>Adding to this list is an often overlooked aspect of iOS privacy: the lack of end-to-end encryption on iCloud. That means that while Apple can refuse to help law-enforcement agencies in unlocking a phone because it does not have the means to decrypt it without creating a back door, it cannot say the same when the FBI asks for a person’s iCloud backup.
Hol up, unlike Android, iCloud backups are not end-to-end encrypted? That seems like a rather big privacy/security concern.
>while Apple use a lot E2E encryption by default so i don't know why you say that.
I would say that because it is the truth:
https://www.boxcryptor.com/en/blog/post/iphone-backup-icloud-encryption/
You can actually use Boxcryptor to encrypt all your data on your Mac or Windows before sending it to the cloud. I’m using it for a while now and it works great!
Sorvoliamo completamente sul fatto che hai dato del cretino in malafede all'autore dell'articolo (riguardo il quale invito a dare un'occhiata al lavoro enorme che costantemente fa Etica Digitale, su iniziativa personale e con appena i contributi necessari a tenere su il sito). Diciamo che non ti piace l'articolo perché il testo del regolamento ti rassicura.
In virtù di ciò ti invito a leggere ciò che scrive al riguardo BoxCryptor, compagnia esperta in crittografia, sul perché, anche se il regolamento sostiene di non dover essere interpretato come un indebolimento della crittografia e2e, al livello implementativo le strade intraprendibili sono molte poche e anche nel migliore dei casi aprono a una serie di vulnerabilità e precedenti pericolosi.
Ricordo infine che la campagna di informazione riguardo il chat control è un'iniziativa del Partito Pirata, e nello specifico di Patrick Breyer, le cui motivazioni (nonché expertise) puoi leggere sul suo sito. Perdonami se oso pensare che un esperto in legislazione su protezione e ritenzione dei dati possa avere più esperienza e comprensione della situazione rispetto ai nostri vetusti parlamentari.
Se dopo tutto ciò sei ancora così calmo, non posso che congratularmi per il sangue freddo, ma anche essere un po' sconsolata.
Sicuramente c'è tanta informazione fatta sull'indignazione. Purtroppo, ci sono anche tante persone a cui piace fare i pompieri.
Boxcryptor! https://www.boxcryptor.com/ Encrypts files stored on almost any cloud provider. To get hacked, your online cloud provider AND your boxcryptor password must compromised. Odds of both of those is very slim.
Andere Sache, die EU verpflichtet Dienste wie Gmail, Skype etc Bilder und Videos automatisch nach Kinderpornographie zu überprüfen (Quelle: https://netzpolitik.org/2021/eprivacy-ausnahme-eu-billigt-durchleuchtung-privater-chats/ hoffe der link funktioniert, schreibe am Handy)
Eine Hintertür damit das auch bei verschlüsselten Diensten wie WhatsApp funktioniert, soll möglicherweise folgen (Quelle: https://www.boxcryptor.com/de/blog/post/e2ee-weakening-eu/#plant-die-europ%C3%A4ische-union-die-abschaffung-von-ende-zu-ende-verschl%C3%BCsselung)
> Ah, love me some articles from 5 years ago
Since you appear to be having trouble parsing dates, I've updated my post to make it clearer for you, and added a few more links from 2020.
And if you're thinking "I'll use iMessage!", that too, has it's own security issues, and should not be trusted. This is especially important after they've reduced their security to allow viewing data in iCloud, to comply with Federal requests for that information.
Nextcloud is not designed as “zero Knowledge” service. So, yes, in most cases you have to trust the administrator.
You may add an additional layer of Encryption. You already mentioned cryptomator. You may also take a look at https://www.boxcryptor.com/
Set my own 448-bit private key in CrashPlan which encrypts everything before it uploads, and they don't have my key.
If you use some other services you could probably use boxcryptor.
Don't want dropbox to read your files? You can of course use another service, and trust that one not to violate your privacy, or use boxcryptor : https://www.boxcryptor.com/
Nothing changes for you, except that you can't use the dropbox website to access your files, and you just install the boxcryptor client instead of the dropbox client. Dropbox (or any other cloud storage you use) only has encrypted data this way, and you still have pretty much the same experience.
This is something all "cloud services" should have. All data should be encrypted by the user, and only the user should ever get access to those files.
By the way, if you want encryption for your Google Drive files, use this extension (you have to drag and drop it to your Extensions page in Chrome):
https://www.boxcryptor.com/labs/
You create an encrypted folder in Drive with a password, and then you can just drag and drop files to it. And no one but yourself will be able to see what's in that folder. It's pretty great, but Google should offer this functionality by default.
