 antdudeA Ninja AntPremium,VIP
join:2001-03-25
United State
kudos:4
 ·RoadRunner Cable
| Is Your Cloud Drive Really Private? ... »www.nbcnews.com/technology/techn···C8881731 from »www.hardocp.com/news/2013/03/16/···ivate63/ ...
"... Some popular cloud storage providers sweep accounts looking for illegal data. Right now, the focus is on hunting for child pornography, but their terms of service allow for other kinds of files to be considered non grata as well..."
--
Ant @ AQFL.net and AntFarm.ma.cx. Please do not IM/e-mail me for technical support. Use this forum or better, »community.norton.com ! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer. |
|
 JuggernautIrreverent or irrelevant?Premium
join:2006-09-05
Kelowna, BC
kudos:2 | This subject has gone far beyond it's 'stale date', especially on this forum.
Common knowledge states, "if you're not in possession of it, you don't own it."
The cloud is a fad promoted by the Gov to allow them to see what the hell you actually have in storage. Illegal files of any type, or personal info. A bloody USB stick, or an SD card is far more appropriate for that info, and storage.
But, you can't fix stupid.
--
"I fear the day that technology will surpass our human interaction. The world will have a generation of idiots." ~ Albert Einstein |
|
 BKayracPremium
join:2001-09-29
Madison, WI | said by Juggernaut:The cloud is a fad promoted by the Gov to allow them to see what the hell you actually have in storage. Illegal files of any type, or personal info. A bloody USB stick, or an SD card is far more appropriate for that info, and storage.
That seems a little paranoid i'd think, cloud storage is a valuable tool, and quite useful for many people. However as with all things, proper use, and a little intelligence is required. |
|
JuggernautIrreverent or irrelevant?Premium
join:2006-09-05
Kelowna, BC
kudos:2 | Paranoid? Perhaps. But, with the willful passing of info by providers these days, paranoia is not a bad thing.
Seems a certain religious fella had some child porn in the cloud, and got busted recently. 
--
"I fear the day that technology will surpass our human interaction. The world will have a generation of idiots." ~ Albert Einstein |
|
BKayracPremium
join:2001-09-29
Madison, WI | said by Juggernaut:Paranoid? Perhaps. But, with the willful passing of info by providers these days, paranoia is not a bad thing.
Seems a certain religious fella had some child porn in the cloud, and got busted recently.
That is where the proper use and intelligence comes into play 
But with saying that, I don't have any respect for child porn or anything similar, and am actually quite glad he did that as it is quite a despicable act. |
|
JuggernautIrreverent or irrelevant?Premium
join:2006-09-05
Kelowna, BC
kudos:2 | Agreed. But, it goes much further than CP. Everything is under scrutiny. |
|
 DrStrangeTechnically feasiblePremium
join:2001-07-23
West Hartford, CT
kudos:1 | reply to antdude
That's what you get for storing data in 'the cloud'.
*suppresses urge to link to YouTube video of a certain Rolling Stones track from 1967* |
|
| reply to antdude
I think the operative word here is "encryption". |
|
 Dude111An Awesome DudePremium
join:2003-08-04
USA
kudos:11 | reply to Juggernaut
Indeed it is!!!!!! |
|
 NOYBSt. John 3.16Premium
join:2005-12-15
Forest Grove, OR
kudos:1 | reply to Frodo
Re: Is Your Cloud Drive Really Private? ...said by Frodo:I think the operative word here is "encryption".
Once in the cloud it is there eternally, and todays encryption will be trivial in just a few short years. Today's encryption is only protection for today. Not the future.
--
Be a Good Netizen - Read, Know & Complain About Overly Restrictive Tyrannical ISP ToS & AUP »comcast.net/terms/ »verizon.net/policies/
Say Thanks with a Tool Points Donation |
|
 SnowymIRC unix.ro UnderNetPremium
join:2003-04-05
Kailua, HI
kudos:6
·RoadRunner Cable
 ·Clearwire Wireless
| said by NOYB:
said by Frodo:I think the operative word here is "encryption".
Once in the cloud it is there eternally, and todays encryption will be trivial in just a few short years. Today's encryption is only protection for today. Not the future. For the sake of this discussion I see the entire net as the 'cloud' whether it be email, P2P etc... & you're right, once it's out there, it's out there forever.
But sensitive data on my local drive isn't safer because it doesn't operate in a vacuum.
At some point it will get shared, transferred, copied etc... somewhere on the net with encryption being the safety valve, rather than the files location. |
|
 IanPremium
join:2002-06-18
ON
kudos:1
·Rogers Hi-Speed
| reply to NOYB
said by NOYB:
said by Frodo:I think the operative word here is "encryption".
Once in the cloud it is there eternally, and todays encryption will be trivial in just a few short years. Today's encryption is only protection for today. Not the future. Sure. But "How far into the future do I need to protect it?" is a valid question. From a practical perspective, I don't really see a big need to protect my information beyond say, a century (at most). At that point any relevance or embarrassment to any of my descendants will likely be long past. Current encryption is not likely to be "trivial" in just a few short years.
