completely inaccessible to Dekko infrastructure or staff - only you and whoever you collaborate with will ever be able to access your communications.
All key generation and exchange processes are handled by the web application transparently to users. This means that Dekko makes highly sophisticated secure communication tools available to anyone, not just security experts.
Dekko utilises proven, industry standard cryptography. Elliptic curve 256 bit encryption (secp256r1) for file, message and video conference media end-to-end encryption and SHA384 digital signatures. Client communications are secured with HSTS.
Please ask us about our independent testing report by Enex TestLab to learn more about collaboration security in DekkoVAULT and DekkoLYNX.
Hosting and sovereignty
Dekko is a managed cloud service with multiple options for data sovereignty. DekkoLYNX offers data sovereignty in Australia, The Netherlands, The United States and India. At present DekkoVAULT offers data sovereignty in Australia.
Microsoft Azure is used in a high availability configuration (Sydney and Melbourne Regions) to deliver the Dekko platform, store DekkoVAULT content and store all platform account data. DekkoLYNX conference media is routed using Oracle Cloud and will choose the closest infrastructure available from the list above when scheduling a conference.
Dekko is a web application that it designed to be accessible for anyone, anywhere. It does not require desktop clients or browser extensions to run, so getting started as a corporate team or inviting external parties to collaborate is quick and easy. The only permissions required are for your browser to be able to access your webcam and microphone.
Dekko officially supports Chromium-based web browsers such as Google Chrome and Microsoft Edge. Version 83 of both of these examples specifically are required to host and participate in DekkoLYNX meetings.
DekkoLYNX is a webRTC application that leverages Insertable Streams to facilitate truly private video conferences.
Accounts & authentication
Dekko supports 'personal' accounts which are registered using your email address via our sign-up page. Optionally TOTP 2FA can be set up for extra account protection. For corporate implementations Dekko supports Azure Active Directory integration for easy Single Sign-On authentication.
DekkoVAULT guarantees that all files, messages and document approval flows are performed without being intercepted or altered. DekkoLYNX guarantees that all video conferences will not be intercepted or be able to be joined by uninvited parties.
Users external to an AAD-integrated organisation do not need to be in a common AAD to internals - any mix of users from different organisations with different authentication methods can interact freely on Dekko. If your organisation starts off using personal logins and chooses the move to AAD authentication, all files, messages, conferences and contacts are migrated automatically!
All content on Dekko is encrypted end-to-end and digitally signed ensuring that it can never by altered or read by anyone that isn't meant to.
The Dekko system maintains an immutable audit log that is customer-accessible to keep track of your organisation's interactions on Dekko. This log persists through file and message deletion to ensure long-term accountability and historical access.
Auditing in Dekko keeps track of:
File upload, share, and versioning
Document approval request, notation and completion
Message send, receive and read
Video conference schedule, start and end
Group creation and administration activities
Dekko is SIEM integration ready using standard Syslog to enable even more powerful logging capability. Applications such as Splunk are seamlessly connected and administered.