application: personal manager (PIM), a lot of personal data (planning of purchases, inventory accounting of frequently moved junk, personal finance, etc., including business tasks for individual entrepreneurs). Architecture "one user - one server" for maximum isolation of different users (virtualization or private servers for each customer)
the same platform may be used for easy IoT
the application and the user are one at a time, but the user simultaneously uses two devices at the same time: a desktop and a mobile phone, not counting other access points (home computer, smart TV, tablet, etc.)
https and password authentication is naturally done first, but I want to maximize access:
- Script commands entered via the web interface are executed on the server, is it possible to make PGP for each sent command or data file on the frontend?
- How to sign a device (browser)? Perhaps there is some additional level of protection https allowing you to use cryptoblock files installed into the browser manually (ideally updated only with hardware via USB cable)?
- Are there any hardware cryptography chips on mobiles available for the front?
