Page 2 of 3 FirstFirst 123 LastLast
Results 16 to 30 of 40
  1. #16
    New Lounger
    Join Date
    Jun 2011
    Posts
    10
    Thanks
    0
    Thanked 2 Times in 1 Post
    Quote Originally Posted by radtom View Post
    My level of trust seems to go down a notch when there is a failure in English:
    Attachment 37195
    Hyuk! That is far and away the most common spelling atrocity I see. It is, in fact, so common that I think that someone in the schoolboards was playing "fast and lose" ;-) with the english texts, and perhaps tried to save money by importing their english grade school textbooks from China !

  2. #17
    Silver Lounger mrjimphelps's Avatar
    Join Date
    Dec 2009
    Location
    USA
    Posts
    2,185
    Thanks
    209
    Thanked 213 Times in 205 Posts
    For something as important as encryption, you need to be able to trust the people doing the encryption. If they are really trustworthy, then one clue about that is that they will make sure that you believe that you can trust them.

    They were sloppy with this screen, which makes me wonder what else they are sloppy with, including perhaps the possibility that they have a back door built in somewhere. I mean, they aren't charging you anything for the service; they have to make their money somehow.

    I'm not saying that they can't be trusted; but they need to go out of their way to show that they can be trusted. That's what a trustworthy person does by default.

  3. #18
    New Lounger
    Join Date
    Jun 2011
    Posts
    10
    Thanks
    0
    Thanked 2 Times in 1 Post
    Quote Originally Posted by mrjimphelps View Post
    For something as important as encryption, you need to be able to trust the people doing the encryption. If they are really trustworthy, then one clue about that is that they will make sure that you believe that you can trust them.

    They were sloppy with this screen, which makes me wonder what else they are sloppy with, including perhaps the possibility that they have a back door built in somewhere. I mean, they aren't charging you anything for the service; they have to make their money somehow.

    I'm not saying that they can't be trusted; but they need to go out of their way to show that they can be trusted. That's what a trustworthy person does by default.
    You are quite correct, and the type of spelling error leads me to believe that this is an english speaking, American based company. If so, that is even worse.
    Your point can be re-emphasized by, say, one's visiting a lawyer who demonstrates bad spelling or grammar. You'd immediately get the impression that if he had not paid any attemntion to these things in university, he could well have glossed over, or worse, read inaccurately, the legal documents affecting, possibly, your well being and security.
    .. Time for a visit to the office across the hall?

  4. #19
    2 Star Lounger
    Join Date
    Nov 2011
    Location
    Berkshire, UK
    Posts
    128
    Thanks
    18
    Thanked 0 Times in 0 Posts
    Quote Originally Posted by Doccus View Post

    Your point can be re-emphasized ...

    Windows Secrets is so obviously US based/biassed in its articles and when looking at contributors' locations. I mean, Queen's English would spell it "re-emphasised". But aren't we being a bit too pedantic/precious over words when what's important is the strength of the drawbridge to our digital castles. We've all seen the translated-from-Chinese gobbledegook masquerading as manuals of electronic products.

    But do these goodies work? Some do fantastically. Others, well... and in the latter, I have to agree on the evidence seen here not Boxcryptor.

    But long live US know-how on MS Windows!
    Tim

    (Asus Transformer Aio. Win8.1. Galaxy S4. Samsung Galaxy Tab S 10.5)

  5. #20
    New Lounger
    Join Date
    Dec 2013
    Posts
    2
    Thanks
    0
    Thanked 0 Times in 0 Posts
    Well, we could look at your incorrect use of commas as evidence that you don't know proper punctuation as well. But it could be simply an error. I think you are overreacting to a spelling error.

  6. #21
    Silver Lounger mrjimphelps's Avatar
    Join Date
    Dec 2009
    Location
    USA
    Posts
    2,185
    Thanks
    209
    Thanked 213 Times in 205 Posts
    Quote Originally Posted by timsinc View Post
    Windows Secrets is so obviously US based/biassed in its articles and when looking at contributors' locations. I mean, Queen's English would spell it "re-emphasised". But aren't we being a bit too pedantic/precious over words when what's important is the strength of the drawbridge to our digital castles. We've all seen the translated-from-Chinese gobbledegook masquerading as manuals of electronic products.

    But do these goodies work? Some do fantastically. Others, well... and in the latter, I have to agree on the evidence seen here not Boxcryptor.

    But long live US know-how on MS Windows!
    If they used the Queen's English, that would inspire confidence, because it would show that they cared. That is, unless they had errors with their Queen's English.

  7. #22
    New Lounger
    Join Date
    Jun 2011
    Posts
    10
    Thanks
    0
    Thanked 2 Times in 1 Post
    Quote Originally Posted by timsinc View Post
    Windows Secrets is so obviously US based/biassed in its articles and when looking at contributors' locations. I mean, Queen's English would spell it "re-emphasised". But aren't we being a bit too pedantic/precious over words when what's important is the strength of the drawbridge to our digital castles. We've all seen the translated-from-Chinese gobbledegook masquerading as manuals of electronic products.

