Defense in Depth

Seven Layers of Enterprise Security
Protecting Your School

Every request passes through seven interlocking security layers before touching your data. Click any layer to explore its mechanisms.

200,000 PBKDF2 iterations per password 5-minute JWT token TTL Progressive lockout: 15 min → 1 hr → 24 hr Per-school isolated databases

Security Layer Stack

Each layer independently validates the request. All seven must pass.

🌐

Incoming Request

User, API client, or potential attacker

🖥

Protected School Data

Access granted only after all 7 layers pass

🔐

Click any security layer on the left to explore its mechanisms and see which threats it neutralizes.

Every byte of your school's data is protected at every stage of its lifecycle.

Live Browser Encryption Demo

Type any text below to see AES-256-GCM encryption run live in your browser using the Web Crypto API. Nothing leaves your device.

Select an attack type to trace exactly how BlueBird's security layers respond and where it gets blocked.

Select an attack above to trace how it is neutralized

PBKDF2 Iterations

Security Layers

Granular Permissions

Attempts Before Lockout

JWT Token TTL (seconds)

Min Secret Key Length (chars)