this post was submitted on 19 Dec 2023
667 points (97.6% liked)
Technology
59719 readers
2776 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
There are drawbacks to end-to-end encryption (E2EE). I'm not aware of any E2EE cloud storage systems that have the features Dropbox provides. I would LOVE to know of any that...
Support at least the big 5 platforms (Android/iOS/Mac/Windows/Linux).
Have a functional web interface.
Support sharing and collaboration.
Have a search feature
Sync to the local filesystem on a folder-by-folder or even file-by-file basis
Integrate with other tools (e.g. android file picker)
It's not easy to do all that with E2EE, like a functional web interface, search, and integration.
ProtonMail's search, for example, is limited to subject and metadata, and that's specifically because they DON'T use E2EE for that.
I'm willing to compromise some of this for the sake of E2EE, but I'm not at all surprised that feature-first services are more popular than privacy-first services.
I think proton drive covers all but the collaboration
I just checked to see if I missed a big update.
There's still no Linux client, and it cannot sync files on Android (it only supports photo backups).
I can't work around that limitation on Android with FolderSync, either, the way I can with Google Drive, Dropbox, Box, or any WebDAV- or S3-compatible server. Since it uses E2EE, any uploads need to go directly through the app, so integrations are difficult.
It doesn't seem to have a search feature, either, at least not on Android. I can't imagine there's any content-aware search on the web UI, since that can't be done server-side.
There's been some interesting research in homomorphic encryption over the past couple years, which might someday lead to encrypted server-side search. But I think there are still major hurdles to actually implementing it securely and efficiently.
You will probably have tradeoffs. And somehow need to script accept that at some point, you need to trust someone. At the very least with firmware. And you probably need to change workflow.
I find cryptpadb works almost as well as Google docs did a few years ago.
1: easy to port E2EE, it's just math
2: browsers and E2EE is hard, you need an extension to implement it securely so the password can't be made accessible directly to the server (you need it to remain secret even from the hosting company) or else you're dealing with MITM risk
3: easy by sharing encryption keys using E2EE messaging protocols on top
4: encrypted search is a thing, but such indexes does tend to have some limitations
5: still easy
6: still easy, Android specifically have APIs to let apps register themselves to the file picker so they can transparently encrypt and decrypt files. But yes on other systems where 3rd party apps can't offer such integration then it's hard
I've seen one called Skiff that's trying to do most of these things
https://skiff.com/pages https://skiff.com/drive
Mega uses e2ee and is available in all platforms I use. I don't use apple. Web interface is very functional. I think it does support sharing files via link. Should have a search feature also, never used (because I know exactly where I keep my files). It does sync with locals. I don't know about android file picker.
Mega is not a good choice for Lemmy users or Foss activists, probably because of its history - which is not as clean as say next cloud, but is not like google either. As long as it works :/