Current supercomputers would take something on the order of a billion, billion years to brute-force using only 128 bit AES (commonly available for free). Granted, computation speed is increasing, but how fast? Even if I had a supercomputer a 1,000,000,000 times faster than today's, it would still take it a billion years to crack. That's a fairly large margin of safety. And that's even assuming for some absurd reason that someone with the resources of a super-computing facility would be interested enough about something on my dropbox to try and decrypt it.
Store something in "the cloud" unencrypted? Sure. Someone could go looking. But as others have said, doing so with something illegal is stupid.
--
“Any claim that the root of a problem is simple should be treated the same as a claim that the root of a problem is Bigfoot. Simplicity and Bigfoot are found in the real world with about the same frequency.” – David Wong |
|
Reviews:
 ·AT&T Midwest
| said by Ian:Current encryption is not likely to be "trivial" in just a few short years.
Current supercomputers would take something on the order of a billion, billion years to brute-force using only 128 bit AES (commonly available for free). Granted, computation speed is increasing, but how fast? Even if I had a supercomputer a 1,000,000,000 times faster than today's, it would still take it a billion years to crack. That's a fairly large margin of safety. And that's even assuming for some absurd reason that someone with the resources of a super-computing facility would be interested enough about something on my dropbox to try and decrypt it.
»securityledger.com/new-25-gpu-mo···seconds/
quote:
The clustered GPUs clocked impressive speeds against more sturdy hashing algorithms as well, including MD5 (180 billion attempts per second, 63 billion/second for SHA1 and 20 billion/second for passwords hashed using the LM algorithm. So called “slow hash” algorithms fared better. The bcrypt (05) and sha512crypt permitted 71,000 and 364,000 per second, respectively.
*snip*
Gosney’s GPU cluster is just the latest leap forward in password cracking in a year that has already seen prominent encryption algorithms deemed compromised by an onslaught of cheap compute power. In June, Poul-Henning Kamp, creator of the md5crypt() function used by FreeBSD and Linux-based operating systems was forced to acknowledge that the hashing function is no longer suitable for production use - a victim of GPU powered systems that could perform “close to 1 million checks per second on COTS (commercial off the shelf) GPU hardware,” he wrote. Gosney’s cluster cranked out more than 70 times that number - 77 million brute force attempts per second against MD5crypt.
|
|
 StuartMWWho Is John Galt?Premium
join:2000-08-06
Galt's Gulch
kudos:2
·CenturyLink
| reply to antdude
I don't trust any cloud services. They all say they're encrypted, backed up blah blah blah.
I'll look after my own data thanks. If Bob or other 3-letter agencies want it they can come and get it.
--
Don't feed trolls--it only makes them grow! |
|
|
|
Reviews:
·AT&T Midwest
| I've got a bcrypt encrypted .gz file uploaded to a could service with a few files I can download when I rebuild my FreeBSD installation to save me some typing (I'd have to type up my devfs.conf and devfs.rules files before I could mount a USB stick), but nothing that would be of much consequence if prying eyes did want to take a peek. |
|
StuartMWWho Is John Galt?Premium
join:2000-08-06
Galt's Gulch
kudos:2 Reviews:
·CenturyLink
| reply to Snowy
said by Snowy:For the sake of this discussion I see the entire net as the 'cloud' whether it be email, P2P etc... That is true. As long as anyone uses the internet they can't totally prevent snooping. That said I see no reason to upload the contents of my hard drives to the cloud. I backup locally and have done so for decades.
If the Facebook/Twitter "share everything with everyone" generation wants to put all their stuff online they're welcome to. One day, perhaps sooner than they think, they'll discover that wasn't such a good idea.
--
Don't feed trolls--it only makes them grow! |
|
| said by StuartMW:If the Facebook/Twitter "share everything with everyone" generation wants to put all their stuff online they're welcome to. One day, perhaps sooner than they think, they'll discover that wasn't such a good idea.
The phrase "older but wiser" comes to mind. By which time, it'll be too late for many of them. |
|
StuartMWWho Is John Galt?Premium
join:2000-08-06
Galt's Gulch
kudos:2 Reviews:
·CenturyLink
1 edit | said by goalieskates:By which time, it'll be too late for many of them. Well many sheep want to be shorn. That said they might want to know the shearer first. He might love the taste of mutton.
--
Don't feed trolls--it only makes them grow! |
|
 MikePremium,Mod
join:2000-09-17
Pittsburgh, PA
kudos:1 | reply to antdude
If you don't have it in your house, then you don't own it.
That's kinda how it works. There is no such thing as data security with a computer. |
|
TheMGPremium
join:2007-09-04
Canada
kudos:1 | reply to StuartMW
said by StuartMW:I don't trust any cloud services. They all say they're encrypted, backed up blah blah blah.
For encryption to be relevant, the encryption key has to be known by YOU and ONLY YOU. This means encrypting the data yourself prior to sending it to the cloud service or software.
Encryption provided by the cloud service provider isn't doing much, as the cloud provider holds the encryption keys, which means they are free to look at the data at any time. The only thing it does is stop hackers from obtaining the unencrypted data should their servers become compromised, and that's assuming that the hacker doesn't also obtain the encryption key. |
|
