Protect Your SkyDrive Files From The NSA Using TrueCrypt

Omar Shahine and Mona Akmal from the SkyDrive team held an AMA on reddit answering user questions.  We’ll be sharing any interesting tidbits.

A number of users asked if the NSA could access their files on SkyDrive.  While the questions was not answered directly, it was said that a built-in encryption is not coming to SkyDrive and users could use a third party solution such as TrueCrypt.  Mona Akmal addressed the security on SkyDrive:

  • Your SkyDrive account and your private files are password-protected.
  • When you upload or access private files on SkyDrive, we encrypt information sent between you and our servers using Secure Sockets Layer (SSL) to prevent eavesdroppers from seeing your files when in transit.
  • Once your files are on our servers, we work to prevent hackers from accessing your data by employing sophisticated physical / electronic security measures. We also store multiple copies of your file on different servers and hard drives to help protect your data from hardware failure

Microsoft employee and reddit employee formerlydrinkingguy77 mentioned:

of course. You create a truecrypt ‘file’ which is a giant block of noise to anyone who doesn’t have the key. It’s mounted like a USB drive / dmg on mac. You copy files into it, change them whatever. If you had that file in your skydrive folder it would synch.

Now, the whole thing would synch every time you changed any part of it, but you would be guaranteed privacy. Truecrypt can do whole HD volumes as well. It’s worth looking into if you’re serious.

Omar Shahine:

We don’t currently have that option. Other folks have pointed out that you can use TrueCrypt to do this today.

http://www.reddit.com/r/IAmA/comments/1jcypj/i_am_omar_shahine_and_mona_akmal_with_the/cbdffoq

SkyDrive Team Regarding NSA:

There is more info here: http://blogs.technet.com/b/microsoft_on_the_issues/archive/2013/07/16/responding-to-government-legal-demands-for-customer-data.aspx

Source: Reddit

Comments