    But do these goodies work? Some do fantastically. Others, well... and in the latter, I have to agree on the evidence seen here not Boxcryptor.

    But long live US know-how on MS Windows!
    Perhaps you missed the obvious.. The error was "You will *loose* access to your encrypted files". That is no small "dialect" difference, but a strong grammatical error, all too common in people who should know better
    You *did* catch the error, did you not?
    The OP's point was that in a company that deals in security, a glaring error like that does not inspire confidence in other areas of their service...

    My point was that if it were a Chinese or other translation error I would be less concerned, as , indeed, it does not reflect on the rest of the company's service. It is, however, a common *english speakers* error, so there is quite a difference.. If english is your FIRST language, this little attention paid to the text of the info DOES cause concern.
    And , furthermore, when writing comments it is hardly important if some typos get in the way. It is quite a different matter in a legal contract, such as a(n) EULA, which is where "Loose your files" appeared ..
    Last edited by Doccus; 2013-12-12 at 20:51. Reason: spelling! additions

  8. #23
    2 Star Lounger
    Join Date
    Nov 2011
    Location
    Berkshire, UK
    Posts
    128
    Thanks
    18
    Thanked 0 Times in 0 Posts
    Quote Originally Posted by Doccus View Post
    .. when writing comments it is hardly important if some typos get in the way. It is quite a different matter in a legal contract, such as a(n) EULA, which is where "Loose your files" appeared ..
    Point taken.
    Tim

    (Asus Transformer Aio. Win8.1. Galaxy S4. Samsung Galaxy Tab S 10.5)

  9. #24
    New Lounger
    Join Date
    Apr 2013
    Posts
    3
    Thanks
    1
    Thanked 3 Times in 1 Post
    1) Boxcryptor is an excellent product, which works very well with the cloud services I have tried so far. At the moment I have it working on the Windows 8.1 implementation of SkyDrive.

    2) Boxcryptor is German, not American or Chinese. I therefore trust it rather more than most cloud encryption tools. See the website - it belongs to Secomba GmbH.

    3) @David40:
    I don't think there is much possibility of an NSA "back door" in this software, since it was produced by an EU company, which specifies that it has used AES256 and RSA2048 to USA FIPS standards (which are known not to have "back doors").

    4) @VicSetter:
    There are versions of Boxcryptor for Android and iOS. The one for Android seems to work fine. Don't know about Windows Phone, but then I don't know anyone who has one anyway.

    5) @mpoling:
    Boxcryptor has arrangements for sharing with others. I don't know the details, but you can find them on the website. The other people do not need to know your master password. I don't know whether Boxcryptor works with Office365 - have a look at the website - but I think Microsoft is planning to provide encryption anyway.

    "Anyone who can hack a SkyDrive account will be able to decrypt a Boxcryptor cypher" - with RSA-2048 and AES-256, not until around the year 2030, by which time you probably won't care.

    6)@mrjimphelps: See (9) below about "sloppiness".
    Although Boxcryptor is free to sync one provider, you have to pay if you want to sync more than one, or if you are a company - they provide business-grade services. So I don't think you have to worry too much about the quality.

    7) @Doccus, @timsinc, @erniejay856:
    I think you are getting confused between the algorithm, which is the mathematical procedure for enciphering (such as RSA-2048 and AES-256), and the key, which is needed to do the encryption/decryption. Of course the algorithm is in the software on your PC, because you wouldn't be able to encrypt otherwise. And the key has to be generated on your PC too, by hashing your password, likewise so the encryption/decryption can be done. All installations of Boxcryptor have the same algorithms; there are quadrillions of possible keys at least, so none has the same key.

    Once an attacker has physical access to your PC, the game is pretty well up. The best you can do is make sure you have a really good password which would take a few years to brute-force (at least 10 characters, mixed symbols etc).

    @timsinc: You would need to put your Boxcryptor password and key in your will.

    You can back up the hashed-password key to a file on your PC and then store it elsewhere, so you would certainly be able to set up the account again on another PC.

    8) If you really don't trust Boxcryptor, you can set up an account with your own personally-generated key.(In that case even Boxcryptor has no way of recovering the key for you if you lose it).

    Have a look at https://www.boxcryptor.com/en/technical-overview

    9) @radtom, @Doccus, @mrjimphelps:
    Writing "loose" instead of "lose" is a frequent error made by the less well-educated in English-speaking countries, so I think a German company can be excused, particularly as the rest of their text is very fluent, more so than some of these comments. I bet your German is not even a fraction as good.

    10) A similar product is Viivo, this time from PKWARE Inc., so presumably the USA. Again, the basic version is free. I have it working well with Google Drive.

