We use the Rijndael cipher, with Cipher Block Chaining (CBC) where the block size is 16 bytes. Like BoxCryptor Storage Made Easy also uses AES-256 encryption. Users choose a private key to encrypt files on upload to their underlying cloud and SME does not store this key on the SME platform. How is this different to SME provided encryption? SME provides streamed encryption which occurs over the https protocol. As a result files remain unreadable to outsiders even if hackers manage to steal passwords as they need to also break the file encryption. BoxCryptor encrypts individual files, not an entire volume or container.īoxCryptor encrypts and decrypts files locally, and it doesn’t transmit passwords to third parties. The Storage Made Easy Cloud Encryption service is available to all SME users inclusive of free, Personal Cloud, Business Cloud and Enterprise Cloud byīoxCryptor provides a virtual hard disk that encrypts files within a storage account using using 256-bit AES encryption. ![]() It enables the ability to keep very sensitive data behind the corporate firewall but still enable secure file sharing and at the same time offers the ability to encrypt data that is stored on remote cloud storage and other SaaS services for additional security. The SME also on-premises Cloud Control service resides behind the corporate firewall. This makes sensitive data stored on remote servers ultra-secure. If the file is accessed direct from the underlying storage then it will not be able to be used as it will be encrypted and without being opened via the SME service, either hosted or on-premises, it will not be able to be un-encrypted. When an encrypted file is accessed the user is prompted to provide the private key phrase before the file can be opened. Once files are encrypted in this manner they can be accessed by an of the comprehensive SME desktop (Web, Mac, Windows, Linux) or mobile tools (Windows Phone, iOS, Android, BlackBerry). The expected effort of exhaustive key search depends on the length of the Cipher Key and for a 16-byte key, 2127 applications of Rijndael. The most efficient key-recovery attack for Rijndael is exhaustive key search. The likelihood of recovering a file that has been encrypted using our encryption is fairly remote. The chaining variable goes into the “input” and the message block goes into the “Cipher Key. A random initialisation vector is generated when the user supplies an encryption key. SME uses AES-256 encryption using the Rijndael cipher, with Cipher Block Chaining (CBC) where the block size is 16 bytes. Unlike the personal encryption the key phrase is either stored encrypted by the SME service, or it can be stored with a self hosted Vault instance.įor enterprise users who self-host the SME service then the key is can be stored on the service behind the corporate firewall or again it could use the open source Vault software on a key server. SME supports 50+ cloud storage vendors, which means companies are able to take advantage of private key encryption for some, or all data, across cloud storage providers.įor individual users of our cloud SaaS services SME uses a key entered by a user to encrypt data, but the key is not stored on the SME hosted service. If the key is lost, or forgotten, then when trying to subsequently access the file the user will not be able to gain access to the file as the correct key phrase will not be known.įor companies that use the SME SaaS hosted service team Admins specify a key that uses a similar mechanism but is applied to all users. One of the features that Storage Made Easy provides is an encryption feature that can encrypt data uploaded to remote (and local) Cloud Storage. ![]() ![]() Many Cloud Storage companies’ talk about encrypting data ‘at rest’ but the real issue is that the storage companies control the encryption rather than the company whose data is stored controlling the private key. ![]() The recent PRISM Data snooping controversies have heightened almost every companies awareness of the potential vulnerabilities of data stored off-premise in the Cloud.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |