Spreedbox Hub - Secure Hub for effective Teamwork
Team Chat, Meetings, Calling and Collaboration under your very control. Spreedbox is the only available ultra-secure hub for team collaboration that integrates the people, content, real-time communication and tools your team needs for effective collaboration. Spreedbox Hub integrates Word, Excel and PowerPoint compatible collaborative content creation editing for up to 20 simultaneous team members per team session. Spreedbox Hub supports multiple parallel team sessions.
Collaborate on office documents, manage your calendar, teams, commence video chats without ever storing any data on external servers. Zero footprint and military-grade security of your teamwork guaranteed!
Public Cloud vs. Private Cloud
Today, most organizations utilize online services like Zoom®, Google®, Skype®, WebEx®, GoToMeeting®, and BlueJeans® for file sharing and communication. But where is your data and who has access to all your confidential conversations, files, videos and personal contacts? Sensitive information is often uploaded and shared with these service providers that lack adequate service and privacy agreements that meet your requirements in privacy and confidentiality.
With Spreedbox Hub, your data will be stored on Spreedbox's flash memory. You can expand the storage capacity by adding an external disk drive or to external storage services and the data can be encrypted by Spreedbox Hub before storage. Get all the benefits of the cloud without compromising your privacy.
Your Data, Your Control
Spreedbox Hub empowers you to reclaim ownership of your data. Make a call, invite your friends and clients, and collaborate in closed groups through video/audio, text messaging, and document and file sharing. Spreedbox allows you to do this via computers, mobile phones and tablets through the Internet or limited to an Intranet. With the highest measurements for control and security, you can rest assured that your data will remain confidential on your personal Spreedbox Hub. You can access your private data through an easy-to-use web interface with PC, Android and iOS devices.
Open Source
An international community of software engineers and volunteer contributors developed the server software and you are invited to get involved, too. The software is published under open source AGPL license which allows you to examine, share and modify it.
Unparalleled Security
Spreedbox Hub firmware is Linux based, providing a world-leading level of security as transactional components with rigorous application isolation. Using well-implemented secure cryptographic algorithms, a high-speed quadcore CPU and two independent hardware true random number generators (TRNGs), Spreedbox Hub features an outstanding cryptographic specification well above any industry standard.
Use One, Deploy Many
Spreedbox Hub is instantly ready to use. Using one Spreedbox, you can securely host a meeting with several team members in a session. You can use video/audio, share files and collaborate on documents. Multiple sessions can be held simultaneously, each with multiple attendees. This is a great server performance for real-time team collaboration.
One Last Thing
As Spreedbox Hub is your private communication and collaboration hub. You can video chat and share globally 24 hours a day, 365 days a year. There are no fees, no subscriptions and no running costs.
Award-winning Design
Spreedbox received the Good Design Selection Award 2016 and German Design Award Special Mention 2017.
Purity
Spreedbox is made from a single piece of aluminum. Its unibody is milled from a solid block of aluminum, finestly milled and surface treated.
Strength & Durability
Its beautiful anodized finish keeps the Spreedbox from corrosion and provides a hard and (mostly) scratch resistant surface.
Ease
Spreedbox is quiet due to passive cooling. Its large surface and thermoconductive material keeps the box cool at all times.
Brilliance
Its customizable color patterns notify you about calls, voice/video messages and incoming files. The well-engineered LED diffusor maps the radiated light onto a beautiful carbon black stand.
These outstanding details manifest the awesome design & function of the Spreedbox.
- Ultra-secure stand-alone Nextcloud Hub server (Nextcloud - www.nextcloud.com)
- File access, document editing (Word, Excel, PowerPoint, LibreOffice), chat, calendar, contacts, team management and much more
- Access on the go with a simple user interface in your browser and mobile apps
- Secure exchange with colleagues, partners and customers
- Multilayer encryption for data and communication
- Comprehensive monitoring and audit logging
- Extended permissions, file access control and authentication options (2-factor, etc.)
