Wenme

Security at LoneSock

LoneSock's Wenme platform implements financial institution-grade security with zero passwords. Our revolutionary approach eliminates the root cause of 81% of data breaches.

100% Passwordless Architecture

Unlike competitors who claim "passwordless" but maintain password databases as fallback, LoneSock has completely eliminated passwords from our architecture. This isn't marketing speak – it's a fundamental architectural decision that makes password-based attacks impossible.

0
Password Fields in Database
0
Password Reset Flows
100%
Phishing Resistant

Multi-Layer Security

WebAuthn/FIDO2 Passkeys

Hardware-backed cryptographic keys using TPM/Secure Enclave. Biometric verification never leaves your device.

  • Public key cryptography (no shared secrets)
  • Phishing-proof by design
  • Cross-platform compatibility

TOTP Authenticator Apps

Time-based one-time passwords with RFC 6238 compliance. Works with Google Authenticator, Authy, and more.

  • 30-second rolling codes
  • SHA-256 HMAC algorithm
  • Offline verification capability

Secure Backup Codes

One-time recovery codes stored as bcrypt hashes. Designed for physical storage, never saved in browsers.

  • 8-character alphanumeric codes
  • Bcrypt cost factor 12 hashing
  • Single-use invalidation

OAuth 2.1 with PKCE

Latest OAuth 2.1 standard with mandatory PKCE. No implicit grant flow, enhanced security by default.

  • S256 code challenge method
  • Short-lived access tokens
  • Secure refresh token rotation

Infrastructure Security

Data Protection

  • Encryption at Rest
    AES-256-GCM encryption for all stored data
  • Encryption in Transit
    TLS 1.3 with perfect forward secrecy
  • Key Management
    Hardware security modules (HSM) for key storage

Operational Security

  • 24/7 Monitoring
    Real-time threat detection and response
  • Regular Audits
    Third-party penetration testing quarterly
  • Incident Response
    Dedicated security team with <15min response time

Compliance & Certifications

GDPR
EU Compliant
SOC 2
Type II Ready
HIPAA
Healthcare Ready
PCI DSS
Payment Security
Security Contact

For security concerns or vulnerability reports, please contact our security team at security@lonesock.pro

Ready for Unbreakable Security?

Join enterprises worldwide who have eliminated password vulnerabilities forever with LoneSock's revolutionary Wenme platform.

Get Started with Zero Passwords