Digital signatures allow recipients to verify that data is authentic — that it was created by a specific author and has not been tampered with since it was signed. Raytio uses two separate digital signing systems, each serving a different purpose.
Raytio uses end-to-end encryption to protect your data. This means your information is encrypted on your device before it is sent to our servers. Raytio cannot read your data — only you and the people you choose to share it with can.
Raytio supports the Web Authentication (WebAuthn) standard to enable a hardware token to be associated with your Raytio account which enables a check to be performed that the account and data is being accessed only by someone without access to that hardware. This also enables biometric authentication using fingerprint or face recognition for example. Other names for this type of authentication include passkeys, FIDO keys or Yubikeys.
You can increase the security of your Raytio account by enabling a time-based one-time password (TOTP). This is commonly known as Two Factor Authentication because it combines your Raytio password with another device such as your mobile phone to secure your account. When two factor authentication is activated, you put in your password, then use a code on your mobile device to complete the sign-in.