howtogeek — 2013-07-02T06:42:02-04:00 — #1
Originally published at: http://www.howtogeek.com/166507/why-most-web-services-dont-use-end-to-end-encryption/
Recent revelations about government surveillance have raised the question: why don’t cloud services encrypt your data? Well, they generally do encrypt your data, but they have the key so they can decrypt it any time they like.
nsdcars5 — 2013-07-02T08:40:37-04:00 — #2
However, encryption is a lock, and whether something is locked is less important than who has the key.
So you say that someone could leave the lock open and the key with a trusted person, and the robbers won't come?
mdknightr — 2013-07-02T12:46:53-04:00 — #3
I've been using Wuala for several months now and highly recommend the service to anyone who wants secure cloud sync and backup.
raphoenix — 2013-07-02T17:53:03-04:00 — #4
Certain government programs can't break End to End Encryption when using appropriate key configurations according to current computer news letters and publications.
thehumbleguy — 2013-09-10T02:08:19-04:00 — #5
Even if Google or any other email service decides to provide this way of local encryption/decryption, they still run their own IMAP server, which fetches the email in plain text format and can be used to scan the email, before it is stored in encrypted storage.
The additional step of client-side encryption before sending would be required (e.g. GnuPG).
elichai2 — 2013-12-05T05:44:30-05:00 — #6
Why can't Gmail act same as 'mega.co.nz' and don't store the decrypt key, but when you login you you send them you'r Key as Get (the key will be in the url)?
aj_ — 2013-12-10T16:32:32-05:00 — #7
No, there saying that if you give the key to the robbers, then they will still rob you.
geek — 2013-12-12T10:23:46-05:00 — #9
This topic is now closed. New replies are no longer allowed.