    11) If you want separate "zero-knowledge" encrypted cloud storage, then SpiderOak looks OK (although in the USA), but better is Wuala (www.wuala.com), which is based in Switzerland and Germany, and therefore comes under EU data protection laws. I use Wuala too. It is also business-grade, with good provision for sharing.

    12) If you want to be really sure, encrypt your material with AESCrypt or TrueCrypt before uploading to the cloud.

    I don't have any connection with Boxcryptor, Viivo, or Wuala.

    J M Ward
    Minehead
    UK
    Last edited by J M Ward; 2013-12-13 at 07:34. Reason: AESCrypt, TrueCrypt

  10. The Following 3 Users Say Thank You to J M Ward For This Useful Post:

    bobprimak (2013-12-28),stefanhz (2013-12-18),timsinc (2013-12-14)

  11. #25
    2 Star Lounger
    Join Date
    Mar 2002
    Location
    Waltham, MA, USA
    Posts
    159
    Thanks
    0
    Thanked 1 Time in 1 Post
    What about speed and burden on the computer?

    When you have lots of data, that can be a major concern.

  12. #26
    New Lounger
    Join Date
    Dec 2009
    Location
    Reading, PA
    Posts
    5
    Thanks
    0
    Thanked 0 Times in 0 Posts
    I have a Skydrive account and tried downloading the app for my desktop only to find the app is totally useless as it won't run under Administrator rights with UAC off. Idiotic! Gave up.

  13. #27
    New Lounger
    Join Date
    Nov 2007
    Posts
    1
    Thanks
    1
    Thanked 0 Times in 0 Posts

    Unhappy Unfortunately not working well on Mac (Mavericks)

    I've been using Boxcryptor for Mac for several months until today. Unfortunately.

    The Classic version was very reliable on Mountain Lion (10.8), but after moving to Mavericks (10.9) it got unusable as many file formats could either not be opened at all (Excel) or would show no content (e.g. Word and there were others), i.e., I had to move the files to another location outside the Boxcryptor location to actually open them, and then move the file back after use ... that does not make any sense.

    A few weeks ago, the company published version 2 of Boxcryptor for Mac (it used to be available for Windows for a long time already) and I installed it on the Mavericks computer. Same problems. There were other issues (e.g., running against file length limit on SkyDrive after encrypting folders that were ok on SkyDrive before encryption), etc.

    The company confirmed the problems in their support forum. And that was it ... there was no patch or update within reasonable time. I only put confidential (sensitive) data into those encrypted containers, and I need to be confident, that those data are safe and I can access them any time. That confidence has gone.

    ... unfortunately, since the product idea is excellent and most other things are done well:
    + the key is on my main computer, but not on my cloud drive
    + folder and file names are encrypted, i.e., someone external cannot even read those and guess on contents
    + it can be configured in a way that I have to enter the password each time I want to access the container.

  14. #28
    New Lounger
    Join Date
    Jan 2010
    Location
    Finland
    Posts
    2
    Thanks
    0
    Thanked 0 Times in 0 Posts
    Fred,

    after reading your excellent article "Pre-encryption makes cloud-based storage safer [Newsletter Comp Version]" I _almost_ downloaded Boxcryptor and started to use it.

    But then I started to think about various cases I need my cloud files (MS SkyDrive currently). I'm teaching IT/ICT and mostly it's my course material that I do need. I carry a memorystick but just in the case I loose my USB-stick before lessons, I do have the material in the "cloud" too. I also provide a link to this material to my students as a bit.ly -link. This is the first scenario raising questions.

    What do I need to access files on-the-road (portable Boxcryptor perhaps)? And how about my students? What would they need to access the files?

    And finally some scenarios. What if Boxcryptor "disappears" like some small companies do? And could there be some "backdoor" in the encryption software?

    I do have all of the above mentioned files backed-up w/o encryption to my local backup drive. All the shared material is also under the Creative Commons license(s) (no sensitive data stored in the SkyDrive).

    This whole issue arose after "Snowden"-case, but IMHO that's just a good thing.

    /Teme64

  15. #29
    Silver Lounger mrjimphelps's Avatar
    Join Date
    Dec 2009
    Location
    USA
    Posts
    2,185
    Thanks
    209
    Thanked 213 Times in 205 Posts
    Teme64:

    Welcome to the Lounge!

    If you only need to save your class materials for the upcoming class session, and nothing more, it might be easier for you simply to email them to yourself. Then, when you get to your class, open your email, and everything will be there.

    Jim

  16. #30
    Banned Member
    Join Date
    Apr 2013
    Location
    Miami Beach
    Posts
    46
    Thanks
    1
    Thanked 1 Time in 1 Post
    Pre-encryption makes cloud based storage safer, however it negates one of the most powerful benefits of cloud based storage, real time collaboration. Anyone who has used Google Drive to work with a geographically dispersed team may hesitate to trade that benefit for increased safety.

Page 2 of 3 FirstFirst 123 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •