I know the answer is probably “no” but I was wondering if there is ANY cloud storage with E2EE that actually has all the semi-advanced features you’d expect from ‘normal’ providers like Dropbox or Nextcloud. By that I mean:
E2EE by default (of course) - not just a “high security folder” with very limited usability like pCloud and Dropbox Business Pro advertise
an app for Linux
two-way sync for Android, or alternatively having an API to use a separate sync app (e.g. Foldersync)
allows you to edit files in the browser rather than having to download, edit offline, and re-upload
Besides, only Tresorit and Proton then have the PG stamp of approval.
The sad thing is, all these things are technically possible with E2EE. Cryptpad integrates Onlyoffice for editing files in the browser while still keeping everything E2EE; Tresorit and Sync.com let you edit files in MS Office Online though they temporarily give Microsoft access to your file (which may be acceptable for some people). Mega has an API for various third-party apps and also offers two-way folder sync on Android. So there’s not really an excuse to say this stuff is not possible because of encryption.
At Privacy Guides we are using CryptPad for documents, and a different solution for syncing files.
If you can get away with having two different types of files you handle differently it’s the way to go I think. CryptPad for web documents and Mega (or anything with Cryptomator) for synced files for example.
Use cryptpad for this. You can sync the archive of a self hosted instance or the backup of a managed instance using rclone.
Proton is too expensive for just a glorified markdown editor. Tresorit doesn’t not solve it for me. Internxt is shady, Mega seems shady too (haven’t explored), rest idk. Unless you are looking for easy sharing (which I try to do with encrypted messengers not storage), it is a very user friendly experience once setup.
On a sidenote, self hosting etesync, cryptpad, vaultwarden, rclone, standard notes, etc. means you can get the whole encrypted cloudsystem for fraction of a cost, and it does not require the bandwidth people think it does, especially with docker.
You may have a look at Peergos. I just had a look at it yesterday and it seems very, very professional. In addition, it is very affordable (200Gb 3£/month)(but no free plan). But sadly I have zero use case for their services.
I kind of agree but they do have nice clients on a lot of platforms, and good storage pricing. Might be tempting to use and just use Cryptomator on top of it for extra security.
They’ve definitely had security issues in the past which would make me not entirely trust their native encryption on its own (haven’t looked into it recently)
Like almost all E2EE ready-to-wear cloud providers which have been evaluated by cryptography experts. All of them had issues in either confidentiality, integrity or authenticity. Tresorit did get the best results so far.
Correct, you will have to export and use them unfortunately. Cryptpad has plans for creating native clients on the roadmap, but it is a very long term plan. Everything except cryptpad files can be seen in filesystem though. Someone can package it as electron app, run a worker to export new files periodically, and sync them to filesystem, but it creates more problems than the project would like imo.
Can you share a source? If it is this study (Link), then they did not analyse Proton Drive. Except Tresorit, they did not analyse any encryption first storage, all of them had encryption as add on, which usually does not work well. Tresorit had no practical issue, mostly metadata changes in case of full server compromise, which seems pretty robust considering non encrypted storage providers in event of full compromise will pwn your entire life.
I used to do this, but since I have shifted my entire family to private alternatives, they expect a lot of stuff to just work, and cryptomator has friction and UI issues. They now either use what I have hacked together for smooth experience by self hosting, or they use an alternative to gmail our country has when they work with non-privacy minded folks.
I am following fileverse and peergos, they seem to be creating nice things on IPFS, but neither has android native apps right now, so not shifting right now. I wish proton was usable within my threat model, it seems to be the Apple of privacy. Hoodik is another project I am looking at.
Mega was lacking DocumentsProvider/Integration with the filesystem on Android which was pretty annoying for me. Especially since Filen & Proton Drive both support it on android so it can’t just be an encryption issue and they integrate with the filesystem on iOS so I don’t think its some ideological/privacy issue.
I don’t know if theres anything you have to do in particular to set it up, it just worked out of the box for me. Pixel 9 Pro with GOS and stock “Files” app. If you have a Samsung the “My Files” app will only show Google Drive & OneDrive due to standard Samsung annoyingness, but on my galaxy tab those will still show up on the filepicker and if I go out of my way to install Google Files.
Filen’s there too and Mega is installed on this phone but not present, to reference my previous complaint.
Yes, if Mega would integrate with the file manager on Android so that you can e.g. open a file in your text editor or office app and it gets saved back to the cloud after editing, then it would be the best E2EE provider by far. It’s strange how this feature is still lacking as you mention.
edit: some kind of online editor in the browser would also be great. Cryptpad, Tresorit and Sync dot com have done it despite E2EE so it’s definitely possible - though I think only Cryptpad is “fully” E2EE in that regard, the rest decrypts that specific file for in-browser editing.
