funsec mailing list archives

Re: How Dropbox sacrifices user privacy for cost savings

From: Paul M Moriarty <pmm () igtc com>
Date: Fri, 6 May 2011 09:34:15 -0700

Encrypting locally would kill their ability to do deduplication and significantly increase Dropbox's operating expenses.


On May 6, 2011, at 9:12 AM, Joel Esler wrote:

Something tells me that (points to your idea) may be in a future dropbox version.


On May 6, 2011, at 1:25 AM, Jeffrey Walton wrote:

On Thu, May 5, 2011 at 11:28 AM, Paul M Moriarty <pmm () igtc com> wrote:

The thrust of this article is data deduplication is a security risk?  Horse puckey!

What surprised me was that DropBox encrypts your data at its leisure
and pleasure.

Not being a DropBox user, I presumed the data was encrypted locally,
under a key derived from your password/secret, and then transmitted
for storage. But you know what they say about presumptions......

Jeff

On May 4, 2011, at 9:01 PM, Jeffrey Walton wrote:

Interesting reading for DropBox users:
http://paranoia.dubfire.net/2011/04/how-dropbox-sacrifices-user-privacy-for.html.
[SNIP]


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.



_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

How Dropbox sacrifices user privacy for cost savings Jeffrey Walton (May 04)
- Re: How Dropbox sacrifices user privacy for cost savings Paul M Moriarty (May 05)
  - Re: How Dropbox sacrifices user privacy for cost savings Jeffrey Walton (May 05)
    - Re: How Dropbox sacrifices user privacy for cost savings Joel Esler (May 06)
    - Re: How Dropbox sacrifices user privacy for cost savings Paul M Moriarty (May 06)