They should do it fast, because as the article mentions, FBI are already trying to lobby for a law that forces companies to give them all the keys of the encrypted stuff they have. So Google should offer local encryption right now, to get users used to it, and so there's an outrage against the politicians if they try to pass that later.
>Summed up:
>Backups of iPhones on computers: Are encrypted end-to-end. Backups of iPhones in the iCloud: Are not encrypted end-to-end.
pCloud
Works on linux
Support encryption, but at a separate subscription cost (Personally, I'm using Boxcryptor)
No 1TB tier, only 500MB or 2TB
2TB is US$ 7.99 /mth
My referral link, so that the person who sign up with it and I can get 1GB space each
I imagine this is what they’re referencing. https://www.boxcryptor.com/en/blog/post/iphone-backup-icloud-encryption/
Being protected by your Apple ID/Password isn’t end to end encryption as far as I’m aware.
Not brainless. This has been in the works for a long while. E2E encryption, but with backdoors built-in
> EU will probably shut it down
The EU will do Jack shit
> The discussion about undermining end-to-end encryption gained new momentum after the terrorist attack in Vienna in November 2020. Although it was already clear shortly after the murders that authority failures had a significant impact on the perpetrator's ability to obtain a weapon, Austrian Chancellor Kurz and French President Macron agreed to push the issue of chat searches back up the European Union agenda.
Microsoft can indeed access your data:
"Who can theoretically still access your data in the OneDrive Personal Vault:
- Microsoft
- Microsoft’s employees
- Third parties to whom Microsoft grants access (according to the American CLOUD-Act, for example, providers are obliged to release user data on request of the American authorities).
- Hackers that gain access to your OneDrive Personal Vault"
Source: https://www.boxcryptor.com/en/blog/post/onedrive-personal-vault-security/
I am using Boxcryptor for some months and am happy with it. Works with 20+ clouds, I personally tested it with Onedrive, Google Drive and Amazon Clouddrive.
It uses AES with PBKDF2 with HMAC SHA512. More technical details here: https://www.boxcryptor.com/en/technical-overview/
It's generally free, but you need a paid account if you want to use more than one "cloud" and more than two devices at once. You also need the pro version if you want to have the filenames encrypted as well.
You can have encrypted and unencrypted folders next to each other with no problem.
In newer Windows versions it integrates as an own drive, similar to Onedrive does in Windows 10. In the portable (Java) version and mobile apps it uses the corresponding provider APIs. Only downside is that, for now, the mobile apps don't show previews for images. In Windows it "feels" like a regular synced folder.
The comparison of free and paid can be found here, so you are in the clear about it and don't regret it in the end, I personally am satisfied with paying for it, though:
https://www.boxcryptor.com/en/pricing/
If you want to give it a try you can also use my "invite" link which will give you a free month of "pro" to test all its features. (and, to be honest, give me a free month as well :-D):
https://www.boxcryptor.com/app/referral/?code=e46jFWtNj44yYhKn
Otherwise you're, of course, free to just check it through a regular, non-referral link. :-)
Oh, and yes, it does have 2 step auth through regular Authenticator (Google, Lastpass, MS, Authy, whatever supports that common standard)
Encrypt it yourself (properly), and then store it in the cloud. You can do it manually, or automatically with something like https://www.boxcryptor.com/en/dropbox/
Boxcryptor is probably exactly what you're looking for: https://www.boxcryptor.com/en
Rclone & Arq 5 I have used and can recommend for sure. I only encrypt my personal data.......basically anything that you can't find in a torrent somewhere......stuff I created, pics/video I took/made, OS & Application image, etc. You can read my rant here: https://www.reddit.com/r/DataHoarder/comments/5vdvnp/finally_an_answer_from_amazon_cloud_drive_and_a/de3qlb1/
It does work on mac, which i do have a mac book. But i really need it on my Windows desktop for continuous connectivity.
Edit: Try Boxcryptor. it looks like it does exactly what Arq does. It is free. For Amazon Cloud Drive you need to use the portable version so it has direct access to Amzn API
https://www.boxcryptor.com/en/blog/boxcryptor-now-supports-amazon-cloud-drive
Have you looked at Boxcryptor ? I use the OSX client and Google Drive sync in conjunction with the (still beta) Chrome extension. They also have a Windows client that I haven't looked at. There were a couple of quirks setting it up, but it works for my purposes.
