The term white-box cryptography is used to describe cryptographic algorithms in an execution environment that is fully observable and modifiable by an attacker. It is different from black-box cryptography where the algorithm’s internal processing data is unavailable to the attacker. The white-box environment puts hard additional restrictions on implementations of the cryptographic algorithms. For instance, an encryption key may never appear plain, otherwise it can be retrieved by an attacker.

White-Box Cryptography in Syncrosoft’s Crypto Toolbox
The main feature of MCFACT is enabling direct computation on encrypted data without decrypting them. This is used for the implementation of Syncrosoft’s Crypto Toolbox, that includes ECC, AES, DES and SHA algorithms implemented for the demanding white-box environments. The algorithms are carefully designed to withstand currently known white-box attacks, e.g. the attack on the white-box AES by Olivier Billet et al. [1].

Synergy of Syncrosoft’s Crypto Toolbox and other MCFACT-protected Program Code
Besides the ability to protect encryption keys, Syncrosoft’s Crypto Toolbox allows to use MCFACT-encrypted data also for input and output to the cryptographic algorithms. Keeping data MCFACT-encrypted allows for usage of another feature of MCFACT – ensuring program integrity. It is possible to bind secure white-box algorithms with other processing modules, e.g. Conditional Access modules, thus, greatly improving overall security of the application.

References
[1] Olivier Billet, Henri Gilbert, and Charaf Ech-Chatbi, "Cryptanalysis of a White-Box AES Implementation".