RE: Securely Storing Data Backups on the STEEM Blockchain by builderofcastles

View this thread on: hive.blog | peakd.com | ecency.com

Viewing a response to: @lukestokes/securely-storing-data-backups-on-the-steem-blockchain

encryption · @builderofcastles · Feb 23 '18

I do not know about using a generated password for this.
As, many of the cases where you would need this file, that password manager would probably be destroyed.

Also, if you wanted to be really secure, right your own compression algorithm.   If they know you used PGP, then all they have to do is find the password.  If you role your own, they have to find the password and how you encrypted it.

The using a book encoding technique, a word in your file becomes the page, line & word numbers in your encryption is very very strong.  It is only broken by repeated usage and more than one person knowing which book.

properties (22)

`author`	builderofcastles
`permlink`	re-lukestokes-securely-storing-data-backups-on-the-steem-blockchain-20180223t174052844z
`category`	encryption
`json_metadata`	{"tags":["encryption"],"app":"steemit/0.1"}
`created`	2018-02-23 17:41:24
`last_update`	2018-02-23 17:41:24
`depth`	1
`children`	4
`last_payout`	2018-03-02 17:41:24
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.000 HBD
`curator_payout_value`	0.000 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	615
`author_reputation`	277,933,729,617,359
`root_title`	"Securely Storing Data Backups on the STEEM Blockchain"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	39,920,063
`net_rshares`	0

@lukestokes · Feb 23 '18 (edited)

"roll your own" is universally one of the worst pieces of advice in the encryption space. If you don't believe me, ask anyone familiar with that space or just look at history.

I'm all for one-time pads, but you're still having to secure the "password" or the key you used. If my password manager was every compromised, then I'd be screwed anyway. Files that don't need to be stored in a password manager because they aren't super important secrets can be encrypted and stored just fine on a blockchain. Again, in this case, there was nothing super secret about the data, other than putting it out there in plaintext would be kind of silly (and meaningless to others).

👍 omnicolor

`author`	lukestokes
`permlink`	re-builderofcastles-re-lukestokes-securely-storing-data-backups-on-the-steem-blockchain-20180223t181635690z
`category`	encryption
`json_metadata`	{"tags":["encryption"],"app":"steemit/0.1"}
`created`	2018-02-23 18:16:36
`last_update`	2018-02-23 18:24:54
`depth`	2
`children`	1
`last_payout`	2018-03-02 18:16:36
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.000 HBD
`curator_payout_value`	0.000 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	668
`author_reputation`	555,781,629,106,002
`root_title`	"Securely Storing Data Backups on the STEEM Blockchain"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	39,926,480
`net_rshares`	583,727,427
`author_curate_reward`	""

properties (23)vote details (1)

voter	weight	wgt%	rshares	pct	time
omnicolor	0 B		583,727,427	100%

@builderofcastles · Feb 23 '18

I can see your point, as I have seen people "encrypt" credit card data by adding an extra number to the end of them.  (In a large charity)

However, from my brain type, encryption algorithms are pretty straight forward to me.  And how computers implement them is very straight forward to me.

So, maybe my statement is not for anyone other than me, and people I like to talk to.

properties (22)

`author`	builderofcastles
`permlink`	re-lukestokes-re-builderofcastles-re-lukestokes-securely-storing-data-backups-on-the-steem-blockchain-20180223t190550870z
`category`	encryption
`json_metadata`	{"tags":["encryption"],"app":"steemit/0.1"}
`created`	2018-02-23 19:06:21
`last_update`	2018-02-23 19:06:21
`depth`	3
`children`	0
`last_payout`	2018-03-02 19:06:21
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.000 HBD
`curator_payout_value`	0.000 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	378
`author_reputation`	277,933,729,617,359
`root_title`	"Securely Storing Data Backups on the STEEM Blockchain"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	39,935,758
`net_rshares`	0

@omnicolor · Feb 23 '18

$0.71

Rolling your own encryption is most likely going to be less secure than using established crypto. The chances of a security expert getting crypto right when designing a new algorithm are pretty slim. Yes, the key to decrypt the data might get found, but the likelihood of that, compared to a developer not being as smart as they think they are is not a tradeoff anyone should take.

👍 lukestokes

`author`	omnicolor
`permlink`	re-builderofcastles-re-lukestokes-securely-storing-data-backups-on-the-steem-blockchain-20180223t175339768z
`category`	encryption
`json_metadata`	{"tags":["encryption"],"app":"steemit/0.1"}
`created`	2018-02-23 17:53:36
`last_update`	2018-02-23 17:53:36
`depth`	2
`children`	1
`last_payout`	2018-03-02 17:53:36
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.591 HBD
`curator_payout_value`	0.117 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	381
`author_reputation`	207,218,145,392
`root_title`	"Securely Storing Data Backups on the STEEM Blockchain"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	39,922,286
`net_rshares`	132,018,673,770
`author_curate_reward`	""

properties (23)vote details (1)

voter	weight	wgt%	rshares	pct	time
lukestokes	0 B		132,018,673,770	5%

@lukestokes · Feb 23 '18

Well said, sir. :)

properties (22)