Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
Next revisionBoth sides next revision
cloudencryption [2018_01_30 17:23] – external edit 127.0.0.1cloudencryption [2019_09_30 14:00] – [Team Encryption] jim
Line 13: Line 13:
 ===== Encryption Algorithm ===== ===== Encryption Algorithm =====
  
-SME uses AES-256 encryption using the Rijndael cipher, with Cipher Block Chaining (CBC) where the block size is 16 bytes. The cipher Rijndael consists of:+The File Fabric uses [[fips|FIPS certified]] AES-256 encryption using the Rijndael cipher, with Cipher Block Chaining (CBC) where the block size is 16 bytes. The cipher Rijndael consists of:
  
   * an initial Round Key addition   * an initial Round Key addition
Line 27: Line 27:
 ===== Encryption Scope ===== ===== Encryption Scope =====
  
-Encryption can be set at an Org (Team) or on a Personal level.+Encryption can be set for the whole team by the File Fabric Administrator by setting an encryption policy. This can be set at a global level (all files) or it can be only for nominated folders.
  
 +If global team encryption is not turned on, the File Fabric Administrator can set the scope to be on a per user level, in which the end user is responsible for setting and remembering the encryption key.
 +
 +
 + 
 ===== Team Encryption ===== ===== Team Encryption =====
  
-The Cloud Admin of the Team Account can set by logging in to the Web and choosing //"menu —> options —>Encryption"// and choosing the encryption password and scope.+The File Fabric Administrator of the Team Account can set encryption by logging into the Web and choosing //"Main menu —> Policies —> Encryption"// and choosing the encryption password and scope.
  
-Once this password is set then Cloud Files for all users of the Primary Cloud are 'encrypted at rest’ therein.+Once this password is set then Files for all users of the Primary Cloud are 'encrypted at rest’ therein (this is additional to any 'encryption at rest' set by a storage provider).
  
 **Note:** Existing files are not encrypted only new file uploads are encrypted. **Note:** Existing files are not encrypted only new file uploads are encrypted.
Line 67: Line 71:
  
 Standalone desktop decryption tools are provided in the event users want to download encrypted files direct from remote clouds or data stores. Standalone desktop decryption tools are provided in the event users want to download encrypted files direct from remote clouds or data stores.
- 
 ===== Personal Encryption ===== ===== Personal Encryption =====
  
© Copyright 2024 Nasuni.