CRYPTOGRAPHIC KEY GENERATION

When we think about cryptographic keys, we tend to think about closely guarded secrets. Keys are the only thing that keeps the attacker away from your encrypted data. Some keys are usually treated with the appropriate level of respect. Security professionals in the payments industry, or those that have deployed a PKI, know all too well about the importance... 

Richard Moulds

Improving Safety On The Digital Highway

Digital Highway Safety

When it comes to transportation, safety is highly consequential. From educational programs to legal penalties, safety is principle to the way that travel is spoken about and acted upon.

But what about digital travel? Although user files are hardly as important as users themselves, they often contain sensitive information. As cloud computing’s momentum increases, both users and cloud storage providers should be thinking about digital storage in terms similar to personal transportation.

On this digital highway, industry standards for safety should further the following:

Safeguarding Basic User Information

With the average household containing five connected devices, digital users are easy prey to hackers. Popular cloud storage providers, which rely on inadequate end-to-end encryption software to curb ISP hacking, remain susceptible to information breaches.

red-alert-code

(Image Source: Shutterstock)

Like seatbelts and airbags, cloud storage providers should include features in their platforms that optimize user safety. These features should be innate, and, with minimal effort from users, constantly working to improve the well-being of stored information. The best cloud storage platforms should incorporate:

  • Client-Side Encryption: Unlike end-to-end encryption, which transfers files across third-party servers, client-side encryption performs all encryption directly on a user’s device. This means that plain text files never need to leave a user’s device unless the user wants them to.
  • Personalized Encryption Keys: To maximize security when encrypting files, cloud storage providers should only allow a single encryption key. With client-side encryption, users set their own passwords, giving them complete control over the safety of their files.
  • Zero-Knowledge Privacy Guarantees: With encryption happening solely on a user’s device, cloud storage providers are blind to the type, content or name of the files that a user stores. Similarly, because users are in control of their own encryption keys, passwords and user information are never stored on a provider’s servers. Although this means that if a key is lost the corresponding files can never be unlocked (not even the platform knows a user’s key), the strategy is an effective way to increase user responsibility over cloud storage and transportation.

Educating Users on Current Trends

tech-trends

Not only should cloud storage platforms protect user data, but they can simultaneously encourage users to increase their own understanding of cloud storage trends. Cloud technology is complicated and highly technical, and, like driver’s education or roadside billboards, bite-size tips can educate users on easy ways to keep their data safe.

For example, Barbie’s newest reincarnation, Hello Barbie, could inappropriately store children’s interactions on the cloud. While many parents fail to recognize the impact of the cloud on their daily lives, storage providers can highlight simple strategies to safely navigating the digital universe.

Providing Users with Storage Choices

Safety is not a universal experience, and what feels safe to one person might feel completely unsafe to another. When picking transportation, users are given multiple options to personalize their safety: car or train, cheap or expensive. Similar opportunities exist for cloud storage providers.

As all encryption happens on a user’s device, providers using client-side encryption authorize users with complete control over what data is encrypted. When storing a wide range of personal files, discretionary encryption helps users keep safe what needs to be protection most. For example, users can choose not to encrypt photos to allot easy sharing, while encrypting loan documents or other private files to increase their safety.

When getting into a car, one of first things drivers do is buckle their seatbelts. On a plane, passengers sit through an extensive emergency evacuation plan. And even on a rollercoaster, riders are advised to keep their limbs inside of the ride at all times. Across all modes of transportation, brands and businesses work to ameliorate safety standards.

For most, transportation security is second nature, and the same level of attention should apply to cloud storage security. Improved security features are increasingly important too, as industry leaders speculate that 2015 could be the worst year for hacks ever. Through additional security features, cloud storage providers can give users optimal protection, which, until now, has been troublingly absent from cloud storage systems.

It might be the worst year ever, but, in adopting better security measures, cloud storage providers have the opportunity to influence just how bad it will be.

By Tunio Zafer

About CloudTweaks

Established in 2009, CloudTweaks is recognized as one of the leading authorities in cloud connected technology information and services.

We embrace and instill thought leadership insights, relevant and timely news related stories, unbiased benchmark reporting as well as technology related infographics and comics.

Comments are closed.