IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [cloud-storage]

110 questions
4
votes
2 answers

How to properly store, encrypt and backup passwords for home and office use

I am in close proximity to the moment, where I will need to migrate from my old ssd and data hdd to new ones (wear and age), so I'm rethinking my environment. Please, give me suggestions about what should be improved regarding security and…
Deele
  • 263
  • 2
  • 10
4
votes
1 answer

EncFS vs EFS advantages for Dropbox-seamless encryption

I am considering a solution for securing my private data in Dropbox. In spite of OneDrive, MEGA and AmazonCloud are also being considered but now I put my focus on Dropbox as the most feature-rich of all. I came to the couple of options that are…
Suncatcher
  • 282
  • 2
  • 13
4
votes
4 answers

Transmit ciphers using plain HTTP

This is for end-to-end app, where the server is just 'dumb' temporary storage. I'm considering using plain HTTP (no TLS) to transmit ciphertexts due to the following reasons: Security of a single encryption algorithm is well studied, while stacking…
user133760
3
votes
1 answer

Is it still not advisable to use recent versions of EncFS >1.7 to encrypt Dropbox?

I'd like to use EncFS to encrypt files synced with Dropbox. Unfortunately, its Wikipedia page https://en.wikipedia.org/wiki/EncFS mentions security concerns from an audit of version 1.7: EncFS is not safe if the adversary has the opportunity to see…
finefoot
  • 213
  • 2
  • 9
3
votes
2 answers

Encryption using multiple Yubikeys, any of which can unlock

I was hoping to use my Yubikey for file encryption, but also wanted to have a backup Yubikey work to unlock the file. From a conceptual point of view, I know it is possible since, even as is, I believe many encryptions work by symmetrically…
Dan
  • 133
  • 5
3
votes
0 answers

What security guarantees do Google Cloud Platform customer supplied disk encryption keys provide over Google provided keys?

Google Cloud Platform allows for customer supplied disk encryption keys as an option to using Google supplied disk encryption keys. However, to use customer supplied keys, you must send the key (either raw or wrapped by a google public key) to…
Doug Richardson
  • 196
  • 4
3
votes
1 answer

Does Adobe Acrobat Reader DC upload opened PDF files?

I'm wondering if Adobe Reader DC uploads all the PDF files it opens to the Adobe Cloud, even if you have not signed up for the cloud. I am not a fan of Adobe and generally do not install Adobe products on my computers if I can avoid it. …
Douglas B. Staple
  • 133
  • 4
3
votes
1 answer

Can I store government ID numbers according to the PCI DSS?

I am developing a service, a part of which stores the credit card data of it's users. According to the Israeli credit card companies' requirements my users need to present their government ID number when making a transaction. The PCI Standard…
Theodore
  • 307
  • 2
  • 5
3
votes
1 answer

Client Side Encryption (CSE) across multiple clients

Working on 2 layer security in the cloud (AWS). Have multiple clients pushing files to S3 document storage which are then retrieved by one EC2 instance. Multiple external customers each requiring their own encryption (PUT files to S3). Have 1…
csi
  • 153
  • 1
  • 5
2
votes
2 answers

Sharing files with others, encrypted on untrustworthy file storage (e.g. the cloud)

I want to work on a photo-sharing tool, where I can: store photos on untrustworthy disk space (like the cloud) share photo albums with friends and family update photo albums (rarely but happens) share an existing album with additional people One…
Nicolas Marshall
  • 135
  • 6
2
votes
1 answer

How to update large encrypted files on a server

I'm curious how large cloud computing services that might secure encrypted data would update an encrypted file. For example, let's consider a user is using RSA to encrypt a large file, maybe gigabytes long, and stores it on a server. The user then…
Securitybeginer
  • 21
  • 1
2
votes
1 answer

How does sync.com provide zero knowledge for secure links?

I tried to use sync.com for it's advertised zero knowledge. But I'm skeptical. If I create a link without a password and share it with a text message, my friend who gets this link is able to download the document and view the content. However my…
user234342
  • 21
  • 1
2
votes
0 answers

Securing key generation by 3rd parties

I'm working on an IoT product that uses the cloud once finished. Each of these devices has a serial number, from which a key is derived. This key is then stored on the device itself and in the cloud. These two mechanisms are working flawlessly and…
Deserializer19
  • 31
  • 1
2
votes
1 answer

What attack vectors does AWS SSE-S3 help mitigate?

Reading into the various SSE options on S3, I'm can't understand the following: What exactly does the SSE-S3 (fully-managed, transparent at-rest encryption) protect you against? I can only think of a physical attack vector, where someone physically…
Ilya Ayzenshtok
  • 143
  • 4
2
votes
1 answer

NAS with a public IP and multiple file sharing services – security concerns

I've ‘inherited’ (it's now my responsibility to take care of it) a WD My Cloud EX2 with a public IP and since it's exposed to the internet, I want to make sure that the data and other machines on the local network are secure. I've read that certain…
Harold Cavendish
  • 123
  • 5
1
2
3 4 5 6 7 8