Skip to content

SailElfCloud encryption

Jump to bottom
Teemu Ahola edited this page May 5, 2017 · 7 revisions

SailElfCloud supports local file encryption meaning that files are encrypted before transmitted and stored to the cloud. Encryption key is also local for the client which means that only the owner of the encryption key used for the file can open the file.

Supported encryption algorithms are AES128, AES192 and AES256.

IMPORTANT! Remember always backup your encryption keys. If you lose them, there is no way to recover data! You can export key by opening context menu of a specific key.

SailElfCloud is compatible with keys generated by elfCLOUD Beaver so preferably use it for key generation and backuping and just import generated keys to SailElfCloud. It is also possible to export a key generated by SailElfCloud and import it to elfCLOUD Beaver.

Key creation

In order to encrypt and decrypt files, at least one key must exist in the device. Keys can be added following ways:

  • New randomly generated key
  • Importing from XML file
  • Importing from clip-board

Encryption configuration

New randomly generated key

Unique key can be created from random data which is got from finger movements on device display. Key can then be exported from SailElfCloud and imported to elfCLOUD Beaver.

Importing from XML

Keys stored to XML files by elfCLOUD Beaver can be imported. The XML files must be located in Documents or Downloads.

Importing from clip-board

Keys can be also added from clip-board or typed-in manually. In this case actual key and it's initialization vector must be given. Hash calculated from both key and initialization vector can be used to verify that the data is given properly. Hash is calculated as specified by elfCLOUD API and thus is compatible with elfCLOUD Beaver.

Key and initialization vector must be given in hex string format (e.g. 12ABF3). Algorithm is chosen automatically based on the length of the key. So for AES128 the key length is 32 characters, AES192 it is 24 and AES256 it is 64 characters.

Using of key

Once at least one key is created, it can be selected to be active one. This selection can be done in log-in screen or in key configuration page. Alternatively no key can be selected which disables encryption for uploaded files. For downloading key is automatically selected from local keys even if no active key is selected.

Exporting of key

A key can be also exported to XML file compatible with elfCLOUD Beaver. By doing long press for the key, context menu will appear which allows exporting the key.

Clone this wiki locally