Best free way, up to 2 GB:
Few months ago I was thinking about the same thing, how do i encrypt my files before I upload them in cloud storage, and the result of the search I found this.
It would be nice if someone can tell us if they have tried this service,
The pin code function is not available anymore in boxcryptor since the last major release with file integration. At least this is what their blog says (don’t use it by myself)
https://www.boxcryptor.com/en/blog/post/everything-new-boxcryptor-for-ios/#goodbye-app-protection
Did you know that iCloud backups are not end to end encrypted?
https://www.boxcryptor.com/en/blog/post/iphone-backup-icloud-encryption/
This essentially means that your entire phone is insecure if you back up the device to iCloud.
Food for thought...
Cryptomator has some open source, so you can check for backdoors. Some people find that a good thing, so the community can check the app. But not all apps of cryptomator are open source. Boxcryptor is audited recently with good results.
You can read more here: https://www.boxcryptor.com/en/blog/post/cryptomator-check-cloud-encryption/
My recommendation is to use the cloud provider of your choice, and then add in your own encryption of the files on top of their security.
Boxcryptor is a good choice for that- it's what I use.
I don't buy into the hype that the cloud is not private. Use a reputable vendor (Google, MS, Amazon) and good security practices and you should be fine.
Just to highlight some good practices for you - use 2 factor authentication, create and use a seperate email account ONLY for your cloud account, change your password often and if you want to be really paranoid use something like https://www.boxcryptor.com/en/ to encrypt your files as well.
> Yep. Services like Dropbox are super convenient, but because they hold all of the keys for the encryption/decryption of my data
You can use BoxCryptor classic. One folder on Dropbox (or OneDrive, GoogleDrive or Mega - whatever) will store files encrypted by BoxCryptor. With BoxCryptor client you can mount it as a separate drive. There was also client for Android.
The only limitation I found is the path length - windows client sometimes complained about it.
Here is a link to the description of their security from a technical overview: https://www.boxcryptor.com/en/technical-overview
They state that it is HIPAA compliant. That doesn't make it perfect, but is certainly a step about standard providers.
Worst case scenario, is it possible to encrypt the fiiles before you upload them? This would be double work and you could run into compatibility issues. If your stuff is that sensitive, frankly I would contact support and sales and ask for certifications/proof of them.
Disclaimer: I am not an expert. Any choice you make is at your own risk, I cannot be responsible for anything that may malfunction or anything bad that happens. The comment was only reference purposes.
(I am not trying to be a jerk. It is more of a liability thing. I am not responsible, use at your own risk. That goes with any software).
Good luck. Do some more research and I am sure you will find a solution you need (Whether it be Boxcryptor or not). I have no affiliation with any cloud provider.
No, the first step is to cover your own ass, THEN educate people as to how to do the same.
Seriously, encryption is not that hard to use. Try a service like Boxcryptor. It's cross platform so you can still access everything from your mobile device as well. If it wasn't a problem for the NSA and FBI, they wouldn't be trying to get congress to outlaw it as a terrorist tool.
Properly used encryption, along with a decent VPN service, and an open source based firewall can keep both the government and hackers out of everything you do (that they don't observe with actual eyes through surveillance) except for your voice calls and text messages, and even that can be fixed with apps, although the pain there is that the person you are communicating with needs the same apps. But for everything else, you can lock it up all on your own.
I don't know where I could even find such a statistic, but just from my own conversations with people both on line and in person, I estimate that 4 out of 5 people who are bitching about the NSA still aren't taking this basic step to correct the situation. These are the people who are educated on the situation. If they are too lazy to fix things, why do you think educating the people who don't know about any of this will do any better even if you do educate them?
You have this one that's free for personal use. As well as Boxcryptor. Whatever you choose always take a program that uses AES-256 at minimum.
Lots of law firms use Dropbox. If you have absolutely no on-site servers, firewalls, or IT support, you're probably better off going with a hosted service like Dropbox. You can use software called Boxcryptor if you want more security.
Je ne sais pas si c'est normal mais c'est un fait. Seul l'usage d'applications ne pouvant pas avoir de backdoor (i.e. Signal) garantit une certaine sécurité, malheureusement l'UE veut avoir son mot à dire là dessus : https://www.boxcryptor.com/en/blog/post/e2ee-weakening-eu/
You link says it is encrypted in transit and on server, but not E2E.
https://www.google.fr/search?q=icloud+backup+fbi
https://blog.elcomsoft.com/2021/01/apple-scraps-end-to-end-encryption-of-icloud-backups/
https://www.boxcryptor.com/en/blog/post/iphone-backup-icloud-encryption/
And yet they have a section on exporting your key, Which is stored on their servers, which STRONGLY suggests they’re storing your key.
