One of the knocks against Google's online applications is that your personal data is stored unencrypted on the company's servers. For the many users of Google apps who are unconcerned about somebody snooping around their files, this won't matter. But those servers are no place to store sensitive personal or business information.
You can store your financial and other confidential information online for free by using a service such as Mozy or IDrive that encrypts the data on their servers, usually in a way that prevents the service's own employees from decrypting it. I looked at three services that include encrypted online storage along with other security services.
SpiderOak gives you up to 2GB of secure online storage for free but requires that you download a big client program, though you can access your data via a browser. The free storage offered by CryptoHeaven and SwissDisk top out at 50MB, but both of these services have more to offer, and SwissDisk doesn't even require a client download.
Free encrypted storage with room to spare
Secure online storage is only one of the features of the SpiderOak service, but the site's 2GB of encrypted-file capacity is difficult to ignore. You can also sync and share folders between multiple Windows, Mac, and Linux PCs. The service is designed primarily for backup but also lets you access your online files from any Internet-connected system.
SpiderOak claims to provide fault-tolerant servers to guard against data loss and also keeps old versions of your files to assist in recovery. The service uses a combination of 2048-byte RSA and 256-bit AES encryption. It also encrypts the keys you use to access the data so the company itself can't access your data.
The SpiderOak client program lets you view and access your online files.
(Credit: SpiderOak)The SpiderOak client program crashed when I attempted to transfer a single 1MB JPEG file. The software is a real throwback, and the reason I prefer an online service. In testing, I was prompted to download a 12MB update of the SpiderOak app. When I restarted, the program automatically updated the 257MB of data I had backed up previously.
It took more than an hour to transfer 257MB of data to the SpiderOak server. Subsequent syncs and single-file transfers went much quicker, but using the program feels like you're plodding through the settings and folder tree. If 2GB of storage space isn't enough, you can buy 100GB increments for $10 a month or $100 a year.
Secure more than files
Online file encryption is only one component of the security services CryptoHeaven offers a workgroup. You can also send and receive e-mail and IM securely by inviting people to communicate with you; for an added fee, the company will also host your domain to give your encrypted communications a personal touch.
The free service lets you store up to only 40MB, but that's expandable up to 50GB for prices starting at $7.99 a month or $66 a year for 200MB. Personal accounts come with up to five e-mail addresses, and business accounts offer up to 12 addresses.
Passwords are optional for the CryptoHeaven secure online file storage, e-mail, and IM service.
(Credit: CryptoHeaven)After you download the 8.4MB CryptoHeaven client program, the installation routine asks whether you want to password-protect the account and use a password hint. Business plans let you create and manage accounts, including assigning passphrases and setting permissions.
The company promises that no one can access your data but you via its "AES encryption with 256-bit symmetric key as well as public-key cryptography with 2048-4096-bit keys." Sounds secure enough for my needs.
The quick-and-easy approach to secure online storage
There's something to be said for the multifunction approaches taken by such security services as SpiderOak and CryptoHeaven. But there's a time and place for specialists as well. The SwissDisk service offers 50MB of secure online storage as a "gift" but charges from $3 a month for a Mobility service to $12 a month for a personal account that includes access to your data from Windows Explorer or Mac Finder.
After you sign up for your free account, you simply log in the SwissDisk site, browse to the files or folders you want to upload, and click Upload. My test 1MB JPEG file uploaded in about five seconds. You can download, delete, rename, or create a temporary URL for your online files. Simple and straightforward.
Storing files securely online couldn't be simpler than with the free SwissDisk service.
(Credit: SwissDisk)The only downside of the SwissDisk service is that you have to provide a telephone number and mailing address in addition to an e-mail address to sign up for a free account. Considering that the data and transmission lines are protected by 256-bit AES encryption and the SwissDisk servers "certified Hacker Safe," I'd say my files are safer online than they are on my own PC.
A reader named Eric found himself locked out of his Vista administrator accounts:
"Somehow, my account and my son's accounts were downgraded to standard user on his new computer using Vista Home 32-bit. I cannot seem to log in to make any changes to the accounts now. It prompts me to enter a password but no password box is available to type it in. How can I log in to change my account back to administrator?"
In a post last year, I described how to enable Vista's hidden administrator account and password-protect XP's default administrator account. Of course, this tip works only if you use it before you actually need it because it requires administrator privileges.
I found another approach described by Microsoft MVP Ronnie Vernon on the Soft32 forum. Here it is in a nutshell:
• Restart your PC and press F8 repeatedly before Windows loads to open Vista's Advanced Boot Options screen.
• Use the arrow keys to select Safe Mode and press Enter.
• On the low-res Windows Welcome screen, choose the Administrator account, which by default has no password.
• click Start > Control Panel > User Accounts and either change your standard account to an administrator one or create a new administrator account.
Choose Safe Mode on the Vista Advanced Boot Options menu to restore or create an administrator account.
(Credit: Bert Kinney)When you restart the machine normally, you'll have access to the administrator account you just restored or created. (Note that I wasn't able to verify this tip because I'm not willing to risk losing the administrator accounts on my Vista PC just to test it.)
Gmail encrypts transmissions, not messages
Another reader named Ian contacted me about some misinformation in a post from last month entitled "Five simple PC security tips":
"In this article, you refer to 'encrypting Gmail' where you urge people to turn on the https: feature when using Gmail. Technically, while any e-mail read/written is encrypted in transit between your browser and Gmail's server, the e-mail is nevertheless still stored in the clear.
"Perhaps you could clarify the wording somewhat so people might potentially avoid interpreting your remarks so as to conclude that their stored e-mail is somehow encrypted on Gmail's servers."
Right you are, Ian, which is why you want to think twice about storing confidential information on Google's servers or any other Web servers that don't support encryption. Google is reportedly considering changing Gmail to default to encrypted sign-ins, as explained by Brian Krebs on his security blog earlier this week.
This doesn't affect your stored messages, however, nor the files you share via Google Docs & Spreadsheets, nor any of your other personal data accessible through Google free services. That's the best reason I know not to keep any sensitive information in Gmail or any other Google app.
In a future post, I'll describe secure online services. You can bet none of them will have "Google" in their name.
(Credit:
CNET)
Everyone knows they should back up their data, but a surprisingly small percentage of people actually do. Unfortunately, when the big crash finally comes or you experience a hard-drive failure, that's usually the time you realize you should have been backing up all along. There are a number of programs that make it easier to regularly back up your hard drive, but in my experience, many require several steps to get the job done.
Nero's BackItUp and Burn ($39.99), released yesterday, attempts to make the whole process easier for everyone. Using an intuitive tabbed interface and simple controls, just about anyone can pick up BackItUp and Burn and start a regular schedule for backups or folder syncing in only a few clicks. The software even offers the option of sending you an e-mail notification when automated backups are complete.
It's incredibly easy to set up a backup schedule so you never have to worry about your data again
(Credit: CNET)BackItUp and Burn also includes full burning capabilities (as the name suggests), letting you burn your music, videos, data, and pictures to CD, DVD, or Blue-ray Discs so you have a hard copy of your most important personal files. Nero offers a free Gigabyte of online storage for a three-month trial, but you'll need to buy a subscription (there are three tiers to choose from) if you want to store more data in the cloud. You can pay as little as $7.49 for 5GB of storage for three months, or as much as $59.99 for 25GB of storage for a year. You should be aware that this program requires the latest Microsoft .NET Framework in order to run (you will be prompted to download during install). You also will have the choice of installing the Ask Toolbar during install.
Nobody wants to lose all his or her data, but too few of us actually take the steps necessary to create regular backups. Nero's BackItUp and Burn provides novice and advanced users a way to keep music, photos, and data safe without a lot of hassle and at a fairly affordable price.
The list of PC security products never ends. For every name that drops off, two more jump on. In fact, determining the best security hardware and software is a full-time job. Sometimes, you just want to throw up your hands and take your chances.
Maybe I'm just a cockeyed optimist, but I think you can stay safe without spending all your spare time doing research, installing updates, and generally becoming a PC-security expert. Here are five relatively easy ways to improve your security.
Use the firewall that's closest at hand
In the computer industry, the reputation of a product, service, or Web site is just about worthless. Yesterday's best firewall, ad blocker, spam buster, virus spotter, or spyware cleaner is today's bust.
Maybe the product got bought and the new owners aren't as conscientious about updates as the previous ones. Or the service's management team decides to go for profits and skimp on support, updates, and enhancements. There are lots of reasons why a good product goes sour, and the computer industry has seen nearly all of them.
So if you can't go by reputation, how do you choose a security product? One way is to go with the tools you've already got. Windows' security is roundly criticized, but the fact is, it's better than it used to be, and third-party security products have their own shortcomings.
Last February, I recommended that you use a third-party firewall rather than the one built into Windows. Six months earlier, I suggested that you pass on the third-party tools and stick with the Windows Firewall despite its shortcomings.
So which side of the fence am I on now? The simple side. The fact is, any third-party security tool complicates your setup. It's not difficult to find weaknesses in the Windows Firewall, but it's safe enough for most PC users, and it's much better than using no software firewall at all.
My previous post included links to information on Microsoft's TechNet site providing technical details of the Windows Firewall, tips for customizing the Windows Firewall, and help troubleshooting the firewall in XP and Vista.
Don't hesitate to try another free antivirus program
Just last week, I switched antivirus programs on my XP test system--for the umpteenth time. Something was slowing the system down, and after defragging the hard drive and doing other standard maintenance tasks, the machine's performance didn't improve as I expected it to.
Rather than go through a bunch of diagnostic tests, I simply uninstalled the system's antivirus tool and downloaded a competing package. The old and new programs were both free, and the switch didn't take much time to complete. The topper? The XP machine's performance perked up immediately.
Two antivirus programs that are free for home use and that are currently highly rated are Avast Home Edition and Avira AntiVir. You'll find a list of dozens of antivirus programs for Windows on this Download.com page.
Change your password...again
I hate those "your password will expire in x days" warnings as much as you do, but one of the simplest ways to protect yourself is by keeping your passwords fresh. Last year, I described the Ten Password Commandments, one of which was to devise a password-creation strategy that's all your own.
Just two months ago, I complained about the shortcomings of passwords as our primary security option, though I concluded that there's nothing better, for now. Lots of people swear by password managers such as RoboForm, but then you have yet another third-party app complicating matters.
For me, it's simpler just to devise a new password based on my unique, inimitable password-creation system, which I share with no one. No need to write it down, enter it in an online form, or encrypt it in a master-password file. Temporary amnesia, well, that's another matter.
For secure e-mail, use encryption
You would think that encrypting e-mail would be a breeze, but doing so is anything but. You and the recipient have to deal with digital certificates, public and private keys, and any number of other time-eating preparations and precautions.
The simplest way I know of to encrypt your e-mail is by using the Mozilla Foundation's Thunderbird with the Enigmail extension. Jason Thomas provides step-by-step instructions in this tutorial on the Lifehacker site.
Gmail users can secure their e-mail communications by enabling the service's built-in encryption. To do so, click the Settings button at the top-right of the main Gmail screen, scroll to the bottom of the General tab, select "Always use https," and click Save Changes.
Select "Always use https" under the General tab in Gmail's Settings to encrypt your messages.
(Credit: Google)
Keep your browser up-to-date
Most people will tell you that the Mozilla Foundation's Firefox browser is the safest way to surf, but a recent report from Google Switzerland and the Swiss Federal Institute of Technology found that "(u)sing the most recent version of a browser will lower the risk associated with drive-by-downloads and other Web-based attacks, which start by targeting the browser."
The report cites Google Chrome's silent updates as the best way to ensure that your browser is protected. The researchers also laud Chrome's lack of a way for users to disable its silent-update feature. Some people will object to software being downloaded to and installed on their system without their knowledge, but the fact is, these behind-the-scenes updates are the best way to keep you safe from the Internet bad guys.
Personally, I'm starting to rethink my choice of default browser. But as I mentioned earlier, you can't put any faith in a computer security product's reputation. And you can't be afraid to switch.
(Credit:
CNET)
Just about everyone who works with a computer knows they should perform regular backups, but only a very small percentage actually do. While people's intentions are good, most simply think backing up their computer is too much trouble or software is too complex to figure out. Unfortunately, when the big crash finally does occur or a laptop is stolen, for example, the resulting loss of important data has us pulling our hair out wondering why we didn't take the plunge on backup software.
Today, a front-runner in backup software on Windows machines released a strong backup solution for Mac. Backblaze takes the guesswork out of backing up your data with an easy to understand interface, simple scheduling tools, and a brand-new external drives backup interface. To keep your data safe, use the Backblaze preference pane to securely back up your data online so when the unthinkable happens, you can resync your data from the last backup. Backblaze lets you restore from the Web or you can get a DVD or USB drive sent through FedEx.
The initial backup can take some time, but you can pause the process if you need to.