- Customizable LED color patterns for calls and incoming files
- Support of U2F tokens (YubiKey/Yubico/Fido, Nitrokey and others), on-time recovery key option
- Support of Free OTP, Google Authenticator, Microsoft Authenticator, etc. (TOTP, RFC-6238)
- Crypto-hardware with two (2) independent, super-fast hardware True Random Number Generators (HWRNGs, TRNGs)
- 64/128/256GB and 512GB Flash. Memory is user exchangeable and expandable. External drives can be used too.
- 1GBit Ethernet connection and WLAN adapter included
- Award-winning design. Worldwide Good Design Selection Award 2016 & German Design Award Special Mention 2017
- Unibody housing made from a single block of aluminum, finestly milled and surface finished in Germany
- Silent (fanless) with ultra-low power consumption (3.5 watts)
- 110-240V multi-plug (EU, UK, US, CN, HK, AU) power supply included. Certified power supply for Japan available.
- 2 years warranty, guarantee and support. We offer extended support in 2-year terms.
- Made in Germany. 100% hardware and software developed in Germany
True Random Number Generators
The Spreedbox Secure Hardware Random Number Generator (HWRNG) is a hardware unit that securely generates entropy as bit-serial random numbers and presents it over the Serial Peripheral Interface (SPI). This ensures the quality and availability of random data for cryptography and security: secure crypto-key generation for encryption and block chain
The Spreedbox hardware random number generators are designed for high throughput (6 Mbps, 20 Mbps) and maximum security. An entropy source is based on electron barrier quantum noise from two differentially arranged Zener diodes. The noise is amplified by the avalanche effect and fed to a differential amplifier, which reliably suppresses interfering signals. A second, very powerful entropy source is implemented in the FPGA (Field Programmable Array) of the Spreedbox. It is based on fluctuations (in the picosecond range) of the runtimes of an array of ring oscillators (ROCs).
Iridium Secure Browser
For even more enhanced privacy and security, we provide our Iridium Secure Browser for free.
End-2-End Encryption (DTLS 1.2, TLS 1.2, DTLS-SRTP)
TLS 1.2:
DTLS:
Securely use your Spreedbox with web browsers and apps
- WebRTC Browser:
Any WebRTC browser: Edge, Safari, Chrome, Firefox, Iridium, Chromium, Opera and other browsers - Nextcloud App:
Available for iOS and Android - Nextcloud Talk App:
Available for iOS and Android - Nextcloud Desktop Apps:
Available for Linux, Windows and Mac OS - Iridium Secure WebRTC Browser:
Get the most secure browser here: https://iridiumbrowser.de/
Spreedbox Applications
The primary use of the Spreedbox is private and secure video chat and file exchange. In industry applications information security is pervasive in sectors with an increased requirement for secure and private communication:
- Information Technology
- Industry: construction, automotive, aerospace, semiconductors, government
- General Engineering & Design Manufacturing
- Financial Industry
- Lawyers, Advisors & General Consultancy
- Research Laboratories & Universities: general science collaboration
- Government
- Hospitals: collaborative environment for radiology and medical imaging. Secure, real-time exchange of diagnostic reports, sharing of medical imaging in real-time across desktop and mobile devices
- Doctors: medical consultation
- Schools
- General secure communication and secure file exchange.
Technical Specification
- 64/128/256GB and 512GB Flash SSD (externally expandable)
- Gigabit Ethernet 10Base-T, 100Base-TX, and 1000Base-T IEEE 802.3 standards, WLAN adapter included
- Award-winning design. Worldwide Good Design Selection Award 2016 & German Design Award Special Mention 2017
- Unibody housing made from a single block of aluminum, finestly milled and surface finished in Germany
- Silent (fanless) design with ultra-low power consumption (3.5 watts)
- USB 2.0 Host x 4, USB OTG x 1
- RTC (Real Time Clock) with backup battery
- Pre-installed software on microSDHC UHS-I Class 10 memory card
- eMMC4.5 HS200 Flash Storage slot
- Customizable LED color patterns for calls and incoming files
- Power Supply 100-240 V, 5 V/2 A, Standby < 0.1W, conforms to EU Directive on Eco-Design (ErP). Multi-plug (EU, UK, US, CN, HK, AU) power supply included. Certified power supply for Japan available.
