Feeds

So you broke our encrypted files? Ha! They were DOUBLY encrypted

Even if they steal the cloud, they can't get the rain out

Securing Web Applications Made Simple and Scalable

Developers have launched a sync-and-share service aimed at small businesses that adds an extra layer of encryption absent from popular services such as Dropbox and Box.

InfraScale says its Filelocker software protects data by encrypting it locally, in-transit and again in the cloud. Files are encrypted with a user's personal passphrase before leaving a device, transferred over a standard 256-bit SSL connection, encrypted again for peace of mind server-side, and then stored in the FileLocker cloud. InfraScale said it doesn't have access to the clear text of users' data.

Presumably these measures are in place to ensure that anyone intercepting data in transit, or compromising the cloud servers, cannot easily recover unencrypted information.

FileLocker is free for five people and up to 25GBs of cloud storage (5GB per person), and supports desktop sync and mobile access albeit with a couple of limitations.

"The HTML5 mobile app will work for free and it lets you search, get your content on the go, download it, preview it and share it. But free users won't get the native mobile apps," explained Ken Shaw, chief exec of InfraScale told El Reg.

The company also offers a paid-for version of the service targeted at companies that want to run Filelocker on their own internal servers. Both versions of the technology launched on Tuesday.

That morning also marked the launch of another similar but more consumer-focused service. Scrambls for Files allows users to encrypt all types of files and folders before they are sent to cloud services such as Dropbox. The free technology is an extension of previous Scrambls services from Wave Systems Corp that allow users to control and encrypt social networking messages*.

Many sync'n'share startups are marketing file-sharing services that claim to be more secure or enterprise-friendly than Dropbox and Box. Other players in the online storage arena include TeamDrive, Microsoft SkyDrive, Google Drive, SugarSync, Accellion and many others.

End-to-end encryption is standard issue for enterprise apps, we're told. Business-grade file-sharing services also offer collaboration tools to securely synchronise of data across tablets, smartphones and desktops.

"While it is true that some consumer-grade solutions lack these basic security features, for business solutions they are table stakes," Paula Skokowski, chief marketing officer of Accellion, told El Reg. The company launched Kitepoint on Tuesday, which offers companies a unified view of content pulled from Sharepoint, enterprise content management systems, Windows file servers, and other stores throughout an organisation. The software is part of Accellion's Mobile File Sharing cloud-based platform. ®

Bootnote

*Scrambls users are able to choose exactly who can see and read any scrambled files by forming groups (based upon email address and Facebook contacts and groups, etc.) Anyone outside the group will see only obfuscated text.

Mobile application security vulnerability report

More from The Register

next story
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
NUDE SNAPS AGENCY: NSA bods love 'showing off your saucy selfies'
Swapping other people's sexts is a fringe benefit, says Snowden
Own a Cisco modem or wireless gateway? It might be owned by someone else, too
Remote code exec in HTTP server hands kit to bad guys
British data cops: We need greater powers and more money
You want data butt kicking, we need bigger boots - ICO
Crooks fling banking Trojan at Japanese smut site fans
Wait - they're doing online banking with an unpatched Windows PC?
NIST told to grow a pair and kick NSA to the curb
Lrn2crypto, oversight panel tells US govt's algorithm bods
prev story

Whitepapers

Reducing security risks from open source software
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.