10 posts in this topic

Starting today, all the data developers write to unstructured storage on Google?s Cloud Platform will now be automatically encrypted on Google?s servers. Google already encrypted data that was written to its Persistent Disks and Scratch Disks on its Compute Engine, but as the company just announced, all of the data written to Google Cloud Storage will now also be encrypted using the 128-bit Advanced Encryption Standard.

 

?The per-object key itself is encrypted with a unique key associated with the object owner,? Google explains in today?s announcement, and ?these keys are additionally encrypted by one of a regularly rotated set of master keys.? By default, Google will manage the keys to this data for its users, but you can also still encrypt the data yourself prior to writing it to Cloud Storage. For those who are really paranoid about their encryption, having Google manage and store their keys is probably not an option. Google, however, says that it uses ?the same hardened key management systems that Google uses for our own encrypted data, including strict key access controls and auditing.?

 

Google says the new server-side encryption is already active for all new data that is written to Cloud Storage, and older objects will be migrated and encrypted ?in the coming months.?

 

It?s worth noting that AWS?s S3 cloud storage service has offered server-side encryption using the 256-bit Advanced Encryption Standard since abound 2011. For those who need to meet even stricter corporate, contractual and regulatory compliance requirements for data security, Amazon also recently introduced a dedicated (and pricey) Hardware Security Module for managing sensitive data and encryption keys in Amazon?s cloud.

 

http://techcrunch.com/2013/08/15/google-cloud-storage-now-features-server-side-encryption/

Share this post


Link to post
Share on other sites

Secret Order from Secret Court: "Hand over the encryption keys bitch", and as law abiding firm, Google (and Microsoft) will comply.

1 person likes this

Share this post


Link to post
Share on other sites

Yea for privacy its useless.

Share this post


Link to post
Share on other sites

Secret Order from Secret Court: "Hand over the encryption keys bitch", and as law abiding firm, Google (and Microsoft) will comply.

 

It is the law for them to comply if a court order is given.  They dont have to if they are not legally required.

Share this post


Link to post
Share on other sites

It is the law for them to comply if a court order is given.  They dont have to if they are not legally required.

I thought the new laws passed made them legally required even if the government just asks.

Share this post


Link to post
Share on other sites

I thought the new laws passed made them legally required even if the government just asks.

 

Well, if thats the case...nothing anyone can do about it.

Share this post


Link to post
Share on other sites

Well, if thats the case...nothing anyone can do about it.

The Supreme Court can...and will...when it comes before them one day in the future.

Share this post


Link to post
Share on other sites

PIE is required.

Share this post


Link to post
Share on other sites

I wouldn't trust on server side encryption, especially when it's by Google nowadays. Just encrypt it yourself and then upload, as suggested by the article.

1 person likes this

Share this post


Link to post
Share on other sites

Axcrypt or Truecrypt for the win.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0

  • Recently Browsing   0 members

    No registered users viewing this page.