![]() I like this method because individual files can be synced (which is the whole purpose of Dropbox), safe syncing does not require unmounting the volume, it can be mounted on multiple computers at the same time, is cross-platfrom, and I think it should be possible to revert individual files to a previous revision (though I've never tried). You still mount and unmount it like Truecrypt or Apple's encrypted disk images, but behind the scenes instead of creating an opaque block device to store the files, the individual files and directories are stored with their names and contents encrypted. I rationalize it as if Apple is subverted, and I use OSX, I'm fucked even if third party disk encryption software itself is safe.Īfter reviewing the options some time ago, I ended up using encfs on top of Dropbox. For general purpose use on Macs, I just use Apple's encryption - it's probably ok, but as far as I know, hasn't really been analyzed by third parties (I'd be happy to NDA and look at it). As for your best well-tested encryption, that's a hard problem too - Truecrypt has a pretty wide following and some versions have been audited, and source is published. Overall, probably the best bet, if you don't run your own servers, is Dropbox plus your choice of well tested encryption on top. If your threat is a server break-in by a third party, then there's some difference. "just access data server-side", but in practice, if your threat is the government, there's not a huge difference. There is a slight benefit to "must ship trojaned software to recover passphase, then decrypt" vs. ![]() You also need to trust the entire development process, release engineering, and knowing your binaries correspond to the source code. Even if their security model is better than what Dropbox is now using, you have to factor in availability issues (Dropbox seems more solid as a business than a lot of the others), functionality, etc. There are other services which advertise security, but nothing where you actually are likely to audit the code. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |