Dropbox under fire for security concerns (updated)
Update: Dropbox has sent us a response to the issues raised in this article; it is reproduced in full at the end of this post.
Popular cloud file syncing service Dropbox, much beloved by TUAW, has been in the news lately. On the one hand, it announced it had hit a new high of 25 million users, which is a number that is both pleasingly big and pleasingly round. On the other hand, it has been the target of some strongly worded criticism for its security features -- or, more accurately, problems with them.
The most recent of these criticisms arose from an update to the Dropbox Terms of Service to state that if the government asks, it will hand over your files:
As set forth in our privacy policy, and in compliance with United States law, Dropbox cooperates with United States law enforcement when it receives valid legal process, which may require Dropbox to provide the contents of your private Dropbox. In these cases, Dropbox will remove Dropbox's encryption from the files before providing them to law enforcement.
This isn't terribly surprising, although on first glance it might sound awful. Consider the alternatives. If Dropbox receives a legally binding subpoena court order (thanks for the correction, JBB) in a criminal case demanding the release of data, what else could anyone expect it to do except hand the data over, right?
Perhaps not. Earlier today, Miguel de Icaza, a prominent Open Source programmer who founded the GNOME and Mono projects, wrote a blog post pointing out a curious inconsistency between this stance and Dropbox's advertising. He linked to this page on the Dropbox FAQ which says, amongst other bold promises, that "all files stored on Dropbox servers are encrypted (AES-256)" and "Dropbox employees aren't able to access user files, and when troubleshooting an account they only have access to file metadata (filenames, file sizes, etc., not the file contents)."
As de Icaza points out, there are no details beyond these high-level statements about exactly how Dropbox carries out its data encryption. AES-256 is a very secure encryption scheme which basically makes it impossible to hack into the encrypted files without the decryption key. Dropbox's FAQ copy makes it sound like its employees don't have access to this key -- as though it's generated from your Dropbox password, perhaps. That's certainly what I took away from the Dropbox FAQ.
However, if that were true, then in the event the authorities came knocking, Dropbox simply wouldn't be able to supply the decrypted files, subpoena or no. It can't get at the contents of those files without the key. So in fact, we can assume that Dropbox does have those keys after all, which means that the only thing stopping Dropbox staff from reading your files is a matter of policy rather than anything to do with the encryption.
And, of course, key files stored on servers can be stolen -- and we know those keys must be accessible to Dropbox's servers, as without them they wouldn't be able to encrypt and decrypt your files. So now we have an additional concern: a hacker with access to the Dropbox servers could access your files if they can also find the matching key -- which must be there, somewhere.
All this comes on the heels of a report last week by security engineer Derek Newton that revealed another insecurity in Dropbox. Newton reports that the machine hash -- a string that uniquely identifies the computer running Dropbox to their servers -- is stored unencrypted and in a standard location on any machine with Dropbox installed. This means that if someone steals that single small file, perhaps by tricking a user into revealing it or through a malware attack, they can copy the machine hash to a computer of their own and download a copy of the entire contents of the Dropbox account in a manner that is almost undetectable to the user.
For most users, this security hole is potentially far more worrying than the first one -- most people with information that is sensitive wouldn't be storing it on Dropbox in the first place. Those who really have to for whatever reason could always doubly encrypt the file, for example by placing an encrypted disk image inside the Dropbox folder. This second problem, however, does represent quite a tempting target for hackers to attack.
All these problems are purely theoretical, for the moment; there are no known cases of a hacker exploiting them. Nevertheless, they do show that if you have data you care about, whether it's the trap layout of your underground lair or your employer's TPS reports, you ought to be careful where you put it. Trust no-one.
