Dropbox is a cloud based data storage site that has nearly 25 million users. They have told these users that the information stored with them is safe. However, the FTC feels that they have been misleading at a minimum and that their business protocols fall short of the security that they have promised. At the heart of the problem is that Dropboxholds all of the keys to the encrypted data stored on their site. There is apparently little to prevent a jaded Dropbox employee from using the keys to search and steal data. According to their terms of service none of your data is accessible without your encrypted password, but this simply is not the case. At this point there is no implication thatDropbox has insidious intentions, but they will need to do some work to make sure that the data is secure.
Leave a Reply