I understand why they store it, but people need to understand that with “web access”, you’re just 3 lines of JavaScript away from exposing your private key password, and I don’t know anybody that actually checks the 10+ MB of JavaScript being downloaded for “web 2.0” pages.
The iCloud backups and photos don’t fall under the “End-to-End encryption” section on that site. They’re stored encrypted on the servers, but the encryption key is stored with it. Kinda arguing semantics, but to Apple, end-to-end encryption means only the user has the key, which is what I meant.
https://www.boxcryptor.com/en/blog/post/iphone-backup-icloud-encryption/
https://www.google.com/amp/s/mobile.reuters.com/article/amp/idUSKBN1ZK1CT
I can say that syncing and automatically uploading your (encrypted) photos with the Boxcryptor app works with the mobile app (camera upload).
But I am not so sure about using Boxcryptor for mobile backup to Google: As far as I can tell this backup can only send your phones data directly to Google not encrypted by Boxcryptor, because Boxcryptor doesn't encrypt your whole Android device. Maybe you could achieve that with a third party backup solution that you sync directly to Boxcryptor using Google drive.
Boxcryptor allows usage of two devices for free. Thus you could use it on your desktop and on your mobile without paying. If you want to use it on more than two devices you have to get a license. I tried both Cryptomator and Boxcryptor. IMHO, Boxcryptor is much more mature and the iOS App is really good.
When you install the app, it automatically detects my iCloud service and then I can use it instantly. For some cloud storage, you need to click on the provider you want to add and login to the cloud service.
This is supported: https://www.boxcryptor.com/en/providers/
Within the app there’s a option to save photos automatically encrypted to the cloud. I don’t use this option, so I don’t know how this is working.
Just download the app. It’s free to use for one cloud provider and two devices. So you can test what you want to achieve.
Like Cryptomator, you can add encryption to Google drive with Boxcryptor
But as others have said, there are good replacement options like Sync.com, pCloud, Mega, Icedrive. Protonmail has a beta protondrive (web interface only) now too.
I know that story.
But I also know the stories about people who forgot their passwords or where I have put that paper/ledger or the dog ate my ledger.
Every storage system has pros and contra.
Take Boxcryptor encryption in the cloud. It's the same story for Onedrive and Dropbox.
This is 1 file between thousands. All encrypted filenames and files.
Boxcryptor uses 0-knowledge encryption.
https://www.boxcryptor.com/en/encryption/
I only have to remember the Boxcryptor password to open all these files.
Opt out of contributing Siri recordings
If you store data in iCloud, you can encrypt it before upload using something like https://www.boxcryptor.com/en/
Hi u/A_Kobold_Rut
my name is Philipp from Boxcryptor.
We currently have a cooperation with PIA, so the Boxcryptor license is free for one year.
To make it short: Boxcryptor is an end-to-end encryption solution for cloud storages (OneDrive, Dropbox, Google Drive, ...).
Boxcryptor encryts and decrypts all files before uploading them to the cloud, so you have to install our client. We do support all major platforms: https://www.boxcryptor.com/download/
Our help pages provide you with a quickstart guide. If you need assistance or want to share feedback, feel free to reply or send me a pm.
Greetings from Germany
Philipp
It can't be equally secure because the data in OneDrive Personal Vault is not client-side encrypted. It just adds a second factor during authentication. See: https://www.boxcryptor.com/en/blog/post/onedrive-personal-vault-security/
https://support.apple.com/en-us/HT202303
https://www.boxcryptor.com/en/blog/post/iphone-backup-icloud-encryption/
The Boxcryptor’s article states that this second key is just the user’s passcode. Apple’s article states that this second key is obtained from information unique to the device, combined with device passcode.
There seems to be some contradiction here. The Boxcryptor’s article might be wrong. I doubt a short PIN is used for e2e encryption of the keychain. Apple might be using secret keys unique to device that even apple does not have (like randomly generated on device). If all that Apple doesn’t know is passcode, a lot of people use short pins which means e2e encryption is easily cracked by Apple or government.
