I have my documents backed up to Box.com. They do claim to encrypt all user information, but they have the encryption keys, and I have no control over this.
If they have a rogue employee, he/she could in theory access all my data or if they get hacked, somebody else could.
Is there any way that I can access my data in Box and run my own encryption of my data that only I can access?
- Gordon asked 11 months ago
- last edited 11 months ago
Good question. The simple answer is that you can never be 100% sure that Box is encrypting your data. Even if you used third-party encryption software on your system you can’t be sure that your data has been encrypted properly (checking the output file doesn’t guarantee this). Short of designing your own system from the bottom-up you have to take a realistic approach.
Remember Box, Dropbox, OneDrive, Google Drive are designed with convenience in mind, not security.
You’d be better looking at an ultra-high security system (i.e. where security is the main consideration) such as Tresorit or SpiderOak. These solutions encrypt your data on your computer BEFORE uploading them to the servers. When you download the file they decrypt the file in real-time. Only you have the key – the obvious problem is that if you forget your password then all your data is lost and your only option (unless you’re logged in on a trusted computer) is to delete your account and start afresh.
Tresorit for example has a free version but for the full feature set you’re going to have to pay. Security and privacy are a trade-off – most companies make their money selling your data; when you have total privacy you have to pay them for the privilege as this is their only source of income (they’re unable to ‘monetise’ your data). They have apps for Windows, Linux, Mac, Android, iOS, Windows Phone and Blackberry. They also have a web interface although using the apps is more secure as they share a certificate in the background to make sure your connection to them isn’t subject to a MITM attack.
Have a look here:
Alternatively, supporting fewer platforms is SpiderOak:
Please login first to submit.