Comments on: How to Make Strong Encryption Easy to Use

By: How SMBs Can Avoid Data Storage Disasters

How SMBs Can Avoid Data Storage Disasters — Thu, 10 Jun 2021 03:35:25 +0000

[…] salespeople with laptops, field technicians, or anyone else who takes sensitive data off-site are good encryption candidates. Anyone in-house who handles customer records or sensitive business intelligence should […]

By: urza23

urza23 — Sun, 19 Jul 2020 15:42:40 +0000

Hey Blackbaze, it is misleading to say that you cant decrypt user data (when custom passphrase is set up), because you can (during restore you have my data decrypted on your server).
Please make this more clear in your product description. It is very inaccurate and dishonest.

For those who want to have their data really private, you have to use something like encfs, or rclone and make sure that you are only backing the encrypted folder to blackbaze.

By: Bart

Bart — Wed, 07 Aug 2019 16:10:20 +0000

Has there been any progress with the zero knowledge decryption during restore? I’d like to join but not with such a huge security flaw.

By: Keep Your Media Data Safe With These 5 Best Practices

Keep Your Media Data Safe With These 5 Best Practices — Sat, 06 Apr 2019 18:43:53 +0000

[…] comes in different flavors. You should always select the strongest encryption available, and make sure that any passwords or […]

By: Lens Rentals | Blog

Lens Rentals | Blog — Tue, 18 Sep 2018 17:07:41 +0000

[…] Encryption comes in different flavors. You should always select the strongest encryption available, and make sure that any passwords or multi-factor authentication you use are strong and unique for each application. […]

By: My Data Backup Plan: Time Machine + Backblaze (plus a free sign-up code!) – Rikomatic's Blog

Thu, 12 Jul 2018 21:29:56 +0000

[…] Military-grade encryption […]

By: Jimbo

Jimbo — Mon, 08 Jan 2018 05:28:00 +0000

In reply to Piotr Czapla.

Yes, this is an old thread… but the issue remains. As I understand it, my data is encrypted on Backblaze servers with my Private Encryption Key.

BUT: Let’s say I need to restore. As I understand this, I enter my Private Encryption Key and then my entire computer basically will be put on a drive, in the clear, and sent through the mail to me unencrypted.

It doesn’t seem to me that it would be so difficult to put the encryption/decryption on my side, inside the Backblaze app. But then again, maybe it is – I’m not a programming genius.

But man, that would be a huuuuge improvement.

By: HIPAAforMSPs.com

HIPAAforMSPs.com — Thu, 09 Nov 2017 02:41:00 +0000

In reply to Guest_47. Trust has nothing to do with being HIPAA compliant, nor does encryption (by itself). If BackBlaze is not following HIPAA regulations and they will not sign and abide by a HIPAA Business Associate Agreement then it is safe to say, BackBlaze is not HIPAA compliant. Regardless of how secure or trustworthy they may be. HIPAA is a legal requirement. Attacking the OP as paranoid and not trusting of BackBlaze doesn't help nor does it answer the question posted.

By: Piotr Czapla

Piotr Czapla — Tue, 10 Oct 2017 22:26:00 +0000

Guys do you have any updates on the request to keep the private key private, so that you cant see the unencrypted data during restore? This topic is becoming quite important for anyone in Europe that has a business and would like to use your service for backups. We are not allowed to store any personal information (ex. data about clients) out side of Europe, and with a new regulation GDPR this restriction has fines of 2 mln euro or more. If we can guarantee that the encryption key never leaves the backed up computers this should be compatible with GDPR.