Data security

When a file is shared between two Vitres, it is transmitted through a secure WebRTC connection, directly from one device to the other. No file is ever stored on a server, even temporarily.

End-to-end encryption

La Vitre uses the WebRTC protocol to establish a direct connection between the two devices. This connection is automatically encrypted end-to-end using DTLS (Datagram Transport Layer Security). This ensures both the confidentiality and the integrity of the transmitted data. Once the connection is established, no third party – including the service provider – can access the exchanged content.

Secure signaling

Before the WebRTC connection is established, the devices go through a signaling phase, during which technical information is exchanged. This signaling is handled over an HTTPS channel, which is encrypted and authenticated, ensuring that only the intended participants can establish a session.

File integrity

Files are transmitted in successive blocks. The WebRTC protocol includes internal mechanisms that guarantee the data is not lost, modified, or reordered during transmission. If any corruption or alteration is detected, the transfer is automatically aborted.

No intermediate storage

Files are transmitted strictly peer-to-peer, without passing through any intermediate server. This significantly reduces the attack surface and eliminates risks related to temporary or persistent storage.

Companion app: same level of security

A companion application also allows users to send files to their own Vitre (for example, from a smartphone). This transfer relies on the same WebRTC protocol and benefits from the same end-to-end encryption. Once the file is received by the local Vitre, it is then forwarded to the remote Vitre using the exact same secure process.

As a result, whether the file originates from another Vitre or from a personal device via the companion app, the security, confidentiality, and integrity of the data are fully ensured at every step.

Conclusion

File transfers through la Vitre are secured on multiple levels:

• End-to-end encryption of all transmitted data,
• Signaling secured via HTTPS,
• Integrity control built into the WebRTC protocol,
• No server-side storage at any point,
• Companion app operating under the same security guarantees.

These measures ensure the confidentiality, integrity, and non-interception of all files shared between Vitres, or between a user’s device and a Vitre.