Sealed envelopes for sensitive data
Canonical family name for the cryptographic framing that binds payloads to your deployment — not to ours.
Imagine every sensitive message travels inside a tamper-evident envelope that only opens when it is sitting on your desk — the desk you set up during install. A thief who photocopies the envelope still cannot read the letter unless they also steal your exact desk, keys, and room layout.
That is the user-facing idea. Engineers call the details IHP; the pitch site keeps the metaphor so non-specialists are not buried in acronyms on page one.
The heavier apps that talk to servers you run (for example BROILR, MailSloth, HELMPC, FL33T, Archimedes) lean on this class of protection so a database leak is not automatically a content leak.
How this fits company posture →
Support-site manuals — per-app notes on which transports each SKU uses.