Update: Dropbox have asked us to run the following response from their CTO, Arash Ferdowsi:
In our help article we state that Dropbox employees aren't able to access user files. This is not an intentionally misleading statement -- it is enforced by technical access controls on our backend storage infrastructure as well as strict policy prohibitions. The contents of a file will never be accessed by a Dropbox employee without the user's permission. We can see, however, why people may have misinterpreted "Dropbox employees aren't able to access user files" as a statement about how Dropbox uses encryption, so we will change this article to use the clearer "Dropbox employees are prohibited from accessing user files."
Regarding our Terms of Service:
Like all U.S. companies, Dropbox must follow U.S. law. Our Terms of Service have always stated that Dropbox must comply with law enforcement officials, but as the popularity of Dropbox has grown rapidly, we've gotten an increasing number of questions from users about how we do this. The TOS update was merely a clarification for users, not a policy update -- we will fight vigorously for user privacy. It is also worth noting that all companies that store user data (Google, Amazon, etc.) are not above the law and must comply with court orders and have similar statements in their respective terms of service.
On the authentication file issue reported by Derek Newton, we still stand by our initial statement: once a machine is hacked or compromised, security bets are off. At the same time, we've taken the feedback from our users very seriously and recognize that we can do more to protect Dropbox accounts on compromised machines. To be more concrete, last week's update to the Dropbox desktop application already sets more restrictive permissions on the folder that stores the authentication file. We are also working diligently on a solution that will make the authentication file useless on a second computer.
Share
Categories
Update: Dropbox has sent us a response to the issues raised in this article; it is reproduced in full at the end of this post. Popular...
Add a Comment
There are in fact US based online storage (backup, sync and share) services that encrypt data in ways that does not allow their employees or ANYONE else to decrypt the data stored with them.
I am an employee of SpiderOak Inc (https://spideroak.com) and with our client side encryption key creation and zero-knowledge storage approach we CAN NOT decrypt client data at any point.
Of course like any US corporation we have to comply with court orders for data retrieval by government agencies but any data we would hand over will be in it's encrypted form and useless to the receiver.
You can learn more about our security and services @ https://spideroak.com/engineering_matters#true_privacy
and https://spideroak.com
We also offer 2GB free FOR LIFE to anyone, great prices on premium accounts and more.
Hi folks,
I work for SpiderOak if you don't mind me commenting. If you are looking for a solution with more of an emphasis on security you might want to take a peek at SpiderOak online backup and sync – https://spideroak.com
Cross-Platform, 100% zero-knowledge, 100% secure.
With client side encryption key creation you can easily run a zero-knowledge environment if you wish.
We @ spideroak.com have employed this approach from the start and while you really have to remember your email/passkey (since we can't decrypt your data for you) it does keep your data secure in a much more honest way.
This is why I store my personal data in encrypted disk images. I have one for documents, one for pictures, one for sites and one for selected files in the library stored in my Dropbox folder. Once an hour, I have a launch agent script I wrote mount the encrypted dmg using a unique 128 bit password stored in my Keychain then rsync the respective directories into the now mounted disk image then dismount the image. Once dismounted, Dropbox takes over and syncs the .sparseimage file to their cloud. If the FBI were to serve a subpoena on Dropbox regarding me they would only see a couple of encrypted Disk Images. Good luck to anyone trying to brute force the password on those sparseimage files. If the FBI wants my data I'm sure they'll seize my computer first before going to dropbox.
April 20 2011 at 1:34 PM Report abuse Permalink rate up rate down ReplyEncryption by Dropbox means 'server-side' encryption. That is, you must first send your unencrypted data to them, and then they encrypt it. So it requires that you trust them to handle your data appropriately.
The other option is client-side encryption. This means that your data gets encrypted on your computer, by you, before it gets sync'd. In this case, you dont' have to trust anyone with your data. True Crypt, GnuPG are tools that can do this.
We've just released an early beta of our app, SecretSync, that works with Dropbox to provide client-side encryption.
http://getsecretsync.com
Secretsync ensures that before Dropbox gets your data, your computer has encrypted it first. We built it in response to the question of whether an online service could be trusted with your data. We felt that the answer would never be a resounding 'yes', so something else was needed.
