Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
cloudencryption [2019_09_30 13:58] – [Encryption Scope] jim | cloudencryption [2020_01_22 01:10] – [Uploading] steven | ||
---|---|---|---|
Line 35: | Line 35: | ||
===== Team Encryption ===== | ===== Team Encryption ===== | ||
- | The Cloud Admin of the Team Account can set by logging | + | The File Fabric Administrator |
- | Once this password is set then Cloud Files for all users of the Primary Cloud are ' | + | Once this password is set then Files for all users of the Primary Cloud are ' |
**Note:** Existing files are not encrypted only new file uploads are encrypted. | **Note:** Existing files are not encrypted only new file uploads are encrypted. | ||
Line 44: | Line 44: | ||
---- | ---- | ||
- | The password is stored, in an encrypted fashion, in the SME appliance | + | The password is stored, in an encrypted fashion, in the File Fabric |
Line 53: | Line 53: | ||
* All shared team folders | * All shared team folders | ||
* All Shared team folders plus user files | * All Shared team folders plus user files | ||
+ | * Nominated Folders | ||
//Share Team Folders:// Only team folders are encrypted the users personal files are not encrypted | //Share Team Folders:// Only team folders are encrypted the users personal files are not encrypted | ||
Line 58: | Line 59: | ||
//All Shared Team folders plus user files:// Shared Team folders and users personal files in the personal cloud are encrypted at rest | //All Shared Team folders plus user files:// Shared Team folders and users personal files in the personal cloud are encrypted at rest | ||
+ | //Nominated folders:// | ||
---- | ---- | ||
- | For team folders, the encryption **is transparent** to end users. Team users **do not need to know** the encryption password and files are simply encrypted and decrypted as accessed via SME Apps. | + | For team folders, the encryption **is transparent** to end users. |
Team encrypted files that are shared without passwords also **do not** require the recipient to know the encryption password. | Team encrypted files that are shared without passwords also **do not** require the recipient to know the encryption password. | ||
Line 71: | Line 72: | ||
Standalone desktop decryption tools are provided in the event users want to download encrypted files direct from remote clouds or data stores. | Standalone desktop decryption tools are provided in the event users want to download encrypted files direct from remote clouds or data stores. | ||
- | |||
===== Personal Encryption ===== | ===== Personal Encryption ===== | ||
==== Uploading ==== | ==== Uploading ==== | ||
- | A user can set his own password to encrypt files uploaded in the web browser (entered when uploading), in the desktop tools, and also using the SME Android App. | + | A user can set his own password to encrypt files uploaded in the web browser (entered when uploading), in the desktop tools, and also using the File Fabric |
- | + | ||
- | + | ||
- | ---- | + | |
In the browser when uploading the user has the option to encrypt the files and enter the encryption phrase. | In the browser when uploading the user has the option to encrypt the files and enter the encryption phrase. | ||
- | + | For Windows | |
- | ---- | + | |
- | + | ||
- | For windows | + | |
- | + | ||
- | + | ||
- | ---- | + | |
On the SME Android App files uploaded can also be encrypted on upload from the device | On the SME Android App files uploaded can also be encrypted on upload from the device | ||
- | |||
- | |||
- | ---- | ||
Unlike the account level encryption the encryption phrase set by personal users is **not stored on the server** ie. the user has to remember the phrase otherwise they will not be able to gain access to the file and if they forget it there is no way for the SME service to recover it. | Unlike the account level encryption the encryption phrase set by personal users is **not stored on the server** ie. the user has to remember the phrase otherwise they will not be able to gain access to the file and if they forget it there is no way for the SME service to recover it. | ||
**Note:** also that different phrases can be used for different files. | **Note:** also that different phrases can be used for different files. | ||
- | |||
- | |||
- | ---- | ||
As an optimization the SME desktop tools provide an option to save a single encryption phrase for ease of use when dealing with files from the desktop. | As an optimization the SME desktop tools provide an option to save a single encryption phrase for ease of use when dealing with files from the desktop. |