Login
Login

client-side encryption

Client-side encryption is the cryptographic technique of encrypting data on the sender's side, before it is transmitted to a server such as a cloud storage service.

Client-side encryption features an encryption key that is not available to the service provider, making it difficult or impossible for service providers to decrypt hosted data.

Client-side encryption allows for the creation of applications whose providers cannot access the data its users have stored, thus offering a high level of privacy.

Applications utilizing client-side encryption are sometimes marketed under the misleading or incorrect term "zero-knowledge", but this is a misnomer, as the term zero-knowledge describes something entirely different in the context of cryptography.

Details

Client-side encryption seeks to eliminate the potential for data to be viewed by service providers (or third parties that compel service providers to deliver access to data), client-side encryption ensures that data and files that are stored in the cloud can only be viewed on the client-side of the exchange. This prevents data loss and the unauthorized disclosure of private or personal files, providing increased peace of mind for its users.

Current recommendations by industry professionals as well as academic scholars offer great vocal support for developers to include client-side encryption to protect the confidentiality and integrity of information.

{{cite book |author=Deka, Ganesh Chandra |title=Handbook of Research on Securing Cloud-Based Databases with Biometric Applications |url=https://books.google.com/books?id=iiKXBQAAQBAJ |accessdate=21 February 2016 |date=31 October 2014 |publisher=IGI Global |isbn=978-1-4666-6560-6 |chapter=3 Security Architecture for Cloud Computing}}{{cite book |author=Tobias Ackermann |title=IT Security Risk Management: Perceived IT Security Risks in the Context of Cloud Computing |url=https://books.google.com/books?id=3WFEAAAAQBAJ&pg=PA136 |accessdate=21 February 2016 |date=22 December 2012 |publisher=Springer Science & Business Media |isbn=978-3-658-01115-4 |pages=136–}}

{{cite book |title=Cloud Computing Sicherheit: Schutzziele, Taxonomie, Marktübersicht |url=https://books.google.com/books?id=JgNUcgAACAAJ |accessdate=21 February 2016 |year=2009 |publisher=Fraunhofer-Institut für Sichere Informationstechnologie SIT |isbn=978-3-9813317-0-7 |chapter=Communications of the Association for Information Systems 13:Article 24}}

=Examples of services that use client-side encryption by default=

=Examples of services that optionally support client-side encryption=

=Examples of services that do not support client-side encryption=

=Examples of client-side encrypted services that no longer exist=

See also

References

{{reflist|refs=

{{cite web |url=https://support.tresorit.com/hc/en-us/articles/216113777-What-is-Tresorit#:~:text=We%20use%20client-side%20encryption,access%20the%20data%20you%20store |title=What is Tresorit |date=2023 |website=support.tresorit.com |publisher=Tresorit |access-date=Jul 8, 2024}}

{{cite web |url=https://mega.nz/SecurityWhitepaper.pdf |title=Mega Security Whitepaper |date=2022 |website=mega.nz |publisher=MEGA |access-date=Jul 8, 2024 |page=21}}

{{cite web |url=https://crypt.ee/security |title=Cryptee Security |date=2024 |website=crypt.ee |publisher=Cryptee |access-date=Jul 8, 2024}}

{{cite web |url=https://www.apple.com/newsroom/2022/12/apple-advances-user-security-with-powerful-new-data-protections/ |title=Apple advances user security with powerful new data protections |date=2022 |website=apple.com |publisher=Apple |access-date=Jul 8, 2024}}

{{cite web |url=https://www.eff.org/deeplinks/2023/05/how-enable-advanced-data-protection-ios-and-why-you-should |title=How to Enable Advanced Data Protection on iOS, and Why You Should |date=2023 |website=eff.org |publisher=EFF |access-date=Jul 8, 2024}}

{{Cite web |title=Can I specify my own private key for my Dropbox? |url=https://help.dropbox.com/security/how-security-works#:~:text=Dropbox%20doesn't%20offer%20client,the%20file%20and%20container%20level. |access-date=Jul 8, 2024 |website=dropbox.com |language=en-US}}

{{Cite web |title=Client-side encryption and strengthened collaboration in Google Workspace |url=https://workspace.google.com/blog/product-announcements/new-google-workspace-security-features |access-date=2023-01-24 |website=workspaceupdates.googleblog.com |language=en-US}}

{{Cite web |title=Client-side encryption for Gmail available in beta |url=https://workspaceupdates.googleblog.com/2022/12/client-side-encryption-for-gmail-beta.html |access-date=2023-01-24 |website=workspaceupdates.googleblog.com |language=en}}

{{Cite web |title=About client-side encryption |url=https://support.google.com/a/answer/10741897?hl=en |access-date=Jul 8, 2024 |website=apps.google.com |language=en}}

{{cite web |url= http://www.infosectoday.com/Articles/Client-Side_Encryption.htm |title= Why Client-Side Encryption Is the Next Best Idea in Cloud-Based Data Security |date= 2015 |accessdate= February 21, 2016 |author= Tunio Gaffer |website= Information Security Today |publisher= Auerbach Publications |archive-url=https://web.archive.org/web/20160116160010/http://www.infosectoday.com/Articles/Client-Side_Encryption.htm |archive-date= January 16, 2016 |url-status= dead }}

{{Cite web|url=https://news.ycombinator.com/item?id=13303436|title=Spider Oak - Please stop describing your service as "Zero Knowledge" unless and ... {{!}} Hacker News|website=news.ycombinator.com|access-date=2018-07-16}}

{{cite web |url=https://github.com/cryptomator/cryptomator |title=Cryptomator Github |date=2024 |website=github.com |publisher=Cryptomator |access-date=Jul 8, 2024}}

{{cite web |url=https://crossclave.com |title=SpiderOak Cross Clave |date=2024 |website=crossclave.com |publisher=SpiderOak Cross Clave |access-date=Jul 8, 2024 |archive-url=https://web.archive.org/web/20240515010622/https://crossclave.com/ |archive-date=May 15, 2024}}

}}

Category:Cryptography

Category:Clients (computing)

Category:Cloud storage

{{Crypto-stub}}