The Mathematical Mesh is an infrastructure designed to make the Web easy to use securely.
Modern cryptography allows us to protect information in almost any fashion that can be described precisely. But until now most security applications have been built for the 'enterprise' market where ease of use is a very low priority for most software providers because the person who has to use the system is very rarely the person who signs the check to buy it.
Cryptography does not have to be difficult to use. In fact, using the Mathematical Mesh actually makes computers easier to use. One of the problems that we had to solve in the Mesh was how to encrypt data in a way that the user had access to it on every device they owned but nobody else did. This means that the cryptographic configuration data (the secret keys) has to be synchronized across all the devices. Having built a system that can do that, we can synchronize any type of configuration data, passwords, bookmarks, email server settings, VPN configuration, SSH keys.
The biggest headache in administering computers today is the difficulty of managing a disparate collection of devices from different manufacturers, bought at different times with different software installed. Apple, Microsoft and Google all have an answer to this (of course!) just standardize on their platform and throw away any device when it gets too old. Even if that was an acceptable solution for computers, it isn't going to work as the 'Internet of Things' picks up steam.
The first public release of the proof of concept build is now available from Sourceforge. This is the set of tools I am using to make a set of demonstration videos and podcasts explaining the Mesh in detail. At this point, the code isn't ready for production use but it is complete enough to perform real tasks.
What I need to do right now is to show that this approach is practical and that it is useful. And to do that I am going to show how it can be used to activate the email encryption system that has been shipping with Windows and supported by all the leading vendors for 15 years now. As in the Wizard of Oz, we had the security solution all along, people just didn't know it was there or how to use it.
This email encryption mechanism is called S/MIME and it is based on an open standard that is published by the IETF. You may have heard about OpenPGP which is another email security standard which we hope to support in the near future. In principle the Mesh can be applied to pretty much any application that uses cryptography. The reason for choosing S/MIME is that it is the email security standard that is widely used in the US government for classified information.
Development of the Mesh was funded by my employer, Comodo Group Inc. who have allowed me to release the code under an MIT open source license.https://sourceforge.net/projects/mathematicalmesh/