Solved

I am in need of help with an ibackup.com account.  My client doesn't know their encryption key to restore from their backup.  The key is not encrypted on the website for entry.

Posted on 2014-07-22
3
408 Views
Last Modified: 2014-08-11
My client doesn't know their encryption key for their account.  They thought they had it written down, but cannot locate it.  This is needed to be put in on the website to allow for the restore of data.  

The passkey they enter is not encrypted on the site. (ie. They are not entering the hash in to the field, just the password)  

I have spoken to tier 1 and tier 2 and both said that they do not store the password data so they are not able to reset the key without resetting the entire account and losing all of the backup data.  The techs told me to try and keep guessing passwords and brute force in.  This doesn't seem like a great use of our time.  Does anyone have any advice?  Thank you.
0
Comment
Question by:mjsimmer
  • 2
3 Comments
 
LVL 5

Expert Comment

by:amac81
ID: 40212421
I have been in a similar scenario with iBackup and their technicians are correct.  Their systems handle the encryption using the key without any interaction.

Perhaps they could send you the encrypted copy of the backup set on a USB disk and you could brute force that....might be best case.
0
 

Accepted Solution

by:
mjsimmer earned 0 total points
ID: 40244520
We gave up and hope the data can be recovered off of the drive.
0
 

Author Closing Comment

by:mjsimmer
ID: 40252652
No real solution. That is why it is encrypted. If the customer loses the password shame on them!
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you thought ransomware was bad, think again! Doxware has the potential to be even more damaging.
Businesses who process credit card payments have to adhere to PCI Compliance standards. Here’s why that’s important.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question