1/5/2024 0 Comments Boxcryptor vs spideroakCurrently I use Cyphertite which I think the safest so far. ![]() I don't hesitate to pay money for really good service. Wow, I guess they changed if it is not my wrong memory! Now they may become competitor. TS seems to have given a bit better response. They pointed out misunderstanding of some technical implementation but haven't addressed fundamental security concern (I may be wrong tho). But so far for me SO's answer looks bit pointless. I downloaded the researcher's paper, but it's hard to read it in short time partly due to my lack of English skill. Nevertherless, your post was valuable for me. Also I don't actually fear P=NP problem, tho bit fear quantum computer. I posted about Mozy cuz OP asked service which don't hold private key, and I described it as you questioned about difference. I don't have concern about their holding private key. But if Mozy is really the only service that meets your fairly specific criteria, maybe you have to pay to get what you want.Ĭlick to expand.I think you misunderstood me. I see the benefit of storing the private key on your own machine. It does seem like you may be expecting to get a lot for free. When I look at the pricing chart on Tresorit's site, it seems to say the file size limit for free accounts is 500 MB. For what it's worth, SpiderOak responded and said this is just wrong and not how their service works: There is also a bit of a response from Tresorit part way through this review of their service, where they claim the Hopkins study if flawed: I don't know that this responds to your concerns, but thought it might interest you. I read that a researcher at John's Hopkins, critiqued SpiderOak, Wuala, and Tresorit, because they store an RSA key on their server for sharing purposes. Thanks for the explanation about how Mozy is different. Also, if quantum computer evolved, those asymmetric encryption will be broken but symmetric encryption is sill relatively safe (unless new powerful algorithm is invented). At the same time they are forced to make alternative of those cipher especially TLS. In the future if P=NP is proved (again, quite unlikely but nobody can deny), then many researchers would seriously seek for attack against popular asymmetric encryption as well as popular hash algorithms. ![]() Of course then, you can't share the contents anymore. OTOH, if only you have your private key of asymmetric encryption such as RSA, currently only you can decrypt the contents regardless of passphrase or such. This means, though surely Spideroak or Wuala's employee can't decrypt your contents unless they know your passphrase, potentially anyone who know the pass can decrypt the contents (there can be another security to prevent this, I'm speaking in theory). Both Spideroak and Wuala, though they don't provide details of their encryption (very disappointing for me), store your private key on the server BUT they are encrypted by AES (symmetric key). ![]() Click to expand.They offer an option not to store your private key on their server.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |