VIEW FILES ONLINE BOXCRYPTOR PASSWORD
However, if a company has enabled the Master Key feature, the company can make use of the password reset feature. Without the password, it is not possible to decrypt a user’s private key and thus it is not possible to decrypt any files. Sharing File Access With a Group Resetting Passwords in Boxcryptor Company – How the Master Key Worksĭue to Boxcryptor’s zero-knowledge nature, if you forget or lose your password, you lose access to your files. All other AES keys are encrypted with the wrapping key so that access to the wrapping key is required to decrypt any other AES key. The wrapping key is encrypted with the user’s password key so that only someone who knows the password can decrypt the wrapping key. The private RSA key is encrypted with the user’s password key so that knowledge of the password is required to decrypt the private RSA key. Before the keys are submitted to the Boxcryptor server, the sensitive information is encrypted so that only the user has access to it. The user keys are generated on the user’s device during the account set-up and creation. How we Manage Users, Groups and OrganizationsĪ user is someone who creates a Boxcryptor account and is identifiable by his/her email address and his/her user keys. Before the hash value is stored to our database, we hash it again, so that potential attackers have an even harder time to figure out your password. In conclusion, your password is hashed and sent to us in this hashed form, when you want to authenticate yourself during sign in to Boxcryptor. In both cases, Boxcryptor does not use the password itself, but derivatives called the password key and password hash. The password is used for two purposes: User authentication and decryption of the user’s private key. Password Security – How we Protect Your PasswordĪ user’s password never leaves his or her device and Boxcryptor never submits the password anywhere. The only types of keys stored in plaintext on the Boxcryptor server are public keys, which do not contain any sensitive information and, as these are public, do not need to be kept confidential. Even though the Boxcryptor server stores keys for all users, Boxcryptor is a zero knowledge provider, because the sensitive keys are already received in encrypted form. The password key, however, never leaves the user's device. The starting point for every decryption process is the user’s password key as this one is required to unlock the private key and the wrapping key, which again are required to unlock all other keys in the system (AES keys, file keys, membership keys, group keys, etc.). All encryption operations take place on your device – never on our servers. User keys, group keys, and company keys are stored on the Boxcryptor server, but in encrypted form. Passwords, password keys and file keys never leave the users’ devices and are never transferred anywhere or to anyone. Any private and sensitive information will always be in encrypted form, protected by the user’s password – which we do not know and have no way of finding out.
VIEW FILES ONLINE BOXCRYPTOR FULL
Password Data Privacy+ with Zero Knowledge – Full Control Over Your Dataīoxcryptor is a zero knowledge provider.
0 kommentar(er)
