Secure Comms.
Enterprise Grade.

Zero-Knowledge Architecture

The relay never sees plaintext. End-to-end encryption is enforced at the device level using Kyber-1024 + AES-256.

MDM AppConfig Bindings

Push enterprise relay URLs, enforce Shoulder Shield, and block screenshots via Intune, Jamf, or any EMM that supports AppConfig.

Compliance Journaling

Encrypted ciphertexts are blindly forwarded to your private AWS S3 vault with KMS encryption and 7-year WORM Object Lock.

Blind-Signature IAM

RSA blind signatures let your Identity Server prove employee identity to the relay without the relay ever touching credentials.

DLP Enforcement

Mandatory screenshot blocking, clipboard restrictions, and permanent Shoulder Shield — enforced by your MDM policy.

Private Relay Deployment

Deploy the relay on your own Swiss or on-premises VPS. Your data never transits Cordon infrastructure.

Tier 1 — Direct B2B Contract

• →Android: Download cryptographically-signed APK directly from this portal.
• →iOS: Receive a private Apple Business Manager Custom App link — no public App Store listing.
• →Includes a Deep Link activation token that auto-configures your private relay, DLP policies, and org identity.

Tier 2 — Public App + Activation

• →Install Cordon from the App Store or Play Store as a consumer app.
• →Tap your organization's Deep Link — the app silently reconfigures to enterprise mode.
• →No re-installation required. Ideal for BYOD deployments.

Tier 3 — Airgapped / Defense

• →Android: Raw unsigned APK provided for your internal MDM to sign and push.
• →iOS: Compiled binary provided for signing with your own Apple Enterprise Certificate.
• →No internet required post-deployment. Full offline capability.

Cryptographically SHA-256 signed. Compatible with Android 10+. Supports direct install (allow unknown sources) or push via your MDM/EMM.

Distributed as an unlisted Apple Custom App via Managed App Configuration. Your ABM admin redeems the link and pushes it to managed devices.