LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

ownCloud moves ahead

ownCloud moves ahead

Posted Jan 18, 2012 3:17 UTC (Wed) by Duncan (guest, #6647)
In reply to: ownCloud moves ahead by njwhite
Parent article: ownCloud moves ahead

... And in not protecting against server operators (hostile or not), it doesn't protect against government or even foreign government (see US and even foreign corps required to gather SWIFT data by US law enforced on other nations, despite European data directives, etc).

The ONLY way to protect even customer /friendly/ server ops against such government intrusion is if there's simply no way for them to get at the data, period, meaning they must only have access to the encrypted blobs, period, and if they're friendly, they don't even WANT the chance of seeing the unencrypted data, since then they could be ordered to provide it.

Client-side encryption and audited open source code to ensure no backdoors is the only way for a service provider to protect /itself/ against such forced government, even foreign government, cooperation. If all they get is the blob, they can happily turn over the blob, but that and possibly account info is all they have to turn over, which is exactly how a good company will want it!

Duncan

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds