Encryption is your best protection for Cloud data

22 May, 2021

 

In Ireland recently, and around the world, great focus has been put on the  problem of data privacy on computers, especially, in  relation to ransom attacks. It may be that a decryption key has been obtained for the Irish medical data- patients’ records- encrypted by the attackers, but it is not known yet whether much of that 700 gigs of data will be dumped onto the internet.  If it is, it will be highly embarrassing for doctors and patients and perhaps also for those tasked with the protection of this data as it sits on computers
 
The same ransom risk arises in many other sectors, not mo only medical data, and especially in relation to Cloud storage. The Cloud Computing idea is truly wonderful, holding out prospects for major gains in productivity and technology management, cost savings and opening up many new uses and opportunities for our data.  There are real potential benefits in every sector of the economy, corporate activities, government, professions, education, etc., but the risks far outweigh the benefits if  use of the Cloud leads to data loss, through theft by competitors, damage by ransom attackers, etc.  Data online must be protected and it is and should be the prime responsibility of the data "owners" to provide this protection for their own data.
 
Protection systems most commonly deployed are often breached.. There seems to be a major breach every day if the year. The systems are normally to do with protecting the network, enabling software which authenticates visitors to sites, deciding who should be given access and who not.  These "access control" systems often require careful management by skilled IT Directors or near-blind trust in the online storage companies, such as Dropbox, OneDrive and others. For certain flexibility options they are useful and if fingers stay crossed they may work for years to come.
 
But the best- some security specialists say "the only real" security is to strongly encrypt your data, end-to-end.  In that case, even if the storages are breached, the data is unreadable/ unusable to the attackers.  But the encryption must be strong, and be made on the data owners own machine, wherever he may be when he needs to download it. That is, it should be made by the data owner himself, rather than the storage company or other intermediaries.  (If you aret he owner of data, and you allow someone else to take it from you and encrypt it with his keys and promise tom give it back to you some day... You are no longer the owner!.) In Netssos system, which appears to be unique, files are always encrypted, normally with a three level encryption mechanism, part of which includes the owners master password. It is always en/decrypted on the local machine, exclusively, wherever the owner creates or accesses it. It is never accessible by Netsso administrators or anyone else, apart from the owner and whoever he may send it to, (still in encrypted mode)
 
New members should check it out, under "Online Files" on the left side menu after login. It works in your own online storage, in Dropbox, and/or Google Drive and/or One Drive (and in Netsso Drive for members in Netsso groups) The simple explanation and instructions are in the file About-Manage in the same place. Your file is encrypted, via a checkbox tic, when being uploaded through your Netsso and later decrypts automatically for you when downloading it through Netsso, after login on any computer or Android.. If you forget and download it via your storage "synch folder", then go back to About-Manage and download the Telecryptor programme which will be able to decrypt it for you