Data Encryption

"Data encryption" plugin lets you encrypt and decrypt data stored in your Online Backup and Dropbox accounts, thus making sure that nobody but you can decrypt and use this data.

To encrypt data, do the following:
1. Switch to "Data encryption" plugin.
2. Enter the password which will restrict access to your data stored in Online Backup and Dropbox accounts. Confirm the password by typing it one more time in "Retype password" field:
encryption
"Password strength" bar shows the effectiveness of your password (the sum of its length, complexity, and randomness). The stronger the password, the more secure data encryption is.

3. Click "Apply now" button to start encryption with default settings.
4. Confirm that you want to encrypt data stored in your Online Backup and/or Dropbox account:

Data_encryption4
5. During the encryption process you will see the following window which will disappear as soon as all data is encrypted:

         Data_encryption5

6. Now you are ready to synchronize with your Online Backup and Dropbox accounts different types of data with data encryption enabled.

7. You can export encryption key with all advanced settings you’ve customized into a file on your Mac. It can be done for several reasons:

  • For backup purposes – in case you removed encryption from your Online Backup and/or Dropbox account, and now you want to encrypt it again. You can use the backuped key instead of remembering the password and customizing settings. All you need to do is click "Import key" button and choose the required file.
  • If you want to sync your Online Backup and/or Dropbox account, where data is already encrypted, with another Mac. In this case on another Mac you should enter the same password and set the same settings as on the Mac, where the data was encrypted. To avoid entering this info manually, just bring the encryption key to another Mac, for example, on a USB flash drive, and import it.

To export encryption key click "Export key" button. It will be saved into a file with .encryptkey extension.

To import encryption key click "Import key" button and browse to the required file in the invoked window.


Notes:
1. If you enable "Data encryption" plugin, but do not enter the password, you will get the following warning:
Data_encryption7
Set the password in the corresponding text field or import the key, if you already have it.

2. If passwords you’ve entered in "Password" and "Retype password" fields do not match, you will get the following message:

Data_encryption8

Please, re-enter correct passwords into both fields.

3. If you uncheck "Data encryption" plugin, you will receive the following message:
Data_encryption6
To remove encryption from your Online Backup and/or Dropbox account, click "Yes" button.


Advanced Encryption Settings

To customize advanced encryption settings, click "Advanced" button. Please, if you are not sure, do not customize additional settings and perform synchronization with default ones.

The following advanced settings are available:

  • Encryption algorithm is a method of generating encryption key. You can choose one of the following encryption algorithms:

Data_encryption2

1. Blowfish
More information on this encryption algorithm can be found at http://en.wikipedia.org/wiki/Blowfish_%28cipher%29
2. DES
More information on this encryption algorithm can be found at http://en.wikipedia.org/wiki/Data_Encryption_Standard
3. RC4
More information on this encryption algorithm can be found at http://en.wikipedia.org/wiki/RC4
4. RC5
More information on this encryption algorithm can be found at http://en.wikipedia.org/wiki/RC5
5. 3DES
More information on this encryption algorithm can be found at http://en.wikipedia.org/wiki/Triple_DES

  • Key length

Encryption security also depends on the key length measured in bits (also referred to as key size) used in the cryptographic algorithm. Choose one of the values from the drop-down list:

Data_encryption3
 
If the key length is large enough, brute-force attack against the encrypted data will be impractical, because it will take too long to execute it. But remember, the larger key length, the more time encryption/decryption will take. The default value is 256.

  • Additional key string (salt)

Salt consist of random bits (additional characters, digits etc that you personally choose), which are added to your password. If a salted password is used, dictionary attack (a form of brute-force attack, which tries every single combination of a password against encrypted data) becomes impractical, as it will take too much time and space to create a dictionary of encrypted values (password + salt).

  • Number of iterations

The iteration number is the amount of times a password, provided by the user, is converted into a key using one of the encryption algorithms. At each step the previous result is taken and is converted again. The number of iterations depends on the desired security level. Default value is 3. Remember: the bigger iteration number, the more time encryption/decryption will take.

Once all advanced settings are customized, click "OK" button and then click "Apply now" button to start the encryption process.