(Credit: CNET)On launch, Backblaze gets to work analyzing your drive for irreplaceable documents immediately, automatically scanning for important files like photos, music files, and other important documents. The files are automatically encrypted on your hard drive, compressed, and then sent to the Backblaze servers in their encrypted state. The initial backup can take up to a few days depending on your Internet connection, but once it's finished, Backblaze backs up files continuously as you work, making sure you won't lose the latest file revisions or recently added music and photos.
While you shouldn't notice a significant change in your Mac's performance during backups, you have the option of scheduling a time each day to perform the backup. Those who want full control over their backup schedule can simply hit a button to Backup Now whenever it's convenient.
The demo gives you a 15-day trial to find out if Backblaze is right for you, and a $5/month subscription fee is all you'll need to get regular backups with unlimited storage. Also, Backblaze is offering the first 25 people who install today a free 1-year license. Clearly, they will go quickly, so grab your copy as soon as possible.
USB drives are simple to carry, but easy to misplace, and that can be risky when it comes to sensitive information. Rohos Mini Drive is a freeware app that safeguards personal documents by creating a password-protected partition on your flash drive. The download actually installs two programs: one, Rohos Mini Drive, is the partition manager that self-installs as a portable app on the drive when you create the partition; the second, Rohos Disk Browser, is a portable file manager, which can be useful when the encrypted partition can't be read by the host computer.
Operating Rohos Mini Drive is fairly straightforward. Plug in your portable drive and start the program. You should see three choices: Set up USB flash drive, Change password, and Options. Setting up the drive requires choosing a password--that's it. Depending on the size of the drive, creating the partition should happen reasonably quickly. Once the partition has been created, you can change the disk size and partition drive letter. The Rohos Disk Browser displays and manipulates items in the protected partition. Single-click functions include opening, saving, deleting, and displaying file properties. Searching and opening the partition is also easily selected from a short pull-down menu.
Rohos Mini Drive includes features to open the protected drive on systems where the user doesn't have administrator rights. That makes this app easy to use anywhere, from public library labs to your best friend's system.
Despite a cluttered interface, SuperStorm proved simple to use, letting you quickly and securely store data files in a password-protected form embedded within media files.
It may look confusing to some at first. Its interface is cluttered with buttons, a number of fields, and some amateurish graphics. The appearance is a bit deceptive, because what looks somewhat childishly designed actually works pretty well and is easy to use. Selecting a data file and a media file in which to embed it was a simple matter of dragging an item into the built-in file browser to the selected graphic. Clicking Execute created a new Output file--the media file with the embedded data file--in a matter of moments. We were then able to save it where we wished. There was no discernible change to the new media file, except that it was slightly larger than its original. One test showed a jump from 5,175KB to 5,775KB. Creating a password to protect the new file is equally simple.
Novices will quickly master this app. Experienced users may prefer a more robust app for securing sensitive files, but SuperStorm isn't really designed for industrial workouts.
In this how-to video from CNET TV Editor Tom Merritt, you'll learn about the importance of PGP, why you don't have to pay for it, and how to go about setting it up. He also uses the must-have Mozilla Thunderbird extension Enigmail to get you there. You can download Thunderbird for Windows and Mac, although Tom demonstrates on a Mac.
You know I'm using it. Well, you probably don't know I'm using it, since by using it my e-mail's encrypted and you shouldn't be able to tell what I e-mail about. But you do know what I mean, right? Right?
How do you know for sure that your e-mail is safe from interception? You don't. Unless you digitally sign and encrypt it with a strong, safe key, that is.
In this Insider Secrets video, CNET Editor Tom Merritt shows you how to install and use an open-source privacy tool that does both, for fee.
This is easily one of the more useful freeware file encryption programs around. Kruptos 2's file menu and icon interface are the picture of simplicity. Encryption is almost effortless. You can drag and drop files to the Kruptos 2 window, and the latest version adds support for dragging and dropping folders.
The encryption algorithm is Blowfish 128-bit or 256-bit, and fast. A key feature obfuscates file names but leaves folder names unaltered. The program offers a feature to see original file names with the proper password, but it is invoked one file at a time. However, Windows integration means you can perform all functions from your context menu.
Unlike many similar programs, files in nested folders are all quickly encrypted as individual files. With a single click you can decrypt a file and edit it, and the file re-encrypts on close. Self-extracting encrypted files are created with a minimum of fuss. The Shred function deletes original files to DOD standards. The program does offer a nag screen for donations, but only once. Kruptos2, with all its features, is what every user needing simple file encryption desires.