This isn't true. End to end encryption can use a server and in that case implies the message is not unencrypted on the server. For example Google Allo was end to server to end encrypted, as you put it, because the messages were encrypted to the server then decrypted before being encrypted on transit to the target device.
Boxcryptor has good explanations on their website of how they implement E2EE with a server in the middle: https://www.boxcryptor.com/en/technical-overview/
>Privacy
Oh, they make a nice fuss around privacy and encryption. But they caved in and they do not talk about it openly.
Not to mention their China shenanigans.
If privacy and safety are of essential importance, I agree with the other poster in that you should just self encrypt with a service like Boxcryptor or Cryptomator if you're using Google Drive and want that additional privacy confidence.
Se sei preoccupato della privacy, ti consiglio di farti un Nextcloud self-hosted. Puoi addirittura usare un Raspberry Pi.
Altrimenti so che esistono servizi che criptano i dati all'interno di Google Drive.
Tipo questo
this is the reason why I run my own Next Cloud instance and if I have to use a manufacturer cloud, I encrypt all files there with Boxcyptor.
I use Boxcryptor. Highly recommend, as there is a client for my iPhone and iPad. To be fair, I don’t encrypt everything anyway. Just about 20GB of 2TB.
I use Onedrive, Google Drive and nextcloud with Boxcryptor. Everyfile is encrypted when uploaded so they don't see photos only encrypted data. https://www.boxcryptor.com/en/
Hi adolescentchimpanzee,
this is Philipp from Boxcryptor.
Once a paid subscription ends, your account gets downgraded to the free license. That means you can always access your encrypted data.
Just download Boxcryptor (www.boxcryptor.com), make sure you have access to your encrypted files (e.g. sync your cloud storage, plugin your usb drive, ....), sign in using your Boxcryptor account and you can access the files.
If you have any questions left please feel free to reply to my message or simply contact our support ( [email protected] ).
​
Greetings from Germany
Philipp
I use google drive since I have unlimited data, but all my documents are encrypted with boxcryptor (referral code) feel free to use the code or not. I like their interface in general but wish it was faster
>but have the keys stored separately yet controlled BY IT for recovery purposes
besides the "Customer-Managed Keys"-Feature: we also offer an option to export your keys: https://www.boxcryptor.com/en/help/boxcryptor-account/windows/
Hi pbutler6163,
I am Philipp from Boxcryptor.
We do have the option to manage your own keys available. You can find more information here: https://www.boxcryptor.com/en/for-teams/ (scroll down to "Boxcryptor Enterprise" and see the "Customer-Managed Keys" section). You can always contact us via [email protected].
Thanks and greetings from Germany!
Hi,
Maybe you'd like to check out Boxcryptor's local accounts where your (encrypted) keys are stored in a local key file instead of our servers. You can find more information about it here in our Help pages: https://www.boxcryptor.com/help/boxcryptor-account/#local-account
Best regards, Robert
you can try adding a extra layer of security encrypt the data before uploading to gdrive or other provider using a service like https://www.boxcryptor.com/en/ it's works for many cloud storage providers. keep in mind that boxcryptor is NON US base company (advantage maybe) and is close source.
Boxcryptor does not currently support Google File Stream:
https://www.boxcryptor.com/fr/help/work-with-files/windows/#on-demand-files
The intended workflow is that you'd use Boxcryptor against the locally sync'd folder for your cloud service provider and any changes would get written to the cloud. So, for example, if you use Dropbox and had 100GB of encrypted data in the cloud, you would need to sync 100GB to your local machine as well to work with it in Boxcryptor.
Boxcryptor has been around fow a while now and does just this. It is compatible and runs on Windows/OS X/Linux and is compatible with ACD and others. https://www.boxcryptor.com/en (Only the portable version runs on Linux as of now)
I used BoxCryptor Classic for a long time, but finally switched to StableBit. Using SB Clouddrive and DrivePool I build a multiple vendors based drive and that simplified my cloud backups massively
Maybe Boxcryptor is a solution for you. Boxcryptor (www.boxcryptor.com) uses the highest possible standart of encryption (AES and RSA Encryption, more information on: https://www.boxcryptor.com/en/encryption). The things I like the most are, that boxcryptor is a) easy to handle, b) free for personal use and d) the server, where your encrypted files are stored, is located in Germany (its a German firm). I use it for all my sensitive files stored in a cloud storage. But this is just my opinion :)
the tool itself mounts the drive (you just sign in with your amazon credentials i believe there is a trial on the site so you can see if it works before buying it), if you wish to encrypt data, you'll need to install boxcryptor https://www.boxcryptor.com/en and set its folder to be inside your now mounted amazon drive, then point plex to the boxcryptor mounted drive.
