Protecting Your data in A CLOUD SERVICE ENCRYPTION

Storing Data In The Cloud With Dropbox And TrueCrypt

 it is important to protect data that you upload to the cloud. In this guide, I will show you how to implement one of the suggestions: Encryption. I’m using the cloud hosting and synchronization service Dropbox and the Open Source encryption software TrueCrypt for the example. In the end, you should be able to use the same method to protect data with your encryption software and cloud hosting provider of choice.

Lets take a look at the basics first. If you are a free Dropbox users, you get 2 Gigabytes of space. That’s usually more than enough to store documents and files in the cloud. Dropbox uses encryption to protect data on their servers from unauthorized access. As I pointed out before, that may not sufficient considering that the company may decrypt all files in a legal process, which also means there is a chance that an attacker might do the same. (Dropbox has responded to the issue)
TrueCrypt is an Open Source encryption software for Windows, Linux and Macintosh that can encrypt data containers or full hard drives or hard drive partitions. Since we only have a maximum of 2 Gigabytes of storage on Dropbox, we need to create an encrypted container to store our files in.
The basic idea is therefor the following: We create a TrueCrypt container on the local system. The size depends on your preferences, I would suggest to keep it as small as possible. If you run out of space you can either increase the size of the TrueCrypt container or create a second container to store additional data in. My suggestion is a maximum size of 500 Megabytes, if you can live with less select that number. My personal container has a size of 100 Megabytes.
Download the latest version of True Crypt from the developer website. Install it and run it after installation. Locate the Create Volume button in the interface and click on it.

Click Next two times on the following screens to create an encrypted file container with a standard TrueCrypt volume (those are the default options). Click Select File and browse to a location where you want to create the new container. Make sure it is not in the Dropbox folder if Dropbox is running. You can name the container anyway you want, e.g. holiday2010.avi.
Click Next on the encryption options page unless you want to change the encryption algorithm or hash algorithm. Select the volume size on the next screen. I suggest you keep it at a few hundred Megabytes tops.
You need to enter a secure password on the next screen. It is suggested to use as many characters as possible (24+) with upper and lower letters, numbers and special characters. The maximum length of a True Crypt password is 64 characters.
Now it is time to select the volume format on the next screen. If you only use Windows computers you may want to select NTFS as the file system. If you use others you may be better of with FAT. Juggle the mouse around a bit and click on format once you are done with that.
Congratulations, the new True Crypt volume has been created.
Move your unmounted new data container to the Dropbox folder. That folder, but not its contents since Dropbox cannot access those, will now be synced with your space in the cloud. It can take minutes to hours depending on the upload speed of your Internet connection and the size of the container that you have created.
But this is a one-time transfer. Dropbox will only transfer the changed bits after the first upload. This is theoretically a security risk as well but it would require lots of energy and dedication which means it usually can be neglected for personal data.
You can now mount the container on your local system and use it normally just like any other True Crypt volume. You can add, delete or edit files in it. Whenever you unmount it, it gets synced with your Dropbox account. This means that you need to unmount it regularly before you shut down the computer in order to sync the data with Dropbox.
Install True Crypt on all your other devices to access the encrypted volume there as well. You can also copy a portable version of True Crypt to the Dropbox for direct access without installation.

Problems

The biggest problem is that you cannot access the encrypted data on Dropbox’s web interface anymore. All you see is that one big encrypted container that you cannot access because you cannot run True Crypt on the cloud. There is no way around it: You either use the encrypted container for additional security, or trust the standard Dropbox encryption to access the data on the web interface as well.
You also need to make sure to mount the encrypted data container on one computer at a time. Dropbox would otherwise create a copy of the file in the Dropbox folder which would cause files becoming out of sync.

Verdict

If you want that extra bit of security, and eliminate the minor chance that someone manages to decrypt your data on Dropbox, or that Dropbox decrypts the data for law enforcement, then your best bet is third party encryption of the data. It may sound complex and complicated to setup, when it is a straightforward process that’s done in less than five minutes.

How To Add a Second Layer of Encryption to Dropbox

If recent security and privacy concerns about Dropbox make you think twice about using the popular file storage and syncing tool, there's an easy way to further protect your sensitive files stored on Dropbox: yes, we're talking about encryption.
TrueCrypt is our go-to data encryption tool and no doubt you know we have a thing for Dropbox, but although we've briefly mentioned using TrueCrypt as one of the clever ways to use Dropbox, we've never fully married the two. It's about time.

What's All the Fuss?

Dropbox has had a few privacy and security stumbles in recent months. Most recently, an authentication bug allowed anyone to log into your account with any password over a four hour period. Back in April, Business Insider reported an update to Dropbox's security terms of service reveals the company can decrypt your files and provide them to the government if required to do so—in other words, if you thought Dropbox couldn't decrypt your data, you were wrong. (Dropbox responds here.) This may all just be par for the course with cloud-based services (we believe you should consider all your passwords vulnerable to cracking if someone wanted to do so badly enough), but at least a few people feel uneasy about Dropbox's recent problems.

Should You Drop Dropbox?

Dropbox is still a killer collaborative work tool and it does more than just file syncing. If you don't store confidential or sensitive information on the service, there's no need to worry anyway.
If you do store sensitive data on Dropbox but are loathe to give up its convenience, there are a couple of things you can do to further secure your data while still using Dropbox:

How to Encrypt Your Sensitive Data on Dropbox

A Cross-Platform Method: Use an Encrypted Zip File

Encrypt and zip your files before placing them on Dropbox for added security and convenient accessibility.

