A big topic in the recent news has been the Apple v FBI situation, in which USA’s federal court has ordered Apple to provide the FBI access to encrypted iPhone data in order to aid a murder investigation. Continue reading →
Please note that since June 2017 the iCloud connector has been deprecated and the File Fabric no longer supports it
Since Apple updated their iCloud Provider some users were unable to use our iCloud connector as it did not work with users who had converted their account to iCloud Drive.
Today we have resolved this issues by updating the Connector for iCloud that supports the Apple Drive functionality.
For those who use the Enterprise File Share and Sync service from Storage Made Easy they will know that as part of the Windows and Mac desktop tools that are provided that there is a n email toolbar integration into Mac Mail and Microsoft Outlook that enables users to securely share file links rather than file attachments.
This support for secure email link sharing has now been extended for Chrome users using Gmail using the Storage Made Easy Gmail Plugin available from the Chrome web store.
Once added this provides a new toolbar entry when composing Gmail’s on Chrome:
Once selected this prompts the user to log into their SME Account, if SaaS, or the user can set their custom endpoint if using the SME On-Site Enterprise File Share and Sync solution:
Once logged in the user is presented with their mapped clouds:
From here files can be shared as links can be shared from any of the mapped cloud directories:
If a cloud governance file policy has been set by the Cloud Administrator for the team account then the details here will be pre-populated otherwise options can be chosen prior to link generation. After this when share is clicked, the link is added to the email:
When the link is shared, if Auditing is turned on within the SME Account, then the link generation will be recorded in the Audit log and once the remote user opens the link the remote IP address will also be recorded.
**Note: only team and on-premise accounts provide the Audit features
We have introduced a new feature into the Storage Made Easy platform which enables cloud users to share external folders to other users who will not need a SME Account to gain access to those folders. The feature enables the creation of a secure shared link that is password protected and can be time expired.
The video below shows the feature in action.
Midnight Commander is probably the most popular command line file manager in the world, and certainly for Linux distros. Its design was initially inspired by the classic two pane interface that was found in Norton Commander which was a DOS file manager (for those who remember !).
One of the unsung features of the Midnight Commander (also available on other platforms including phones (I used to use this on my old Nokia N900) and windows and mac) is that it can connect to server over FTP.
This is interesting from a Storage Made Easy viewpoint as although SME providers a full suite of Linux tools, SME also provider protocol interoperability as part of its Cloud Gateway features. What is this I hear you ask ? Well, simply put, it enables files you have stored on public or private storage to be accessible over any of the protocols Storage Made Easy exposes ie FTP, FTPS, WebDav, S3, SFTP.
Midnight Commander supports the FTP protocol which makes it easy to get direct access to any storage that is added to a SME Account using the SME FTP cloud protocol adaptor. To do this:
Choose the Left or Right option
Choose FTP link
Enter connection to SME as follows:
or if you are using the SME EU Server:
The net result is a very easy way to bring the cloud into the linux desktop integrated with tools you already know and use. This can be used with the SME Personal CLoud plan, Business Team, and on-site enterprise editions of the product.
We have added a new feature to the Storage Made Easy platform, real time document collaboration. This is available for team account or Enterprise File Share and Sync on-premise users. It enables real time document editing between team members when online editing using the web document editor. It enables multiple users to open a document at the same time, and enables with everyone to contribute and/or review the document in real time.
This editing facility is available for any document in any cloud that is mapped to work with SME, be it public or private storage (for EFSS on-site users).
The below video shows the feature in action.
**Updated 1st July 2016*
The recent PRISM Data snooping controversies have heightened almost every companies awareness of the potential vulnerabilities of data stored off-premise in the Cloud. Many Cloud Storage companies’ talk about encrypting data ‘at rest’ but the real issue is that the storage companies control the encryption rather than the company whose data is stored controlling the private key.
One of the features that Storage Made Easy provides is an encryption feature that can encrypt data uploaded to remote (and local) Cloud Storage. SME supports 50+ cloud storage vendors, which means companies are able to take advantage of private key encryption for some, or all data, across cloud storage providers.
For individual users of our cloud SaaS services SME uses a key entered by a user to encrypt data, but the key is not stored on the SME hosted service. If the key is lost, or forgotten, then when trying to subsequently access the file the user will not be able to gain access to the file as the correct key phrase will not be known.
For companies that use the SME SaaS hosted service team Admins specify a key that uses a similar mechanism but is applied to all users. Unlike the personal encryption the key phrase is either stored encrypted by the SME service, or it can be stored with a self hosted Vault instance.
For enterprise users who self-host the SME service then the key is can be stored on the service behind the corporate firewall or again it could use the open source Vault software on a key server.
SME uses AES-256 encryption using the Rijndael cipher, with Cipher Block Chaining (CBC) where the block size is 16 bytes. A random initialisation vector is generated when the user supplies an encryption key. The cipher Rijndael consists of:
– an initial Round Key addition
– a final round.
The chaining variable goes into the “input” and the message block goes into the “Cipher Key. The likelihood of recovering a file that has been encrypted using our encryption is fairly remote. The most efficient key-recovery attack for Rijndael is exhaustive key search. The expected effort of exhaustive key search depends on the length of the Cipher Key and for a 16-byte key, 2127 applications of Rijndael.
Once files are encrypted in this manner they can be accessed by an of the comprehensive SME desktop (Web, Mac, Windows, Linux) or mobile tools (Windows Phone, iOS, Android, BlackBerry). When an encrypted file is accessed the user is prompted to provide the private key phrase before the file can be opened.
If the file is accessed direct from the underlying storage then it will not be able to be used as it will be encrypted and without being opened via the SME service, either hosted or on-premises, it will not be able to be un-encrypted. This makes sensitive data stored on remote servers ultra-secure.
The SME also on-premises Cloud Control service resides behind the corporate firewall. It enables the ability to keep very sensitive data behind the corporate firewall but still enable secure file sharing and at the same time offers the ability to encrypt data that is stored on remote cloud storage and other SaaS services for additional security.