Does this mean that is is ILLEGAL for DropBox to provide truly secure file encryption under US Law? Can't they just offer a service where the encryption is out of their hands?
What's to stop a disgruntled employee from violating their "don't look at the files" policy?
TrueCrypt has the best encryption available to the public. Not so sure that OS X's built-in Disk Image DMG AES-256 is nearly as secure as the TrueCrypt methods. Dropbox itself uses AES-256, but TrueCrypt takes security extremely serious.
You can create TrueCrypt encrypted volumes that appear as a single file. They even have growable volumes that will increase in size as you mount it and copy more files to it. Once such a file is on Dropbox it's copied / sync'd to all your computers but you have to mount and unlock it on each computer.
http://www.truecrypt.org/ - Free
The FBI couldn't decrypt a TrueCrypt file after trying for over a year with all their best super computers. http://news.techworld.com/security/3228701/fbi-hackers-fail-to-crack-truecrypt/
All this being said, security people can still be paranoid, because the authors of TrueCrypt are secretive, etc. There is a paranoid belief that it might be the CIA behind TrueCrypt. So unless you are Bin Laden, you are probably safe using TrueCrypt.
Wuala provides a comparable service to dropbox, but everything is encrypted on your device before touching the cloud in fragments.
www.wuala.com
+1 to Wuala: http://www.wuala.com/referral/P4AB6APM76FFCKMJNBKF
another very useful tool is truecrypt: http://www.truecrypt.org/
"If Dropbox receive a legally binding subpoena in a criminal case demanding the release of data, what else could anyone expect them to do except hand the data over, right?"
Wrong. A subpoena is not a court order. Anyone who files a lawsuit can serve a subpoena upon any third party. Most if not all internet service providers simply refuse to honor the subpoena based on privacy objections. It's then up to the litigant to ask a judge to turn that subpeona into a court order (which requires a much higher threshold of justification than the zero required associated with issuing a subpoena). Some providers won't stop there; they'll appeal the court order.
Bottom line is Dropbox's stated legal policy, as stated, is well below the norm associated with the internet service provider industry. If the policy had said they will obey court orders on turning over documents, that's totally different.
Oops, you're right -- I meant to say court order. I've corrected the post and credited you for the change. Thank you!
April 20 2011 at 3:22 AM Report abuse Permalink rate up rate down ReplyLuckily some techie soon to be lawyers (such as myself) know to run your own server on the cloud rather than use Dropbox for client files...
April 19 2011 at 7:56 PM Report abuse Permalink rate up rate down Replyhttps://www.dropbox.com/static/team/DropboxSecurityOverview.pdf
According to this all files are encrypted on Amazon’s S3 service.
Hot Apps on TUAW
Deals of the Day
more deals- Used Apple iPhone 3G 8GB for AT&T for $108 + $5 s&h
- Apple Mac Pro Xeon 6-Core 3.3GHz Desktop w/ 12GB RAM for $3,899 + $28 s&h
- Apple MacBook Pro Core i7 Quad 2.2GHz 15" SSD Laptop for $2,447 + $13 s&h
- Apple Earphones with Remote and Mic for $6 + $2 s&h
- PC Micro Store sale: Up to 50 off
- USB MP3 Player FM Transmitter with remote for $6 + free shipping
Software Updates
more updates- EFI Firmware Update brings Lion Internet Recovery to 2010-model Macs
- OS X Lion 10.7.3 released with Safari 5.1.3, Wi-Fi bug fix
- Aperture updated to 3.2.2, addresses Photo Stream issue
- Apple updates Keynote to address Lion issues
- Google Search app gets new look on iPad
- Apple releases Apple TV Software Update 4.4.3
Featured Stories
more stories
Popular Stories
TUAW (or The Unofficial Apple Weblog) is a website devoted to tips, reviews, news, analysis and opinion on everything Apple.
34 Comments