Encrypt your data securely in the cloud: How you can further increase your data security through open source
Maybe you've been looking into encrypting your cloud storage for a while now, and you've come across "open source" solutions. Maybe you're wondering why open source is so important if you want to encrypt your files? Here we explain it to you.
To help you understand what open source actually means, let’s start with an example.
Imagine you are in a foreign city. In the evening, you visit a part of town that is considered a bit shady. There, you go to a bar and want to have a drink.
Which of the following scenarios sounds safer to you:
The bartender prepares your drink right in front of you.
A stranger offers you some of his drink.
You probably already sense a tendency: The stranger may look nice – and in most cases there is certainly no reason for suspicion.
But you don’t know: What if there is something in the drink that shouldn’t be there?
And maybe the old saying comes to your mind: Trust, but verify.
Trust, but verify – especially if you want to encrypt sensitive data in the cloud
And it’s exactly this advantage of verification that open source software offers you when you want to encrypt your cloud storage (such as Dropbox).
To come back to the example with the bar: In fact, it would even be possible for you to mix your own drink.
Because open source allows you to do just that: The instructions and all the ingredients are available. In addition, you even have the option of adapting and further improving the recipe if necessary.
Exactly how open source software increases your data security
At first glance, you don’t “see” the aspects of open source in the software itself. This is because the advantages lie in the security-related criteria for the development of the software.
Before we go any further, let’s now briefly look at the following axiom of data encryption (cryptography):
The security of an encryption process must depend solely on the key and must not be based on the secrecy of the encryption algorithms. (The so-called Kerckhoff's principle.)
Thus, since security depends only on the key, there is no disadvantage in publishing the algorithm.
At the same time, however, open source has many security-enhancing advantages:
The source code can be viewed by a community of programmers – from hobby programmers to security researchers – which directly detects unauthorized access.
Because anyone can view the source code, it prevents backdoors for governments, law enforcement agencies, or business partners from being built in unnoticed.
So if someone unauthorized had access to your data, it would at least be noticed very quickly.
The source code is constantly reviewed and thus continuously improved.
Apart from official audits, the source code is also used by third parties and is thus constantly checked.
If vulnerabilities are found, they cannot be silently ignored. If there is ever a problem, it is quickly noticed and the provider of the encryption software is forced to react quickly. Both the cause and the remedy are publicly documented.
So you can rest assured that when you encrypt your cloud storage, the security is not just verified one-time intensively, but also on an ongoing basis by professionals.
History shows that in other cases (with so-called closed-source software) security vulnerabilities remained unfixed for years because the provider had no public pressure to react.
The source code is copied hundreds of times, which makes the encryption independent of the provider.
Even if the encryption software provider eventually ceases operations, you will still have access to your encrypted data and can continue to encrypt your cloud storage.
This is because the source code is copied hundreds of times and can be legally re-published by others.
Encrypt cloud storage with open source software: On the safe side with Cryptomator
Cryptomator is just such an open source encryption software. Thanks to its open source nature, maximum transparency is guaranteed. Thus, the security of your data is secured on many levels and constantly increased:
- In addition to the actual code, quality metrics from automated tests as well as bug reports are publicly available.
- The code is constantly adapted to the latest standards.
- Feedback from the community is implemented immediately.
- We use proven ciphers for encryption, the correct use of which has been audited several times and is also constantly verifiable.
- It is impossible for us to hide security vulnerabilities for marketing or other reasons, because the entire code can be checked by the community at any time.
All this leads to an outstanding robustness of the cryptographic implementation, which has also been highlighted by auditors:
The cryptographic implementation exhibited a quite exceptional level of robustness.
In other words: This robustness increases your data security many times over when you encrypt your files in the cloud with open source software.
With Cryptomator, we also put a focus on high user-friendliness. You can use Dropbox, Google Drive, OneDrive, etc. as usual and at the same time know that all your sensitive data is safe.