SpiderOak 6 years Idea: Create a central repository of your data - - PowerPoint PPT Presentation

spideroak
SMART_READER_LITE
LIVE PREVIEW

SpiderOak 6 years Idea: Create a central repository of your data - - PowerPoint PPT Presentation

Apr 06, 2023 414 likes •567 views

SpiderOak 6 years Idea: Create a central repository of your data Client based Windows, Mac, Linux, mobile platforms Backup data from all your devices Share any folder File-Synchronization of any folder Unique Feature

slide-1
SLIDE 1

SpiderOak

  • 6 years
  • Idea: Create a central repository of your data
  • Client based
  • Windows, Mac, Linux, mobile platforms
  • Backup data from all your devices
  • Share any folder
  • File-Synchronization of any folder
slide-2
SLIDE 2

Unique Feature

  • Zero knowledge approach
  • Deduplication (only within your account

Block-Based and File-Based)

  • File synchronization
  • No convergent encryption!
slide-3
SLIDE 3

Why no convergent encryption?

  • Convergent encryption:

Encrypt Plaintext m: Key k = hash(m) Ciphertext c = encrypt(k, m)

  • Serious privacy issues:
  • Provider can see if you stored a file that he

has access to himself.

slide-4
SLIDE 4

Why no convergent encryption?

  • a database mp3 files → reveals your taste of

music

  • INVOICE

Dear ______, for month ____ your fee is $___. Best regards, Non-Free-Download, Inc

slide-5
SLIDE 5

„encryption, encryption, encryption“

  • Privacy for you and the people you work with
  • Mistakes can't reveal your data
  • Authentication bypass can't reveal your data
  • Legal reasons
  • More?
slide-6
SLIDE 6

SpiderOak Orange

slide-7
SLIDE 7

SpiderOak Orange

  • For private / small business usage
  • Backup your data. Sync/Share
  • All your data AND metadata is encrypted
  • Password is required to unlock the encryption

keys

  • Password never send to us
slide-8
SLIDE 8

How does it work?

  • Whole file synchronization process is done by

the client

  • Deduplication is done by the client
  • Client knows about all your meta-data
  • Only encrypted meta-data is uploaded to

storage-server

slide-9
SLIDE 9

SpiderOak Blue

  • Two options: Hosted or private cloud
slide-10
SLIDE 10

Hosted and Private Cloud

  • It's the same zero knowledge approach.
  • Client is mostly the same
  • Only how authentication works changed and

key escrow added

  • Authentication:

LDAP, RADIUS, soon: SAML

slide-11
SLIDE 11

Virtual appliance

  • Installed on your system, behind your firewall
  • Web based management console
  • LDAP (or AD) integration

provisioning, group permissions, and space management with LDAP

  • Authentication service
  • Key escrow server
slide-12
SLIDE 12

Virtual appliance

  • The first time it boots up it creates new keys
  • You setup authentication / LDAP integration
  • Ready to use
slide-13
SLIDE 13

Thank you

Questions? Discussion?