![]() Once again, this article is a functional but highly simplified explanation of how we keep your information private and secure. Similarly, only your intended recipients have the means to decrypt the information you share with them. Only you can view your decrypted information while you’re logged in. The decryption process will not start until and unless you enter the correct password when you log in. We have no idea what information you store or share because they’re encrypted on your device before they get to our servers. ![]() Even if someone were to force us, we wouldn’t be able to reveal your password or your recovery key. You’re the only one who has that ultimate key. Our zero-knowledge approach adds multiple layers of privacy and security through encryption. Either way, your private key is never shared with anyone and remains encrypted on our servers. Your device then uses your private key to decrypt the data when you receive it. ![]() Similarly, when you receive data, MEGA sends your public key to your contact’s device to encrypt the data that will be sent to you. Your recipient’s device then uses their private key to decrypt the data when they receive it. When you send data, MEGA sends your recipient’s public key to your device to encrypt the data that you will send to them. To protect and authenticate cryptographic keys exchanged between users, we use asymmetric cryptography. Put simply, each MEGA user has a public key and a private key. These keys are encrypted with your recovery key. Your files and folders are encrypted on your device with unique and randomly generated keys before they are sent to our servers. MEGA continues this chain of encrypted keys to ensure that only the person who enters the correct account password can view that account’s decrypted information. We’ve established that MEGA has zero knowledge of your password and recovery key. This is why we strongly recommend these three tips: How hard it is to do so all depends on the strength of your password. Just like any other service provider offering user accounts that are protected by a password, we or anyone for that matter can theoretically try and guess your password. Please ensure that you keep a copy of your recovery key in a safe location to regain access to your account if you forgot your password. Since your password is effectively a cryptographic key, there is another risk-if you lose it, you will render your account undecryptable. Your account is therefore only as secure as the password that you pick-if it’s too short, guessable, or used anywhere else, you will be at risk. MEGA’s zero-knowledge encryption relies on your password to unlock all of your account’s encrypted data. Zero-knowledge encryption ensures that all communication is private and secure, protecting the confidentiality and integrity of the data exchanged. This means that any third-party, including MEGA, can’t access the content of the encrypted data. Under zero-knowledge encryption, the sender encrypts a message, file, or audio and video stream on their device, and the recipients decrypt it on theirs, with the encryption key known only to the endpoints. Advanced users can read our Security Whitepaper for a more detailed explanation of our encryption and other security-related processes. This article is meant for a general audience.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |