Client-side encryption

Source: Wikipedia, the free encyclopedia.

Client-side encryption is the

cloud storage service.[1] Client-side encryption features an encryption key that is not available to the service provider, making it difficult or impossible for service providers to decrypt hosted data. Client-side encryption allows for the creation of applications whose providers cannot access the data its users have stored, thus offering a high level of privacy.[1] Those applications are sometimes marketed under the misleading term "zero-knowledge".[2]

Details

Client-side encryption seeks to eliminate the potential for data to be viewed by service providers (or third parties that compel service providers to deliver access to data), client-side encryption ensures that data and files that are stored in the cloud can only be viewed on the client-side of the exchange. By remaining encrypted through each intermediary server, client-side encryption ensures that data retains privacy from the origin to the destination server.[3] This prevents data loss and the unauthorized disclosure of private or personal files, providing increased peace of mind for its users.[1]

Current academic scholarship as well as recommendations by industry professionals provide much support for developers to include client-side encryption to protect the confidentiality and integrity of information.[4][5][6]

Examples of

Dropbox[9] provide client-side encryption. Google Drive and Google Docs[10] released client-side encryption in 2021 thereby becoming the first cloud productivity suite ever and the first major cloud storage platform to productionize client-side encryption. Google followed up by releasing client-side encrypted versions of Google Meet, Google Calendar, and Gmail.[11] As of January 2023, Google Workspace Client-side encryption
is not yet available to free users.

See also

References

  1. ^ a b c d Tunio Gaffer (2015). "Why Client-Side Encryption Is the Next Best Idea in Cloud-Based Data Security". Information Security Today. Auerbach Publications. Archived from the original on January 16, 2016. Retrieved February 21, 2016.
  2. ^ "Spider Oak - Please stop describing your service as "Zero Knowledge" unless and ... | Hacker News". news.ycombinator.com. Retrieved 2018-07-16.
  3. ^ "What is Client-side Encryption and Why Does It Matter?". Virtru. 2015-05-25. Retrieved 2021-05-05.
  4. ISBN 978-1-4666-6560-6
    . Retrieved 21 February 2016.
  5. ISBN 978-3-658-01115-4
    . Retrieved 21 February 2016.
  6. ISBN 978-3-9813317-0-7
    . Retrieved 21 February 2016.
  7. ^ "Does iCloud use client-side encryption?". Stack Overflow. 30 July 2012. Retrieved February 21, 2016.
  8. ^ Tunio Zaffer (8 April 2015). "Client Side Encryption: The Latest Trend In Cloud Storage". Dataconomy. Retrieved February 21, 2016.
  9. ^ "Can I specify my own private key for my Dropbox?". Retrieved February 21, 2016.
  10. ^ "Client-side encryption and strengthened collaboration in Google Workspace". Google Workspace Blog. Retrieved 2023-01-24.
  11. ^ "Client-side encryption for Gmail available in beta". Google Workspace Updates. Retrieved 2023-01-24.


Stub icon

This cryptography-related article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Client-side_encryption&oldid=1135743450"