Skip to main content

Encryption

See All Stories
Site default logo image

Google launches server-side encryption for Cloud Storage at no charge to developers

Google announced today on its Cloud Platform Blog that the data stored in its Cloud Storage platform will now be automatically encrypted before written to disk at no additional charge to developers. Google said the process will not involve any input or configuration from developers and that the new encryption will cause “no visible performance impact”:

We manages the cryptographic keys on your behalf using the same hardened key management systems that Google uses for our own encrypted data, including strict key access controls and auditing. Each Cloud Storage object’s data and metadata is encrypted with a unique key under the 128-bit Advanced Encryption Standard (AES-128), and the per-object key itself is encrypted with a unique key associated with the object owner. These keys are additionally encrypted by one of a regularly rotated set of master keys.

Google noted that developers will still be able to encrypt data using their own methods and manage their own decryption keys, but from now on Google will free developers from the effort and cost associated with doing so. The new server-side encryption is active starting today for new data written to the platform, and Google says it will work with both new objects or for overwriting existing objects. It also said that “older objects will be migrated and encrypted in the coming months.”

In July, reports claimed that Google was also readying server-side encryption for files stored in its consumer-facing Drive cloud storage service.

Google testing encryption to hide your Drive files on heels of NSA surveillance controversy

Site default logo image

Privacy protection in the apps we use on a daily basis has been a big topic of conversation following accusations that Google and other large tech companies were working with government agencies to provide user data. Google has worked tirelessly to clear its name during the scandal, and today CNET reports that the company is testing encryption for Drive files that could further keep its users’ data protected from prying eyes.

As a reminder, Google does not currently encrypt files store in its Drive cloud storage service, but rather only encrypts files being transferred on their way to Drive:
Expand
Expanding
Close

Bizztrust virtual “work phones” bring BlackBerry-like security to Android

Site default logo image

Bizztrust is essentially a customized version of Android created by the Center for Advanced Security Research Darmstadt (CASED) and Fraunhofer trade group specifically to bring BlackBerry-like business class security to Android users.

With Bizztrust for Android installed, applications are then installed into one of two partitions– “work” and “personal”. Users can quickly swipe between either partition using an onscreen toggle baked into the UI. Of course, a business’s IT team will control anything installed on the “work” partition, while the end user will have full control of their “personal” partition. Any content installed on the work partition is also automatically scanned before a user is granted access to the company network and any transferred data is automatically encrypted. If an issue is detected prior to the user joining the network, any apps related to the issue will be disabled.

Ahmad-Reza Sadeghi of CASED says Bizztrust “significantly improves the security of today’s mobile terminals at no cost to user-friendliness.” If successful, this could be a huge hit to RIM’s quickly decreasing market share which still greatly relies on business users, as the Blackberry’s security features are often its only selling point.

Expand
Expanding
Close

Manage push notifications

notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications
notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications