Implement SECURE Link/Synchronize concept of storing our private data

stealth789

stealth789 last edited by admin

Please consider to use secure concept to store our data in encrypted container, accessible only from client side. Not allow anybody else to access data, not even Opera employees. This current concept in non acceptable from security point of view.

More here https://forums.opera.com/topic/3263/link-synchronize-non-secure-concept-on-purpose/1

lem729

lem729 last edited by

If the data is needed by Opera, but no Opera employees can access the data, lol, what is accomplished by collecting the data? Surely if Opera deems the data important enough to collect, it's employees (at least some) would have to be able to access it.

christoph142

christoph142 last edited by

We're not talking about usage data here, lem.
This is about storing our private data for syncing purpose.

lem729

lem729 last edited by

Sorry. I missed that, and see the point then of the suggestion.

stealth789

stealth789 last edited by

Sure, I meant how my data will be stored. I mean to use safe concept. I think also Firefox Sync use this locked vault system of data storage (didn't analyse it completely). I don't know what concept is used by Chromium / Chrome.

I'll try to explain it on example:

Let's say I'm located in city A. I want share information with friend in city B. So simply, I write it down to paper, and close it to envelope. Then send by post to my friend in city B. Let's assume, that postman cannot see through envelope. So basically, envelope will travel from postman, through some post offices. Finally it will get to city B, and to hands of my friend there. Then he opens envelope, and reads data. Then he can add there something, and send it back to me. Basically only me and my friend will see data. And there's no need for post office employees to see data. They just have to know, where to deliver it. So they need to know some operational steps.

Sure there's problem, that envelope can be ripped. But functionality is safe for me and my friend. And also working, without need of post employees to know what's in the envelope.

Now imagine, we use security vault as transport system. Then it's even harder to open it, even if postman want to. And in data security, we cam encrypt our data with strong algorithm. Than its almost impossible to read it. And basically on server side, there's no any reason to be able to do so.

So I mean use similar concept. Encrypt my data locally on Opera as client. Send encrypted data and save it at Opera server (sure using secure connection). So no one except me can access data. And still sync can work, as it will use unencrypted data, as it will be decrypted on client machine using my password. So Opera will store raw encrypted data, and they won't have my password, as the only way to decrypt it. Even better also add there concept of second level of generated keys. There are also ways to make it really safe.

So from my point, if data will be safe, and privacy honored, is based on decision. Companies cannot make any excuses here. If it's not secure it's by concept and some reasons, not by need of user/client.

These days so called "safe cloud/storage" providers claim to be safe. By safe they mean using HTTPS transfer. But their security concept of data storing is just disaster. Data can be hashed, tracked, searched, used by employees, 3-rd parties, ... It's just that people don't understand how dangerous it is, and that they're loosing their privacy. They gave it away for free. So companies don't use safe concept, even if they can. Because people allow it. But simply if I care about customer privacy, and I honor it, I can make it safe. And if company decided willingly to not use it safer, and implement back-doors, then there's always reason for it. And it's never for good of customer. Also human element is most time the most dangerous one here.

It's just more you know, how privacy and bad security can be abused, the more you care, and fear of it.

A Former User

A Former User last edited by

Besically from what I've read (correct me if I'm wrong), my synchronized data are stored on Opera server(s). And yes, I have password to connect to Opera, so basically my data should be secure. But if I got it right, they're not!!! Opera employees can access this data!
Who said they can and that your data isn't already safe?

stealth789

stealth789 last edited by

Besically from what I've read (correct me if I'm wrong), my synchronized data are stored on Opera server(s). And yes, I have password to connect to Opera, so basically my data should be secure. But if I got it right, they're not!!! Opera employees can access this data!
Who said they can and that your data isn't already safe?

First, I've never got detailed security concept how exactly Link works. So just what I've got from here http://www.opera.com/privacy#link.

• "except where required by law or regulation"

If your concept is safe for me, and act like secure vault only I can access, then what kind of data exactly can Opera provide? So have they unencrypted data?

• "Opera restricts internal access to this information exclusively to those who need it for the operation of the Link service"

Opera restricts? It means Opera can access and read my private data or not? Who except for me needs this data? I don't ask for rules. I ask from technical point of view. Can Opera read my private Link data without my password?

• "Opera may retain IP addresses, user ID, and anonymous traffic data"

What are anonymous traffic data? Unencrypted private data from my Link? So is Opera capable of reading this data in unencrypted form without brute-force attack or not?

Deleted User

Deleted User last edited by

@stealth789
"except where required by law or regulation"

If your concept is safe for me, and act like secure vault only I can access, then what kind of data exactly can Opera provide? So have they unencrypted data?

May be the data is not really encrypted by only one key.
Really End-To-End-Ecryption? I hope it may be, but i distrust.

"Opera restricts internal access to this information exclusively to those who need it for the operation of the Link service"

Opera restricts? It means Opera can access and read my private data or not? Who except for me needs this data? I don't ask for rules. I ask from technical point of view. Can Opera read my private Link data without my password?

It's not clear, who (other person than myself) can really access the data. In these days of datamining and "law enforcement" by european and otehr states may be there could be a backdoor to decrypt the data.

stealth789

stealth789 last edited by

@stealth789
"except where required by law or regulation"

If your concept is safe for me, and act like secure vault only I can access, then what kind of data exactly can Opera provide? So have they unencrypted data?

May be the data is not really encrypted by only one key.
Really End-To-End-Ecryption? I hope it may be, but i distrust.

I can be encrypted by more keys, but if concept is secure from my point of view, I have to be the ONLY ONE to be able to read unencrypted data. There's no need for any kind of software to be able to read my PRIVATE data.
Let's say, it should work, like I save my local Truecrypt file container with Opera Link/Sync data on Opera server, encrypted with my password. Sure there can(probably) should be enhancement with more keys, but anywat. I have to be ONLY one, to be able to read my unenctypted PRIVATE data. This is my view on privacy. Any other concept is made due to hidden reasons.
And you trust system, where your data can be accessed on store side (server) implicitly? But you are afraid of secure vault? I just don't get it.

"Opera restricts internal access to this information exclusively to those who need it for the operation of the Link service"

Opera restricts? It means Opera can access and read my private data or not? Who except for me needs this data? I don't ask for rules. I ask from technical point of view. Can Opera read my private Link data without my password?

It's not clear, who (other person than myself) can really access the data. In these days of datamining and "law enforcement" by european and otehr states may be there could be a backdoor to decrypt the data.

I don't care what means who. Question is simple. Can anybody except me access/read my unencrypted private data?
And sure they can't do anything they want. Maybe in US. And today it's not problem to move server anywhere, where law is correct. Not something violating my privacy. If Firefox and any other company can have secure concept, why Opera can't. Simply it's decision of kind of implementation.

My privacy and private data belongs to me only. And sure I won't use any so called "secure" storage, that exploits my privacy.

Also now, I use offline synchronization of my Opera settings, based on filesystem mirroring. I just hoped, that Opera will honor our privacy, and will make concept of Link secure, so that anybody can use it without fear.

So please give me relevant reason, why concept cannot be secure?