I use this thing in combination with dropbox for sensitive materials. Much more efficient since there's no need to update whole container every time something changes.
If your storing data which should be encrypted such as passwords or bank details then yes you should be encrypting it. But this is also true for everything piece of data that you store online as nothing is truely safe.
If you want to to automatically encrypt your information on dropbox look into <strong>Boxcrypter</strong> this will encrypt all your information locally then upload it to dropbox.
Google with Google Authenticator to date has proven itself to be reasonably secure. Before I would go through a switch from Google I would look into services such as Boxcryptor which encrypts Google Drive content.
> Use dropbox or any other cloud-based system: Though this does what I want it to do (I change a file in one computer, the file gets updated in the other), I am not too fond of the idea of having all my coding projects sitting in a Dropbox folder/directory.
Encrypt it. Problem solved. https://www.boxcryptor.com/en
If you go with Syncthing, you can use Boxcryptor Classic which uses EncFS at the core, or EncFSMP.
Create an encrypted folder using EncFS and setup Syncthing to watch that folder. Only the mount the folder on trusted devices. Syncthing can only see, and thus will sync ust the encrypted files to whatever devices you add to the network... for example your VPS. Should your VPS be compromised the data is unusable without your passphrase.
You can build a system that gives you more security than Bittorrent Sync while also giving you more control over the individual parts. Let EncFS do the encryption and let Syncthing do the syncing. Let each app do one thing well. (the unix way!)
Hope this helps!
Boxcryptor allows you to encrypt your files before sending them up to a cloud storage. It supports Dropbox, OneDrive and google drive. It also has mobile apps for iOS, Android and Windows phone and Blackberry 10. Information about their encryption can be found here.
Disclaimer: I don't work for Boxcryptor and I have no interest in the company other than as a user. I just find it is a really good and easy-to-use tool for adding additional security for things I need stored in the cloud.
Bekijk Boxcryptor eens een keertje. Ik gebruik m'n Dropbox nog steeds voor bepaalde dingen maar gekoppeld aan Boxcryptor waardoor over alles een AES-256 en RSA encryptie gaat. Met hun app kan ik nog steeds overal bij.
There's the classic version of Boxcryptor that is not sold through the software as a service model, but just with a one time payment.
https://www.boxcryptor.com/en/classic
Differences with the new edition:
https://secomba.atlassian.net/wiki/display/DOC/Boxcryptor+vs.+Boxcryptor+Classic
Did you not have two factor auth turned on? You should fix that.
Also, even if Dropbox is toteshaxxored, BoxCryptor removes any worries that my data would be unsafe.
Much depends on your definition of safe. :) For general personal use I would think it safe enough.
There's a bunch of tools out there that will do this automatically for you. Boxcryptor, CloudFogger, Viivo, etc.
Differentiations on usability, protection all similar.
I haven't used it much (I use ownCloud) but boxCryptor (https://www.boxcryptor.com/) looks like a good solution that wraps existing storage services (Dropbox, Box, Google Drive, etc) and encrypts file names/data for some/all your files.
I like the idea of separate entities handling the security and storage.
I think, under the covers, it uses encFS.
> because security and crypto are hard
Not that hard, my android phone is encrypted and all it requires me to do is enter my normal unlock PIN before it'll finish booting up.
For dropbox: https://www.boxcryptor.com/en/dropbox
I've sure there are similar tools for Drive and iCloud too.
> Don't sync sensitive information to cloud services like iCloud, Dropbox, OneDrive, etc without encrypting the file before syncing. You can use things like a password protected archive (zip, rar), or encrypted OneNote Notebook.
I just started using BoxCryptor and it seems like it should get the job done pretty well.
Yes, I should really give up all this convenience just so the NSA can't read my homework.
Also: https://www.boxcryptor.com/ (I personally don't use it, but if you would like to avoid other people reading your stuff, this is a good one.)
That is why I used BoxCryptor in conjuction with cloud services even if certain cloud service has an encryption in place already (that just means my files are double-encrypted) since it encrypts my files on the fly, so the cloud service only has an encrypted copy of it.
Storing those in dropbox is a somewhat terrible approach because the entire container has to be transferred every time you change a file. Boxcryptor tries to solve the problem, unfortunately using either of these things renders the mobile versions of dropbox unusable.