Misleading security claim: User data is protected even in case of server breach or seizure #45
Comments
|
As explained in elrido#8 you're right that this statement is wrong:
However you can extend it to make it correct:
To break this down into 3 points:
Additionally we also have to assume that there are no weaknesses in the encryption the attacker could use to decrypt the data. |
* Clarify that HTTPS is essential * Clarify how/when user data is protected in case of a server breach, fixes sebsauvage#45 * Clarify the password-strength matters when you post the URL publicly * some rewording
Hello,
The list of benefits of the main page claims:
However, we can read a conflicting statement in the drawbacks section of the same page, i.e.:
Also, the FAQ clearly state that ZeroBin cannot protect the user from a malicious server.
Since a breached server can clearly be a malicious server, I strongly recommend removing this misleading claim and adding something corresponding to the drawbacks section, e.g., breach or seizure of the server can result in access to user's data.
Technically, we're talking about a malicious user or police agency having access to the server and modifying the code to retrieve the encryption key. At that moment, whenever you access your encrypted information, some javascript (or any other client side code) could send back your key to the server, i.e. the portion after the # character.
I believe a potential solution might be provided by the new Web Crypto API but I'm really not sure. Maybe a browser plugin could to the trick but again, I'm really not sure. It's not my area of research. I'm simply giving hint.
regards,
For reference: http://sebsauvage.net/wiki/doku.php?id=php:zerobin_discussion&#comment_1dbe75ab3779b5dbd09f9f88210f89c9
The text was updated successfully, but these errors were encountered: