With all the buzz around the potential Dropbox security breach, it has everyone debating whether or not the cloud is a safe place to store your data.
It’s undeniable that the cloud and services like Dropbox have made sharing and accessing your files more convenient than ever. You can access your files from anywhere and share them with anyone.
What’s tricky about this, however, is that there’s an inherent flaw in the way most sites, like Dropbox, protect your saved data, not in the way they store it. In fact, there’s a real big difference.
For example, Dropbox stores your data encrypted on their servers using the same AES-256 encryption method that Dashlane does. It’s the best encryption method on the planet, and also happens to be the way the government stores data. But what stops hackers from being able to lift your info with a little SQL injection like they did with so many major consumer websites recently? Quite simply, your password–which is the key that we believe only you should hold, since it’s the key to decrypting your data.
Dashlane protects your personal data using the same AES-256 encryption as other cloud-based servers. Except with Dashlane, your password isn’t stored anywhere on our servers. The only place your password is stored is in your head. If you forget it, we reset it for you — with Dropbox, however, there is a password recovery option. This means your Dropbox password is hackable — by both a Dropbox rogue employee or a malicious outside hacker. Read: Dashlane has removed that inherent vulnerability. Sure, it means you have one major responsibility, which is to never forget your Master Password. But that’s an inconvenience designed for your benefit and protection.
When you log in to Dashlane on a new device, you have to verify yourself in order to gain access to your data. Again, because you and only you hold the key to unlocking and decrypting your data, it means your data stays encrypted, which is basically a hacker’s worst nightmare.
Meanwhile, the data you store on Dropbox, although encrypted, isn’t as protected as it could be, because Dropbox is designed to be super-convenient to access. Do I think you should rally and make Dropbox and other sites change the way they store your passwords? Well, you can decide if you want to #demandprivacy. What’s much more feasible, however, is for you to think twice before you decide to store certain info on certain cloud services. Think of it this way: You wouldn’t leave your purse sitting in the front seat of your car, even if it’s locked. So, don’t store sensitive personal info, like your passwords, on an file on Dropbox or Google Docs.
With every hacking that comes along, there’s a lesson to be learned by those companies and by us, as users of the world wide web. Recently, the lesson everyone is talking about is making safe, unique passwords for every site–something that Dashlane makes super convenient and secure. This time around, however, the focus should be on knowing how safe your personal info is on other sites before you decide to entrust it to them.