asking for thoughts on posting a sensitive doc to a cloud

Discussion in 'Windows 7 Help and Support' started by thomas1004, Nov 15, 2014.

  1. thomas1004

    thomas1004 Well-Known Member

    Joined:
    Dec 14, 2011
    Messages:
    32
    Likes Received:
    0
    Hello to all,

    I have a word doc with sensitive info. I've used Windows to encrypt the document.

    I want to be able to share and update this doc from various platforms: win7 pc, win8 pc, surface etc.

    Seems to me this doc belongs on OneDrive, but my question to you is, how secure would it be in the cloud, even in an encrypted state?

    I appreciate your thoughts, and if you have any suggestions about sharing this kind of doc, please let me know.

    Thanks for your help,
    Tom
     
  2. bassfisher6522

    bassfisher6522 Essential Member

    Joined:
    Aug 27, 2008
    Messages:
    4,884
    Likes Received:
    318
    Personally, I never upload sensitive info...encrypted or not. Then you compound the problem by sharing said sensitive info and not knowing who's doing what with it on the other end.

    My answer is NO!
     
  3. whs

    whs Extraordinary Member

    Joined:
    Sep 17, 2009
    Messages:
    1,541
    Likes Received:
    106
    Hard to say. I have a lot of docs on One Drive and never had a problem. On One Drive you can keep it private or make it only available to specific people. Don't make it Public.
     
  4. thomas1004

    thomas1004 Well-Known Member

    Joined:
    Dec 14, 2011
    Messages:
    32
    Likes Received:
    0
    thanks for your thoughts bassfisher and whs.

    I fully understand the danger in posting sensitive data
    externally. And on the other hand there's an ease of use and lesser chance of losing updates if a file is kept in one place.

    I've taken the additional step of password protecting
    my encrypted doc. Even so I'm going to use OneDrive
    to hold an updated file briefly until I download it locally to another device then delete it from OneDrive. So its
    exposure will be minimal.

    thanks again and regards
    Tom
     
  5. patcooke

    patcooke Microsoft MVP
    Staff Member Premium Supporter Microsoft MVP

    Joined:
    May 16, 2010
    Messages:
    5,456
    Likes Received:
    268
    I would never put it there in the first place - but also: "then delete it from OneDrive" - remember the interpretation of the word "delete" on a computer system.
     
  6. thomas1004

    thomas1004 Well-Known Member

    Joined:
    Dec 14, 2011
    Messages:
    32
    Likes Received:
    0
    hi Pat,

    I'd like to read your interpretation of "delete" please.

    I was in IT software development for many years so I'm guessing that you're saying any file put on OneDrive is automatically cached/backed up even if a file touches OneDrive briefly. Is that it?

    Even so, the path to cracking my doc would be to hack into my OneDrive account; crack the password; decrypt the file.
    I would guess that it's much easier to hack sensitive data from a retailer or put a keylogger on my pc.

    Do you think that Dropbox is more secure than OneDrive? Are there cloud-type storage options more secure?

    Thanks for joining in, I appreciate your input.

    Regards,
    Tom
     
  7. Krypto

    Krypto Extraordinary Member
    Premium Supporter

    Joined:
    Oct 31, 2009
    Messages:
    1,107
    Likes Received:
    37
    I Use Drop Box & One Drive for my cloud storage needs. When it comes to sensitive information I would not put that on the cloud you don't know who has access to it. While there security is very good. you are putting your documents on a live server somewhere. Whether it is a marked public or private it is still out there. One alternative would be to have your own personal cloud storage server at home. You then own the storage and have much more control over it.

    Check out this videos they might help:)



     
  8. patcooke

    patcooke Microsoft MVP
    Staff Member Premium Supporter Microsoft MVP

    Joined:
    May 16, 2010
    Messages:
    5,456
    Likes Received:
    268
    Like you I spent many years in system software R&D having started writing in 8-bit Assembler!. There are a number of issues regarding security, access and deletion. All encryption processes are based on mathematical combinations and permutations which challenge the laws of probability but ultimately any encryption process based on a mathematically constructed algorithm may be "cracked" using one or more established techniques. My reference to file deletion is in relation to the well known fact that "deleting" a file amounts to removing its name from a directory and flagging the sectors previously used by the file as now being free for re-use. Deleting does not physically delete any data, which may easily be recovered unless the data has been destroyed by secure deletion software which needs to do much more than just overwrite the data by re-using the disk space.
     

Share This Page

Loading...