But none of that changes the position that people need to use the product that suits their needs. The developer seems genuinely nice and honest and he needs to earn a living. This may have suited the Microsoft Office guy but it wouldn’t be sensible to recommend a product which is no longer being updated as that in intself is a security risk. I did not “put him down” I suggested a better alternative for his situation.ĪxCrypt 1.7 has been abandoned and will no longer be updated. The guy using Microsoft Office had multiple people using the computer and AxCrypt 2 (with its one password policy) wouldn’t protect them in that scenario. It has been made clear by Svante that AxCrypt will not be returning to the previous position of allowing multiple passwords because he considers it a security risk. Obviously this would only be necessary if you’re sharing the files with others or emailing sensitive information. Nor does Svante suggest it is a substitute for FDE.ĪxCrypt complements FDE by encrypting individual files. It isn’t a full disk encryption product and will not protect you from an adversary who has uncontrolled access to your computer. There is a place for AxCrypt 2 and that is for users who want simplicity, need support and are prepared to pay for the product.Īxcrypt is 100% geared towards cloud storage and sharing. With 1.7 these attack surfaces didn’t exist. ![]() In addition we have to blindly accept that AxCrypt are not being secretly compelled by their Government not to store our passwords. Personally I prefer 1.7 like many other people on this forum because of its simplicity.ĪxCrypt 2 changes the trust model and requires us to trust not only the developers of AxCrypt but also the SSL/TLS protocol (and the issuing authority), the integrity of our email providers and the security of AxCrypt’s servers. Hi Robin, no I don’t work for AxCrupt but I have used both versions of the software as an end-user and have extensive experience of cryptography. none of these use zero-knowledge encryption). It’s designed for professionals so may not be suited.ĪxCrypt is geared towards users who store data in Dropbox, Google Drive, OneDrive (i.e. There’s also Tresorit which is more expensive (true zero-knowledge) but by far more suited to mobile devices and desktops as it allows real-time editing, viewing files, locking with TouchID or a PIN, remote revocation, 2SV, limiting access by device, limiting access by IP range. I know you say you’re using SpiderOak and that’s a good solution but last time I tried it I was unable to edit files. The point is that if you have “very special files” then you should not be storing these on your phone because there are too many variables out of AxCrypt’s hands which can lead to full compromise of your data. ![]() You should never hand your phone to somebody when unlocked unless you really trust them!ĭefence in depth is a neat concept but, just like the person taking a photograph on your unlocked phone, you have to trust AxCrypt not to store your password. You can take photographs from the lock screen Robin.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |