Unlike sharing family photos on Facebook where anyone can see them a user can upload the files to a cloud service protected by a password called the key.Only those who know the key can have the access to the uploaded files.Instead of investing in large data storage, business can keep their files in a cloud and share them with their remote offices but distributing the keys and updating them when a client wants to change who can access the data may create problems.
Updating the users in a group or the permissions that a group has in the system,you start seeing these cascading needs to download files, decrypt them, re-encrypt them, re-upload them and redistribute keys.
Cloud storages are also prone to hacking.During the first half of 2017 there have been almost 800 data breaches into Cloud platforms in the US. Scientists at the University of Pittsburgh say they want to create a system in which all encryption will stay on the clients machine so the client will be able to control not only access to date but also what any of the users will be allowed to do with it.
The mentality that we are taking with this is that it’s much easier to change the software on my machine than it is to convince a service provider to completely change the way that they’re doing things.
The clients will be able to identify the shared folders they want to protect,set the policy of who is allowed to see what and the rest will happen behind the scenes.
We’re more focused on the policy enforcement so we’re allowing a user to basically dictate not necessarily what a provider can do but what everyone can do on with their data.
The researchers say their new app for a better encryption of Cloud storage may be ready for download within a year.
George Putic, VOA News, Pittsburgh.