- 2 years warranty and guarantee
- Made in Germany. 100% hardware and software developed in Germany
Size and Weight
- Height: 4.4 inches (11.1 cm)
- Width: 4.1 inches (10.5 cm)
- Depth: 4.1 inches (10.5 cm)
- Weight: 2.8 pounds (1.3 kg)
What's in the Box
- Spreedbox
- 64GB, 128GB, 256GB or 512GB fast and reliable Flash memory. User replacable and upgradable.
- Power Supply 100-240 VAC
- WLAN Adapter
- Quick Start Guide
Schematics
Spreedbox hardware include the following features:
- RGB color LEDs. Colors and patterns can be programmed through Serial Peripheral Interface Bus (SPI)
- Three (3) reliable, high-speed True Random Number Generators (TRNGs) connected through SPI interface.
- Two True RNGs leveraging Zener quantum-barrier noise amplified by the avalanche effect
- One high-speed FPGA-based True Random Number Generator based on oscillator rings
- The differential output of the two Zener quantum-barrier noise TRNGs are differentiated by an differential amplifier with high gain (comparator). The differential output is Shannon bit-processed and mixed (XORd) with the high-throughput FPGA TRNG.
- Spreedbox Hardware-TRNG is tested and test-reported. The random bit strings successfully passes all randomness tests: NIST SP800-22 and the Dieharder v.3.31.1.
- HW-TRNG delivers 6 Mbps and 20 Mbps entropy data rate
- The Lattice iCE40 programmable FPGA for random number generation and encryption. The iCE40 FPGA was chosen because of the availability of a fully-featured open source software design stack
The Spreedbox schematics are available as PDF ([1], [2]) and SVG (further below).
Spreedbox documentation
- Spreedbox Hub Brochure
- Spreedbox Wiki (Technical Documentation)
- Spreedbox on Github
https://github.com/spreedbox
Hardware documentation
Spreedbox PCB
The PCB was designed with KiCAD. See rendered images of the Spreedbox printed circuit board.
Hardware related software stack
iCE40 programmable FPGA board
Three open source projects have implemented a complete open source tool-chain for iCE40 FPGAs. The open source iCE40 tool-chain is feature complete.
Project IceStorm
Documents the bitstream format for Lattice iCE40 HX1K and HX8K FPGAs provides tools for analyzing and creating bit-stream files: http://www.clifford.at/icestorm/
iCE40 Software Stack
- iCE40 (Lattice FPGA) Bitstream Format Reverse Engineered!
- Demo A fully open source flow for iCE40 FPGAs
- A Free and Open Source Verilog-to-Bitstream Flow for iCE40 FPGAs [32c3]
- Timing Analysis in Project IceStorm (Open Source iCE40 FPGA Flow)
Yosys (Yosys Open Synthesis Suite)
Verilog synthesis and verification tool Yosys is an open source framework for Verilog RTL synthesis. Yosys has extensive Verilog-2005 support and provides a basic set of synthesis algorithms including Mapping to Lattice iCE40 FPGAs.
http://www.clifford.at/yosys/
Arachne-PNR
Arachne-PNR provides the place and route step of the hardware compilation process for FPGAs. It converts as input the Yosys [0] synthesis suite (or other Verilog or VHDL synthesis tools) output netlist in BLIF format. Arachne-PNR output is a textual bitstream representation for assembly by the IceStorm icepack command. The output of icepack is a binary bitstream which can be uploaded to the Lattice iCE40HX1K on the Spreedbox board.
On github: https://github.com/cseed/arachne-pnr