Windows 10 File Encryption (self-signed cert) and upload to GoogleDrive
Hi,
I created a self-signed certificate on my Windows 10 PC.
I then went to a specific folder (which is part of my Google Drive folder on my PC), Right-click, Properties, Advanced (under General TAB) and enabled encryption for the folder. It immediately changed the icon of the folder, so I can see that it is encrypted.
I then shared this encrypted folder with another Google Drive user. This other user can open files in this folder without any issue.
This tells me that when one uploads the encrypted files from the PC to Google Drive it is decrypted on the fly.
How come would this happen and how can one stop the files from being decrypted?
In a nut shell: I don't want to use a 3rd party to encrypt the files before it goes to Google Drive, I want to use my own self-signed certificate on my PC, have files encrypted, but they need to stay encrypted when uploaded to Google Drive.
Thanks,
Reinhard
I created a self-signed certificate on my Windows 10 PC.
I then went to a specific folder (which is part of my Google Drive folder on my PC), Right-click, Properties, Advanced (under General TAB) and enabled encryption for the folder. It immediately changed the icon of the folder, so I can see that it is encrypted.
I then shared this encrypted folder with another Google Drive user. This other user can open files in this folder without any issue.
This tells me that when one uploads the encrypted files from the PC to Google Drive it is decrypted on the fly.
How come would this happen and how can one stop the files from being decrypted?
In a nut shell: I don't want to use a 3rd party to encrypt the files before it goes to Google Drive, I want to use my own self-signed certificate on my PC, have files encrypted, but they need to stay encrypted when uploaded to Google Drive.
Thanks,
Reinhard
The file is never store as encrypted to Google Drive. Use BoxCrypter if this is the result you want (I do)
https://www.boxcryptor.com/
https://www.boxcryptor.com/
ASKER
Dear Shaun,
Thanks for your comment,
I have also used Boxcryptor in the past, but then one is dependant on a 3rd party, what if that 3rd party goes under one day or what if they are compromised or someone within their organization decides to access one's data as the encryption is done by their app.
So I am trying to find a way of doing the encryption myself (like with a self signed cert on my PC) and being in control of my own encryption.
It seems like as long as one copies encrypted files from the PC that holds the valid certificate it decrypts on the fly, and if one tries to upload the same encrypted files from another PC (by placing it onto an external drive and plugging that into another PC) then the other PC cannot copy it from the external drive to it's own drive or to GoogleDrive.
Thanks for any ideas on how to do one's own encryption without using a 3rd party.
Regards,
Reinhard
Thanks for your comment,
I have also used Boxcryptor in the past, but then one is dependant on a 3rd party, what if that 3rd party goes under one day or what if they are compromised or someone within their organization decides to access one's data as the encryption is done by their app.
So I am trying to find a way of doing the encryption myself (like with a self signed cert on my PC) and being in control of my own encryption.
It seems like as long as one copies encrypted files from the PC that holds the valid certificate it decrypts on the fly, and if one tries to upload the same encrypted files from another PC (by placing it onto an external drive and plugging that into another PC) then the other PC cannot copy it from the external drive to it's own drive or to GoogleDrive.
Thanks for any ideas on how to do one's own encryption without using a 3rd party.
Regards,
Reinhard
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you very much, that makes sense, much appreciated.
1) Once anyone provides an encryption key for the filesystem, they have access to the file system.
2) So long as their key is valid (hasn't timed out or expired), they maintain access.
3) Access does realtime encryption of files they create/update + decryption of files they access.
4) As soon as their connection breaks, then they'll only see the encrypted files.
Connection breaks can occur via person closing their connection, unmounting the filesystem, connection timeout, key expiration.
5) So long as a person has a valid connection to this filesystem, all files will appear plaintext/decrypted to them.
Generally encrypted filesystems work like this.
So just break a connection + you won't be able to access decrypted files anymore.