Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I am in the same boat currently in my research. In fact I posted this gist link we are discussing. My use case is confidential data and this solution won’t work if I can’t guarantee access is limited to specific users around the country.

Is free, secure, and fast to much to ask? Joking of course.



Is it not possible to just store it encrypted and then have your service give out the decryption key to authorized users?


This is a terrific idea, thank you.

I would love to hear some of the implications of this approach. I can already think that the attacker would know the size of the file, so that might give him information regarding e.g. the file type. It might be of interest to an attacker to know that most clients get files of a specific size, but a certain client gets a file that is much much larger.

I wonder what other implications might there be.


Great idea, I just need to move my thought of encryption on the sending client to encryption on the destination server since this is infosec related and sending client could be compromised. Thanks for the help!




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: