I've installed a copy of TeamDrive SecureOffice, but I'm feeling some disquiet about using it.
With TeamDrive, I have a high degree of confidence that my data is encrypted on the desktop
before delivery to TD servers. It can only be decrypted when it returns to my desktop. That is,
TD cannot decrypt the data, and no mistake on their part will release my data to the world.
[My company's customers include Banks, Defence, Govts - I think protecting their data is of
high value to us]
However, when I look at the TeamDrive SO page, I see the same language used by
normal cloud storage vendors e.g. how they encrypt end-to-end (in transit?). With most vendors, that language
is used to obsfucate the real problem of unprotected data in the DataCenter.
Here's the language from the TD SO website:
With TeamDrive SecureOffice, shared documents will never leave the app’s secure environment. No matter when, where or on which mobile device you access and send data from, TeamDrive SecureOffice will provide complete end-to-end encryption; the data are never left unsecured. In comparison to other cloud-based solutions, who often times transmit data in an unencrypted form, TeamDrive uses 256-bit AES end-to-end encryption to transmit data and is the first solution of its kind to provide complete end-to-end encryption and document editing in a single app.
It does talk about the data being encrypted, but they don't use the key language that TD uses, such as:
No access to the data transferred from the TeamDrive client is possible. All 256 bit AES keys, in order to gain data access, are stored solely on the client computer. Amazon, other third parties and the US National Security Agency have no possibility to decrypt stored data. Decryption during runtime is also not possible.
Perhaps I'm just being paronoid? Can someone from TD chime in here - does the use of TD SO weaken
their protection of data in any way? Is it possible for any 3rd parties to view the data (including
TD and the developers behind SO (whoever they may be).
Thx.