Another Easy Option: Automatically Encrypt Data with SecretSync

Previously mentioned Windows program SecretSync provides an easy way to encrypt a local folder before sending it to Dropbox. You install the app, it creates a new folder on your computer, and anything you place in that folder is automatically encrypted and then synced with Dropbox. It's actually quite clever.
If the idea of securing your cloud data by putting your trust in yet another cloud service is too much, you could instead encrypt your data yourself with the cross-platform, open-source encryption application TrueCrypt. Essentially you'd manually encrypt your files, then store your encrypted files on Dropbox. It won't be as easy to share or work with individual documents encrypted with TrueCrypt as non-TrueCrypt-encrypted files, but even Dropbox itself recommends using TrueCrypt for your most sensitive documents.
So, here's how create an encrypted TrueCrypt container on Dropbox:

The "Take Security Into Your Hands" Option: Manually Encrypt Specific Files with TrueCrypt

In this scenario, you'll basically just store your sensitive data in your TrueCrypt container, which is saved to your Dropbox folder. Our steps for encrypting your data with TrueCrypt in this case remain the same. Just select the Dropbox folder as the TrueCrypt container location.
If you've never used TrueCrypt before, here are the steps, taken from our previous guide but adjusted specifically for Dropbox usage:
1. Download, install, and launch TrueCrypt
2. After hitting the "Create Volume" button, choose the default to "create an encrypted file container" and a "Standard TrueCrypt Volume".
3. Here's where the steps differ: When prompted to select a location for your TrueCrypt Volume, navigate to your Dropbox folder.
4. Then you'll run through the rest of the TrueCrypt encryption steps, including selecting the default AES encryption scheme and volume size (choose a capacity less, obviously, than your total Dropbox account storage space).
Once you've entered your volume password and formatted the TrueCrypt volume, it'll be saved and ready for action in your Dropbox folder.
To mount the volume as a virtual—but encrypted—drive that you can copy and paste to, from the TrueCrypt program, select a drive letter, then select your TrueCrypt file in the Dropbox folder, and click "Mount."
You'll be able to copy and paste sensitive documents to that encrypted container just like you would a regular drive, as long as the volume is mounted.

For Protecting Locally-Accessible Files: Move Your Dropbox Folder to an Encrypted TrueCrypt Volume

The above works well when you have a mix of plain old documents and more sensitive files that you want to store together on Dropbox—you can use a TrueCrypt container for your most sensitive files and the regular service for everything else (for easy collaboration and remote editing). Encrypting your files before storing them on Dropbox is also your main recourse when it comes to privacy and security concerns about the service having access to your data.
If you want encrypt everything in your Dropbox folder locally, you can just move the Dropbox folder into a TrueCrypt container. As readers pointed out, this won't address the privacy concerns of Dropbox being able to decrypt your information, but it would secure the contents of your Dropbox in case, say, you lost your laptop or your computer was compromised. Here are the instructions from Dropbox of this process:

• As above, download, install, and launch TrueCrypt
• Create a new standard TrueCrypt volume (Create volume > Create an encrypted file container > Standard TrueCrypt volume, using NFTS filesystem) anywhere on your hard drive, and set a volume size and password for accessing the volume later.

Once it's formatted, make sure the TrueCrypt volume will be mounted on logon:

• In TrueCrypt, click on the Select File button, select the container you just created, click on an unused drive letter and then click the Mount button.
• From the Favorites menu, select Add Mounted Volume to Favorites and make sure Mount select volume upon login is checked.

Next, we'll move Dropbox to the encrypted TrueCrypt drive:

• Right-click on the Dropbox icon in the system tray and go to Preferences.
• In the Advanced tab, click the Move button to change the location for Dropbox to the virtual drive letter you just created.

Finally, Dropbox recommends creating a login script to modify Dropbox so it will wait until the drive is ready before starting:

In your Dropbox preferences, click the General tab, then turn off the checkmark beside Start Dropbox on system startup.
1. Create a new text file called bootup.bat somewhere on your C: drive.
2. If file extensions are hidden by Explorer, you may need to turn them on to ensure the file gets the .bat extension rather than .bat.txt. (The option in Explorer is under Tools | Folder Options | View, then under Advanced Settings select Show hidden files, folders and drives).
3. Paste the following commands into the bat file:
@echo off
rem Every second, check to see if volume is mounted
echo Waiting for volume...
:keepwaiting
ping -n 1 -w 1000 127.0.0.1 > nul
if not exist F:\ goto keepwaiting
start "Dropbox" "C:\Documents and Settings\YourUserName\Application Data\Dropbox\bin\Dropbox.exe"
4. Tailor the script as follows, then save it:
Change F:\ to the drive letter of your mounted volume (which you picked in step 2.2)
Change the path on the last line to include the location of the Dropbox application files. e.g. On Windows 7 it would be:
C:\Users\YourUserName\AppData\Roaming\Dropbox\bin\Dropbox.exe
5. Create a shortcut to bootup.bat in your Startup folder. Your startup folder is usually located at:
Windows XP: C:\Documents and Settings\YourUserName\Start Menu\Programs\Startup
Windows 7: C:\Users\YourUserName\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

Reboot your computer and test.
FYI, before you dismount the encrypted volume, you'll need to close Dropbox.
Dropbox's tips and tricks wiki notes that there are also sensitive *.db (Dropbox configuration) files located in alternative locations, and offers suggestions for ways to relocate those files or the entire Dropbox application.

Vote for Us: link directory